Overview

overview

7

Static

static

3

defencer (2).zip

ubuntu-18.04-amd64

defencer (2).zip

debian-9-armhf

defencer (2).zip

debian-9-mips

defencer (2).zip

debian-9-mipsel

MonoBleedi...tor.js

ubuntu-18.04-amd64

3

MonoBleedi...tor.js

debian-9-armhf

6

MonoBleedi...tor.js

debian-9-mips

7

MonoBleedi...tor.js

debian-9-mipsel

6

MonoBleedi...tor.js

ubuntu-18.04-amd64

3

MonoBleedi...tor.js

debian-9-armhf

6

MonoBleedi...tor.js

debian-9-mips

7

MonoBleedi...tor.js

debian-9-mipsel

7

My project...ty.dll

ubuntu-18.04-amd64

My project...ty.dll

debian-9-armhf

My project...ty.dll

debian-9-mips

My project...ty.dll

debian-9-mipsel

My project...rp.dll

ubuntu-18.04-amd64

My project...rp.dll

debian-9-armhf

My project...rp.dll

debian-9-mips

My project...rp.dll

debian-9-mipsel

My project...ty.dll

ubuntu-18.04-amd64

My project...ty.dll

debian-9-armhf

My project...ty.dll

debian-9-mips

My project...ty.dll

debian-9-mipsel

My project...ts.dll

ubuntu-18.04-amd64

My project...ts.dll

debian-9-armhf

My project...ts.dll

debian-9-mips

My project...ts.dll

debian-9-mipsel

My project...on.dll

ubuntu-18.04-amd64

My project...on.dll

debian-9-armhf

My project...on.dll

debian-9-mips

My project...on.dll

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    defencer (2).zip

  • Size

    37.3MB

  • Sample

    240419-kfr3dsdg9t

  • MD5

    7308e94878192223a50d84ca65ce283f

  • SHA1

    252f91bd3c0d8c52198c34d14c4135c204782a0f

  • SHA256

    b045d841dd63566b5b91779b64e6c92b12a79be2dbb67148ff9af4be6e04314f

  • SHA512

    59952534fdad8dce8a5bb417263efc180964e0871a40c8e96a6ee5ddc022752fdcecde62111467ceedcda020ca7eaf05e45a686074478c63261d0f1b6003087c

  • SSDEEP

    786432:bm6qeGpQwLROjY3I6YI6Dk+GU4l+hVR2OX5TXfjzVpuLUOPUBzxmkCW:bSp9LKY3I6YIObml+Z2OVXf1puL/PUn

Score
7/10
antivmlinux

Malware Config

Targets

    • Target

      defencer (2).zip

    • Size

      37.3MB

    • MD5

      7308e94878192223a50d84ca65ce283f

    • SHA1

      252f91bd3c0d8c52198c34d14c4135c204782a0f

    • SHA256

      b045d841dd63566b5b91779b64e6c92b12a79be2dbb67148ff9af4be6e04314f

    • SHA512

      59952534fdad8dce8a5bb417263efc180964e0871a40c8e96a6ee5ddc022752fdcecde62111467ceedcda020ca7eaf05e45a686074478c63261d0f1b6003087c

    • SSDEEP

      786432:bm6qeGpQwLROjY3I6YI6Dk+GU4l+hVR2OX5TXfjzVpuLUOPUBzxmkCW:bSp9LKY3I6YIObml+Z2OVXf1puL/PUn

    Score
    1/10
    behavioral1behavioral2behavioral3behavioral4

    • Target

      MonoBleedingEdge/etc/mono/4.0/DefaultWsdlHelpGenerator.aspx

    • Size

      59KB

    • MD5

      f7be9f1841ff92f9d4040aed832e0c79

    • SHA1

      b3e4b508aab3cf201c06892713b43ddb0c43b7ae

    • SHA256

      751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a

    • SHA512

      380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5

    • SSDEEP

      768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw

    Score
    7/10
    antivm

    • Changes its process name

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral5behavioral6behavioral7behavioral8

    • Target

      MonoBleedingEdge/etc/mono/4.5/DefaultWsdlHelpGenerator.aspx

    • Size

      59KB

    • MD5

      f7be9f1841ff92f9d4040aed832e0c79

    • SHA1

      b3e4b508aab3cf201c06892713b43ddb0c43b7ae

    • SHA256

      751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a

    • SHA512

      380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5

    • SSDEEP

      768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw

    Score
    7/10
    antivm

    • Changes its process name

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral10behavioral11behavioral12behavioral9

    • Target

      My project (28)_Data/Managed/Alteruna.Trinity.dll

    • Size

      752KB

    • MD5

      ca2759669af1202b08df40e9ba6dc00c

    • SHA1

      3a2c1eec6e8a73c460994f6c2148ac4a49b2a1a7

    • SHA256

      85d8f7620acb6e4e027b83cae77820887edb3c25abeaa445726b2aafbfd1f6fa

    • SHA512

      04b470a23b96d86cfe9fbcdd631fb4d2b9a129a0520a4cd39b1065d3101b3d831b65ad11473d4bc657822d75c08858a9a7b0f9376eabc700c5455e03943944dc

    • SSDEEP

      6144:nQnU+Jbpl3G37YJsmexd675K32YfLCjgF3qMsMs5nGvzqKoygstSL+Lezu13rlMP:nQU+J5smexo9GMRr92b2UYu

    Score
    1/10
    behavioral13behavioral14behavioral15behavioral16

    • Target

      My project (28)_Data/Managed/Assembly-CSharp.dll

    • Size

      15KB

    • MD5

      9b61b216567747907db5ed7357dfe944

    • SHA1

      304978ed122934969ab335a3deadc65bdd65ee16

    • SHA256

      2261090f3b66726ebdc6fa53db0de96c0708e343729209b6fef494119d92330a

    • SHA512

      7e5cb6f8922e9ec11a467e7f61d89edcb31b70c6413891763234361a38ae498421e5461416f338ee274d2c60cc1614f4967b0893952e3cdc204b4780e76914b5

    • SSDEEP

      192:6lQ59SUI9q8devePQG4VVD/cLudmkI/NPE3GnYGOfEFEkVR0gi/2F8WKnp37xcbn:I49IHdPX47/pAlYkR008jnp3c+Ba

    Score
    1/10
    behavioral17behavioral18behavioral19behavioral20

    • Target

      My project (28)_Data/Managed/Mono.Security.dll

    • Size

      235KB

    • MD5

      646ffd23c6a51ea0439224da8e957feb

    • SHA1

      3d2371a527efa1d7bf00f80af589802ef38046f5

    • SHA256

      4d7ce057e3be46379bfd76046910aea7d039a293d72e1e6ca95a71fbf03cc334

    • SHA512

      39bb766af796a87bd259ad1fbabd7608d7bbe83ef9c45d1f845b3eaee3ce34c1bfd98f2c94412467b129c20cf639a5b3ec2913f1e683c76b1de1fa87f4f3bdcd

    • SSDEEP

      6144:0UjTQ70cnf8MoVRxS9iJdBF119RJXG2yO+Q:lEiH119RJXR3

    Score
    1/10
    behavioral21behavioral22behavioral23behavioral24

    • Target

      My project (28)_Data/Managed/NavMeshComponents.dll

    • Size

      16KB

    • MD5

      459838cc04a6cd5face2b40c02a81ef6

    • SHA1

      2cade732049e28483f7c246f2564b7400ffd6a0a

    • SHA256

      79879f7d520080c0ccc8bed93f354e93c97dc69caf9303e1c4aa744ffbfdcca3

    • SHA512

      e6da0bb7d39feffac3f07e0332818ae7edf4532781b09ca2de911ad7439e6f40460a60c40037c37d38d44ecc946395cf0b82b90104c45b1290b9859f176650d7

    • SSDEEP

      192:F62JXxMfL/KunIFwtAffzoNvQ7mM+iznea1PfvPARsQTxIR9hIHrciEXwaDH9LqY:w2Jz+yw6MNv2mFi7/t3qEdE7rM7rt

    Score
    1/10
    behavioral25behavioral26behavioral27behavioral28

    • Target

      My project (28)_Data/Managed/System.ComponentModel.Composition.dll

    • Size

      251KB

    • MD5

      4b4f585c0ab357aafad14683591123b5

    • SHA1

      143a5d05fbe6f444b93536399a65208f51d1d376

    • SHA256

      1de3e397a7a05fd118b7bc7c980ccb0852dc84d5948a171000dbc2aaa99906a5

    • SHA512

      3fcd288548526abdf8775b21c8b09092c4227096de8e89bbc5b4b3a3b349209fd873da08d7514b2952bc09c2c28713d1a9224b976a4296a7114891adc3c571d2

    • SSDEEP

      6144:fkwkYfxuS0ZNORl1X1XYZGFU+22kUgUlAwU5e81hXJXee4jsURlXXMAX8O33iEP3:fkwkYfx8ZNCxL

    Score
    1/10
    behavioral29behavioral30behavioral31behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

2
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

2
T1497

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
3/10

behavioral6

antivm
Score
6/10

behavioral7

antivm
Score
7/10

behavioral8

antivm
Score
6/10

behavioral9

Score
3/10

behavioral10

antivm
Score
6/10

behavioral11

antivm
Score
7/10

behavioral12

antivm
Score
7/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10