hxxps://github[.]com/pankoza2-pl/Rutherfordium[.]exe/ | Triage

Submit
Reports

Overview

overview

7

Static

static

1

URLScan

urlscan

https://github.com/p...

ubuntu-18.04-amd64

7

https://github.com/p...

debian-9-armhf

https://github.com/p...

debian-9-mips

https://github.com/p...

debian-9-mipsel

Resubmissions

29-03-2024 13:33

240329-qtpgbahf5z 7

29-03-2024 13:32

240329-qte8mshf5t 1

29-03-2024 13:14

240329-qgtv9saa43 8

Sharing

General

Target

https://github.com/pankoza2-pl/Rutherfordium.exe/
Sample

240329-qtpgbahf5z

Score

7^/10

antivm linux spyware stealer

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://github.com/pankoza2-pl/Rutherfordium.exe/

Resource

ubuntu1804-amd64-20240226-en

antivm spyware stealer

ubuntu-18.04-amd64

7 signatures

1800 seconds

Behavioral task

behavioral2

Sample

https://github.com/pankoza2-pl/Rutherfordium.exe/

Resource

debian9-armhf-20240226-en

debian-9-armhf

0 signatures

1800 seconds

Behavioral task

behavioral3

Sample

https://github.com/pankoza2-pl/Rutherfordium.exe/

Resource

debian9-mipsbe-20240226-en

debian-9-mips

0 signatures

1800 seconds

Behavioral task

behavioral4

Sample

https://github.com/pankoza2-pl/Rutherfordium.exe/

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

0 signatures

1800 seconds

Malware Config

Targets

- Target
  
  https://github.com/pankoza2-pl/Rutherfordium.exe/
Score

7^/10

antivm spyware stealer
- Changes its process name
- Reads user data of web browsers
  Reads stored browser data which can include saved credentials.
  spyware stealer
- Checks CPU configuration
  Checks CPU information which indicate if the system is a virtual machine.
  antivm
- Reads CPU attributes
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Virtualization/Sandbox Evasion

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

urlscan1

behavioral1

antivmspywarestealer

behavioral2

behavioral3

behavioral4

© 2018-2024

Terms | Privacy