Overview

overview

7

Static

static

1

URLScan

urlscan

https://collegereact...

ubuntu-20.04-amd64

7

Resubmissions

29-04-2024 18:44

240429-xdklrahg45 7

29-04-2024 18:43

240429-xcv14aaa8y 1

29-04-2024 18:39

240429-xazlhaaa41 1

29-04-2024 18:31

240429-w5952shh2s 7

28-04-2024 19:26

240428-x5j5asfb28 3

27-04-2024 19:05

240427-xrx41afa6t 4

27-04-2024 19:03

240427-xqv81sfa5t 3

27-04-2024 18:55

240427-xkzz1sed48 7

27-04-2024 02:21

240427-ctfmhshb28 7

27-04-2024 02:12

240427-cm66wsgh84 4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://collegereaction.iad1.qualtrics.com/jfe/form/SV_eJcHY0KH1MQ9Xf0?Q_DL=flvRqjA1lFsyLtR_eJcHY0KH1MQ9Xf0_CGC_xAeoMSgITjc2138&Q_CHL=email

  • Sample

    240418-y12n8adg33

Score
7/10
antivmlinuxspywarestealer

Malware Config

Targets

    • Target

      https://collegereaction.iad1.qualtrics.com/jfe/form/SV_eJcHY0KH1MQ9Xf0?Q_DL=flvRqjA1lFsyLtR_eJcHY0KH1MQ9Xf0_CGC_xAeoMSgITjc2138&Q_CHL=email

    Score
    7/10
    antivmspywarestealer

    • Changes its process name

    • Reads user data of web browsers

      Reads stored browser data which can include saved credentials.

      spywarestealer

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

1
T1497

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks