637113aef8aaa292a615650b90844dd4a26c021e8930a3fed72c8b735322949e

Resubmissions

26-04-2024 14:55

240426-sanrsaeg7s 3

26-04-2024 14:54

240426-r9vtpseg5x 1

Sharing

Copy URL

Twitter E-mail

General

Target

Origen_Police.rar_1
Size

19.6MB
Sample

240426-r9vtpseg5x
MD5

c5bb490f85c829e92206da94aaea2d16
SHA1

c8b2954e0cbf6da2e863662e4c3e1cd79f1c0066
SHA256

637113aef8aaa292a615650b90844dd4a26c021e8930a3fed72c8b735322949e
SHA512

5ab9d93590fbf08f188b44aa531807254de4cd0e795ae9b3e22361baedeb10ed44d372a0d13251b80e632e8ff7fd2283de60f922ed91ce5758bbad80e1122373
SSDEEP

393216:yRCFut9zXTW0towkorViyivzcFDD5hJGu+ScBnfFj:yH7XkopifodhUBfFj

Score

1^/10

Malware Config

Targets

- Target
  
  [origen]/origen_police/client/cams.lua
- Size
  
  13KB
- MD5
  
  f8b1b1b80c54a9ef20f4437f0d24cb9b
- SHA1
  
  6b91953fb6d4ea3745ac247bafc821be160799a2
- SHA256
  
  46b0a268741da42c6e0896e671834108e35172f9485614acafd7695747c71b01
- SHA512
  
  462c4a956ae8f5308172e1d3ed40fe3d5f939da9293b2e985ad9d198ca4c4a963a7afe149403ae46fbcf6d380ba9cbe13426e4173ab9f991df4c83fd003ec8ce
- SSDEEP
  
  192:DyYtyYtyYtyYtyYByYCJ4sKX8Md6xagxaF38jMufYsffNQebeRdvpLByYtyYtyYC:lux1QWek7
Score

1^/10
behavioral1 behavioral2
- Target
  
  [origen]/origen_police/client/events.lua
- Size
  
  33KB
- MD5
  
  ba7c7479d3799673a693bc16cd5ef2d7
- SHA1
  
  9b652ccd5f493626adfe7a3b363cebaa6213c0cc
- SHA256
  
  744e0a9a61ea045a7d40256445980617356177d939204e48e6170098ce6f69a8
- SHA512
  
  c3073b6ad00541b72ab8e056ab93dc5ab24a0a94a93912cbd10acf3680aedf5586c90054ac4a6bac6ccb573013996a3c13e8d3d4bf2b86468559a4df10066b1a
- SSDEEP
  
  192:A+sPTYYOJXn/fxOJ+qgEbral7c4uU1/AHpfuoZe+x2Sxih88sKVtbcI/QZbO7B8V:KT2JXXUJ+/cVHpnZZj/Ue8LIzKdkhKi
Score

1^/10
behavioral3 behavioral4
- Target
  
  [origen]/origen_police/client/objects.lua
- Size
  
  9KB
- MD5
  
  3fd09b0ab27b88d3f01d1feee4b6f5ff
- SHA1
  
  0c00994fb627463f4bb630411aab336e2c253de4
- SHA256
  
  7d73b871df17f7625292f404ae97e461c1cc03e3fefed3ed16a748111750fd85
- SHA512
  
  d231f7e12a9b8b8bb6e13cc9233bad52efabe1fd29b962b322bc9a338810566aaa1e6e5d3f56751c01b32547a394531b317862bada81918b175e036ec406f9af
- SSDEEP
  
  96:yrwyf92Ej0/XoUhAt1ztumCuIAjbA/hHILtqP3YbBw+wo:yce9KYKAbzMmIMbAUtNbiHo
Score

1^/10
behavioral5 behavioral6
- Target
  
  [origen]/origen_police/html/app.js
- Size
  
  37KB
- MD5
  
  11fce755e7966659c64c24544d6f6140
- SHA1
  
  7d1d1bdd17ea1da771c3157d0332a120fd4027f7
- SHA256
  
  03ded8b77377a289948519593bcbe00426491720b5b7e33b805d01406b1f6071
- SHA512
  
  e2475beb0147da5892db3bbe18dee97b0c9a51da13dd5d861b1eaa98afa3d6adff7b661029ccc961f2e8c6331cf34ad4afc8ca480796b785c0181a0f8ad281b1
- SSDEEP
  
  384:RHq4ZpfF6Hqx2cU5CvS/rVV3pHh2JAXzewZQ7Hs0S+s2uX36zr3QVY90J0yQ7RK5:xlnt6HqY5CS3/2OXzzblykYcQSR
Score

1^/10
behavioral7 behavioral8
- Target
  
  [origen]/origen_police/html/config.js
- Size
  
  2KB
- MD5
  
  a394b6c6a5a7345c405fd5a22c511f23
- SHA1
  
  15343ec38953e40ebbef05d11f60f27e6f17f494
- SHA256
  
  0f7c5e861f45c3df1acbb455505811e9adf1420a6f5ac2cf9456303116aeb2d9
- SHA512
  
  c3b6d116767b24de35047dfe52ef99a8d483de137749a4e3df582747f23ed4547795ce8c37175def75292e48db4e8f94810e2a8a055eb06af6e8da0fdc18ef20
Score

1^/10
behavioral10 behavioral9
- Target
  
  [origen]/origen_police/html/html2canvas.js
- Size
  
  271KB
- MD5
  
  cef10ec0c626c5a9c1cc7c6bfd221ce7
- SHA1
  
  fbe7939db3ba895be0d860125abe3ae1d9f5bfbb
- SHA256
  
  e224c8a956e891a600aad1367161d70799eee9f1a9aa149b8c5413b5692f9939
- SHA512
  
  c44c804b3c9f4cbbd9377d3ae8a2d13e1436d90766e3e443da01a02f7cef6d401e7a32c05c7d428de5fcbea17124fdc60b384c466d427d469fc3a8d045b80f77
- SSDEEP
  
  1536:10qVxx4z9eKEsJCCQaZp4rmUSvEb2V92sfySNZJlhslM6ohK6FhTIeuTZSWg8C3H:104mctAENkEbw18P6Fob8Xj
Score

1^/10
behavioral11 behavioral12
- Target
  
  [origen]/origen_police/html/index.html
- Size
  
  24KB
- MD5
  
  207a74a7ae93fd8e5f52855dfb0a5c73
- SHA1
  
  e8e60d045a83fe6b56a055358c1e3fc70dd71c6c
- SHA256
  
  9ab4f2bdf8c7e98837c9222e6b7ccbfbe56fa507d5bf5f37122e2caf4941c230
- SHA512
  
  34a55ebceee3dd1e79ede8b7e2322720c1d0e41eea9176e3a575bc9d2cff4136b53d33419cd012182487eb6a1234abe16ce66f14b3318f372ef8df697812b1dc
- SSDEEP
  
  192:WGE0uEsClDynB5vHGTrN8/hlWjGVTUKgvLASmmcHMBL2TgbKxOgW/Kn96mWm:WGEMDynB5PGGzHMBaTgKxHW/4ky
Score

1^/10
behavioral13 behavioral14
- Target
  
  [origen]/origen_police/server/main.lua
- Size
  
  173KB
- MD5
  
  421dfbcf02a5b7f763d5447372383d24
- SHA1
  
  4d0c2ea5021f0cf41ef84605c89d4fd760d5d1da
- SHA256
  
  97591cb7d4ef03c109fa82842e1269752e1eae7fdb06388c79a38ea0826d9ac7
- SHA512
  
  9f82ace82e46eb257b2d4f89904bbc889018c7bcc124b8a39d7578a35dbdbcc33eddc83344d4485a7a035f78b2ed959c53d72b0d4330d60dee7833fac08703c1
- SSDEEP
  
  1536:m70S5XDdGzhqUjYwF9O0iHTTCTCksATr+oXkIPUnVKdwEXB4Mk8q+ej2CyiobfHQ:UXDdWfniykQ6wSMk8Rlno/
Score

1^/10
behavioral15 behavioral16
- Target
  
  [origen]/origen_police/server/obs.lua
- Size
  
  15KB
- MD5
  
  74822003c5d1a29918bf7ea3c682ab07
- SHA1
  
  8e02e6f9e7fd462cbdcb8f36e5fd014e38f3c286
- SHA256
  
  118058296158666c6c79e7a6f13f9b8818c1a318f60a0d4cd3b0089ac17d70e9
- SHA512
  
  bbcbff279c3bcac39824bf0fb5af5a639a8d6f44aa925316f05a4ccf4c939122d94fe689c0238d5f6f2371725c646a26a0d181d47fd3b59fedd457aab9598ac8
- SSDEEP
  
  192:kJ684vRI+oJnWqU6svG8AzK6/5yeZngnUHVunpGbl5SLWob5hRRjXGP05T4/RFNC:k7W566AE0ckVWAbl1ob5rRjM/kD
Score

1^/10
behavioral17 behavioral18
- Target
  
  [origen]/origen_police_menu/client/main.lua
- Size
  
  27KB
- MD5
  
  cf1878df1496a871feec4766d0cf0ecd
- SHA1
  
  94c922046ceab866a1ba2cb36b12034af69f116d
- SHA256
  
  d4215a2536de0fb1520ffcbbb365f14208c56b8b2e76549fae13574e1cb4486c
- SHA512
  
  0ed589b5145fc612ece4a73e5a0d6fb10a3400220270958770f091641bbb85f2daa1745872a3f9444affdae925cce6fd5f7b37643402479a6d9764442705edba
- SSDEEP
  
  384:E0gMCIhoTm6cp51DhkwjFBHdmf9WuPXM3:uIh4iDS4B33
Score

1^/10
behavioral19 behavioral20
- Target
  
  [origen]/origen_police_menu/html/apps/police.html
- Size
  
  30KB
- MD5
  
  d5b686193332a975f2469a23c8d62d6e
- SHA1
  
  4d7a8d184603987064edf221778cfb301a27c922
- SHA256
  
  b9587722837af31fbc9fbd6acac10d92e7ced2b60387476a65ac03db39451f0b
- SHA512
  
  db648ee2dfd783b30126c7bab5918b0afb033616dc9f6e72fca2c5507863b7f6405255163866da46ce34fb81ea7beca69eac0a5b4b231e02649b628ccca9ae08
- SSDEEP
  
  384:J/Qcuhm+6Fw4ZkNlrvl43eWSprwtOaQlBOlwt45wtO+wtO2vHwtwVtKKwtOimmxM:JYiQ3gxmmSdu8y9RkmaAd/Z
Score

1^/10
behavioral21 behavioral22
- Target
  
  [origen]/origen_police_menu/html/components/citizenSelector.html
- Size
  
  2KB
- MD5
  
  fb284fce586b213b6676eb07aeb1c57e
- SHA1
  
  d3472a20e52490ccc0f273f08fae3f4d89aded32
- SHA256
  
  3238012bc200aae8515a33a7351961dc4e131a217eeabea6113a7af8cb2eab81
- SHA512
  
  cca4dc55b400aadcced64696109c647408399a3e4af96e446ecf5c39fde28b699943d01d6eadc30b47057065f56cb6771cba94240c3431cec5f567954f147e94
Score

1^/10
behavioral23 behavioral24
- Target
  
  [origen]/origen_police_menu/html/img/mapStyles/1/-1/-1.jpg
- Size
  
  315B
- MD5
  
  a34ac19f4afae63adc5d2f7bc970c07f
- SHA1
  
  a82190fc530c265aa40a045c21770d967f4767b8
- SHA256
  
  d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
- SHA512
  
  42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765
Score

1^/10
behavioral25 behavioral26
- Target
  
  [origen]/origen_police_menu/html/img/mapStyles/1/-1/0.jpg
- Size
  
  315B
- MD5
  
  a34ac19f4afae63adc5d2f7bc970c07f
- SHA1
  
  a82190fc530c265aa40a045c21770d967f4767b8
- SHA256
  
  d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
- SHA512
  
  42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765
Score

1^/10
behavioral27 behavioral28
- Target
  
  [origen]/origen_police_menu/html/img/mapStyles/1/-1/1.jpg
- Size
  
  315B
- MD5
  
  a34ac19f4afae63adc5d2f7bc970c07f
- SHA1
  
  a82190fc530c265aa40a045c21770d967f4767b8
- SHA256
  
  d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
- SHA512
  
  42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765
Score

1^/10
behavioral29 behavioral30
- Target
  
  [origen]/origen_police_menu/html/img/mapStyles/1/-1/2.jpg
- Size
  
  315B
- MD5
  
  a34ac19f4afae63adc5d2f7bc970c07f
- SHA1
  
  a82190fc530c265aa40a045c21770d967f4767b8
- SHA256
  
  d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
- SHA512
  
  42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32