Overview

overview

7

Static

static

1

URLScan

urlscan

1

https://search.savet...

ubuntu-18.04-amd64

7

https://search.savet...

ubuntu-20.04-amd64

7

Resubmissions

19-04-2024 15:25

240419-strmsagf6v 1

19-04-2024 15:22

240419-ssc31aff99 1

19-04-2024 15:20

240419-sq9n7age8z 1

18-04-2024 20:47

240418-zk7qzaff9x 7

18-04-2024 20:36

240418-zdn1aaec33 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://search.saveturtletab.com/search?p=hello!

  • Sample

    240418-zk7qzaff9x

Score
7/10
antivmlinuxspywarestealer

Malware Config

Targets

    • Target

      https://search.saveturtletab.com/search?p=hello!

    Score
    7/10
    antivmspywarestealer

    • Changes its process name

    • Reads user data of web browsers

      Reads stored browser data which can include saved credentials.

      spywarestealer

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Reads CPU attributes

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

1
T1497

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks