69906591fefefd4633a7c7af2876a3b132d35c0fbedfad3ba26181d44411e423

Sharing

Copy URL Twitter E-mail

General

Target

ReYANG-main.zip
Size

35KB
Sample

240502-m7bwlahf24
MD5

0db8aa37f800422b9461e48dce82965f
SHA1

820abc945edee4080259875a637beddb08a4346f
SHA256

69906591fefefd4633a7c7af2876a3b132d35c0fbedfad3ba26181d44411e423
SHA512

a66a0247889bd5e00feba40c893ab7c22a87f2b35e7578cdbb797858802b1510d2444b11497c54268fd667ddf39fc292ef60325f141926c47551c9005d04d714
SSDEEP

768:yCER7pNX8nL9XhVCqxEqdeRZ2glz0sKXtuUv:HER7jMnxXhwwdgzdKXMq

Score

6^/10

execution

Malware Config

Targets

- Target
  
  ReYANG-main.zip
- Size
  
  35KB
- MD5
  
  0db8aa37f800422b9461e48dce82965f
- SHA1
  
  820abc945edee4080259875a637beddb08a4346f
- SHA256
  
  69906591fefefd4633a7c7af2876a3b132d35c0fbedfad3ba26181d44411e423
- SHA512
  
  a66a0247889bd5e00feba40c893ab7c22a87f2b35e7578cdbb797858802b1510d2444b11497c54268fd667ddf39fc292ef60325f141926c47551c9005d04d714
- SSDEEP
  
  768:yCER7pNX8nL9XhVCqxEqdeRZ2glz0sKXtuUv:HER7jMnxXhwwdgzdKXMq
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  ReYANG-main/.gitignore
- Size
  
  84B
- MD5
  
  373531512e7ebe3fec6fa4c0d2aaa751
- SHA1
  
  c666621b1b4efd89d70d69d3ef82aa71df6d2c8b
- SHA256
  
  27f4f909f074b43f078fb89f5ffeefc0f8d41781b790762c7dbf9802eda186b1
- SHA512
  
  a2470a7969dd1ffb56256d7556536d43da44243246cebf38752ec025c4702af2efb4f61094c3c80a719a8f2fbcc08dbc89db7307d8b11858ad9829879c0769dd
Score

3^/10
behavioral3 behavioral4
- Target
  
  ReYANG-main/Dockerfile
- Size
  
  87B
- MD5
  
  e1882e7699c45f75b702cdebf6b2d9bf
- SHA1
  
  09f0ad854c1a989021c0fe87a8339f9f441ec05d
- SHA256
  
  6e00012d6b323aa0e51e28a3406210d086f212cd94f5eb9d83a360fc121abf47
- SHA512
  
  576929b27f2e588c0e288c15e895771822e69dd1ce2e01594ed1c1c27437a2b0dbb19e24b00e00ff672d7eb8961e5f2dd297b56581b975e070bcf184a153ee4c
Score

1^/10
behavioral5 behavioral6
- Target
  
  ReYANG-main/LICENSE
- Size
  
  34KB
- MD5
  
  1ebbd3e34237af26da5dc08a4e440464
- SHA1
  
  31a3d460bb3c7d98845187c716a30db81c44b615
- SHA256
  
  3972dc9744f6499f0f9b2dbf76696f2ae7ad8af9b23dde66d6af86c9dfb36986
- SHA512
  
  d361e5e8201481c6346ee6a886592c51265112be550d5224f1a7a6e116255c2f1ab8788df579d9b8372ed7bfd19bac4b6e70e00b472642966ab5b319b99a2686
- SSDEEP
  
  768:Fo1acy3LTB2VsrHG/OfvMmnBCtLmJ9A7J:Fhcycsrfrnoum
Score

1^/10
behavioral7 behavioral8
- Target
  
  ReYANG-main/README.md
- Size
  
  2KB
- MD5
  
  6ce04baa9b309cd2bf84fc01feaae213
- SHA1
  
  dceabb46aa5a21430df1db98d3f49f9543e7fc9b
- SHA256
  
  259a07643650fc1d65bdcb98007616b1eab0b1531b478e455e602f934d1cbaf3
- SHA512
  
  99f800f94dfa789d4a18840c74181fc5938814cee8bafc167f7947db551b6d69b8188ac7157d64e61051bec2de47b9a86e9c266927081cdb5c252cfcbba6e54d
Score

3^/10
behavioral10 behavioral9
- Target
  
  ReYANG-main/app.js
- Size
  
  9KB
- MD5
  
  22b745d2dd6a5c78320ea4214f2508d1
- SHA1
  
  4286485ffb566740a98f7ff22d80740d09fb6d65
- SHA256
  
  285151c77abfe32114dd6199c705382a00640e1d467fcbc113579117a9817e3b
- SHA512
  
  009589a2abfcd4745a3cc2f05affd71e68cec309c5d6677de696fb5f86b81ee60e461d2e6886e5b20cd870caf58141185d33111c6255dd3c42373d2ac80bdf84
- SSDEEP
  
  192:x5i9PqaV/1Z+P0/0d5WOtPXxGFKBVRJWBwMtuB9jsyYaWLomjqg:Y5l1Q0/02sR3ZK
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  ReYANG-main/config.yml
- Size
  
  1KB
- MD5
  
  98d55c31ac02b32ac3c147cad3a97ed0
- SHA1
  
  1d72218c5cdd5cfe65187d66833eeaa16fad9368
- SHA256
  
  b61bac80531f43058953c0747218203b4794908db361ed0a032d79f1168f6bdc
- SHA512
  
  36e48ab538dc41350ad4cb2a0127a1727db54b136e65f12526ac1648d884e462a28ebf7f7ca85eff37da5e7de9baddac9b28819395e65a7eb3dc83dbdd50f78e
Score

3^/10
behavioral13 behavioral14
- Target
  
  ReYANG-main/package-lock.json
- Size
  
  41KB
- MD5
  
  55066e177f2dc78cc47e9297fc162970
- SHA1
  
  18330c8f1e9c45c359ba8d26d193b0cadb2ce7f2
- SHA256
  
  d03bea5ed9a10493e2d5f0fd66c36aa319f1f35b5a1e99b293310c4cdfc8bf63
- SHA512
  
  fac9128c40da95b1368d99020aabb510ac62d9d570d81efb80a1e5cfa098518ae08dca76ea8dc43141edc1ade5f0a1a8e2e18b67f65e4a459e74be5af04f5a8a
- SSDEEP
  
  384:zlqZ6g0wc+oddhfYElWZ6O6SjZ6MNZ6Dn3Q/nKKPLXZ6k2Z6DjvZ6D0FtYysx:z4Z6d+pZ6eZ6sZ67QbZ6RZ6nZ6wXYP
Score

3^/10
behavioral15 behavioral16
- Target
  
  ReYANG-main/package.json
- Size
  
  216B
- MD5
  
  4b8788da84cdfead6b5f256d037ebca5
- SHA1
  
  2bd97a34a4246a301c05f27dc8ded6b303a32b58
- SHA256
  
  a44422164e12783bb6c37ea28fd66fd2f0cf93a34fad04ec1508c464a530f352
- SHA512
  
  f257f4b8fceaeb28861a2b7c1fc94813d8cdf8085895c07abaf93785a87e4d8446ab3291a5d1dacb34adf27ca18018c467fd342ebb455622320eb6053deb89b4
Score

3^/10
behavioral17 behavioral18
- Target
  
  ReYANG-main/utils/functions.js
- Size
  
  4KB
- MD5
  
  013d69715ef76432f8a088322c45ce32
- SHA1
  
  0d474275562215c8e39dbe4bbff4dcf144931c63
- SHA256
  
  1faf05bc4060eeb4c8c9f076ec702e9e0ade660185310b66adf5477aa695283b
- SHA512
  
  dfe4da5b64bbafa2b65432602729d78fbf8b891735864d8d097e7fb687edbaa4a7cf30f57e11920a5c19f95a017d52996081be133bbf9df754b409ee1ed9ce6e
- SSDEEP
  
  96:m14rvWO/55TePU6lljNqiPU6QjId7ADE1vDF2/ZMkwD0bwyMt29BbYj6sBbraLp3:QqvXxcPU6lztPU6TdHTiZM0bhM49BbYk
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  ReYANG-main/utils/logger.js
- Size
  
  2KB
- MD5
  
  03d8ad963606956a9bb18e6d23e883a0
- SHA1
  
  45f822afb1e8feb5ab719397065421455989d9a0
- SHA256
  
  3194d24351fcad8ade44aced3cdd4d40dd05ece0a4bb99ebb0ea5750c6bd9669
- SHA512
  
  f3b38017701d9a51b330e513ec38558b5b0094ee70252dd8b252b8491015bfc62235700f022d0240b9dde4726a24c974f60128ccafff7e2bddd059c5bce6dde7
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  ReYANG-main/utils/proxy-checker.js
- Size
  
  2KB
- MD5
  
  6d312992fc4d72ac84e19905e0a23831
- SHA1
  
  b596b8ea367a6f5598d6162e185818aa09d69093
- SHA256
  
  5b8570bc91ce040bc7e85133311e2db367887add1d2cdf3c64de70f9e8ccb95e
- SHA512
  
  ec4a6c32b07f96c89731d7e872511cce3ace0bafcb0df791eeef88f29f156ca132b0733ebfaea39d85f759c900796d7c31d3432473a8dc213995547f944b37c1
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  ReYANG-main/utils/proxy-scrapper.js
- Size
  
  2KB
- MD5
  
  f265448284aaf0661cac0bcdd898b447
- SHA1
  
  1f9ed435a4a5a75897b977587e5de3f32eea326e
- SHA256
  
  8968de101efa1226348e5346c162960c9aaed03fe123566b6412ef41538086b8
- SHA512
  
  a8f5e5865c92d3656d431b7166c5390ec2f9cea83eeba61c6cf38185fbd29b80f05776a306928c99ff65a15a4da5e5aa1710a9927e2afcf202e077741ba9b290
Score

3^/10

execution
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26