crealstealer | a73f041afa6413f0fd67e9672bc4b956c9be1ca2f4de3bcf6455d5e0d3c67b89

Sharing

Copy URL

Twitter E-mail

General

Target

stealer_src.rar
Size

29.3MB
Sample

240511-qw96ssch34
MD5

6533b238dd86b0d177005e418fe7c841
SHA1

a98fc7d3d5c02974b5b315b4236aaf200db06a12
SHA256

a73f041afa6413f0fd67e9672bc4b956c9be1ca2f4de3bcf6455d5e0d3c67b89
SHA512

7f5a930946c43032fb73e19c1548057babc17b3367bd919439c7e6ae2abcb7c3afbaf043ea2fa1bb15edca0ac3fa569a17ccf20068d84921b4b5fe443cfe6716
SSDEEP

786432:h49VClcd4doGVToPmdnvuMvQSYiagex/9xDj:h49UKd4dHVToPyv3v1+xFVj

Score

10^/10

Malware Config

Targets

- Target
  
  cryptic tool/cryptic.py
- Size
  
  7KB
- MD5
  
  9a6036f0e8099689d26f7e51d17fc813
- SHA1
  
  c3affc99c03616cce23c51176010c34be518826e
- SHA256
  
  9cd06d28c7fc2e39016804fb9752e22ad9bd4dbbdaa85616e9b8dbd06a7115cf
- SHA512
  
  90efd42052d6224907d0499ba2b1147c9525e9fe02cc28a7ea85b130e747797ca7a2082ab92f2d865862b84eca3cb5436d609aacd416a001e1e987d31990f79a
- SSDEEP
  
  192:1aeswUaUdWj7jPVKBmy2stkgerJomQ0S+eHpGzq:Q7O+JGzq
Score

3^/10
behavioral1 behavioral2
- Target
  
  cryptic tool/setup.bat
- Size
  
  141B
- MD5
  
  561be1c93153a3556eebe814c5014cf4
- SHA1
  
  f8f9df548d929475c709491ebb27254c5ca5c5d9
- SHA256
  
  4149819d15b592aa3d064045ad81dae253cd2de905dfee3bc88c4cfa0b6de2ba
- SHA512
  
  f93c588f2f8a2430927a9b8083545a9a7f7c93c88f6c16ce924080b10b814c2b00ed27ffbb37034802c8caf707227f8c2baf0ee323c795b4c491cb9b56f35ae2
Score

1^/10
behavioral3 behavioral4
- Target
  
  cryptic tool/start_tool.bat
- Size
  
  23B
- MD5
  
  1459dcbf598727693db5c9df49429b5b
- SHA1
  
  744cf0802914ae519843227386b419e7be9cfc49
- SHA256
  
  4f414970ae6de23e78cce1f53ce5fe2864cee8c3b2e556011ec45b009f27cd04
- SHA512
  
  09cf8dc2bf3e771523fd6f475ef7f538f74614482a70b77a17d0c85becc31c7f0f73f5d098887e0ce5b885e650463df6ba30ca063905ca6984f6d96dcfcab7e5
Score

1^/10
behavioral5 behavioral6
- Target
  
  cryptic tool/util/10_AccountDisabler/accountdisabler.py
- Size
  
  1KB
- MD5
  
  15ebdec1dd0fc82b2a997c2cec693d7f
- SHA1
  
  e1a6c5d4578f4585c796dfaa431d5f9863e44d2a
- SHA256
  
  5eaa6e450d71ead0815622f9fc09a4a38c5b344daec1f1f8903fb123c588256b
- SHA512
  
  a31a28fd4848074b58521c6afbb962b8352b5dfdfb00a03b3b7ca3ebde67627480781d9a0fe293cba416ae212aede38bb4c2180847cbbe0b97e04daad5481bb1
Score

3^/10
behavioral7 behavioral8
- Target
  
  cryptic tool/util/12_SettingsCycler/settingscycler.py
- Size
  
  5KB
- MD5
  
  693a9b1ae62a5c6f5d2bf18126c4cc84
- SHA1
  
  a197cd3798e41d1e82964fdc5a7494c82a261cda
- SHA256
  
  80633f99fb8949a4b6c3d2cf6ab1441ba05a72f06392bf06730d9f92cd361a1a
- SHA512
  
  2cf66f42139ae131a4e59269c655abadd94ee112cb847b6becb06e354954a32bf1f96d35485d2acab4518e2576bbaffb1bc48a5a1e4b625dd556ea50818f5cc6
- SSDEEP
  
  96:WDDIE0l/SgroF0x55OVFsmXhm+lsmlNYeuB:Kt0g00EOVFnxjnlC
Score

3^/10
behavioral10 behavioral9
- Target
  
  cryptic tool/util/13_TokenInfo/tokeninfo.py
- Size
  
  8KB
- MD5
  
  239349ed4be0ab3a032d630e7dfc6242
- SHA1
  
  1d12920f7ad422bebc54d304036cb4f949a69c17
- SHA256
  
  ebd313f2573b833756aa4f8a25c2086e8367ac2ca229739132e42417dbdd90c8
- SHA512
  
  644ae320e191c55781f4e00ca5f13521ef5afeb338e8f62ecc497edbdfe478b41c8b5fbef0a5392b1912643e902961243f22c164d60e24f25069ca71aa96c087
- SSDEEP
  
  96:SnNDDIRv/8s1kPHyLnOd9IpM5zRQi8LERPasZ4bn4GtL30sf2yrmoiqE:+yv/8c6d+pYVCA9aP32yrmdl
Score

3^/10
behavioral11 behavioral12
- Target
  
  cryptic tool/util/14_AutoLogin/autologin.py
- Size
  
  1KB
- MD5
  
  288c0a17d9aa192123401afe0a99ebec
- SHA1
  
  2d1db5d93cd13d6d795ecc69764557e488035f92
- SHA256
  
  fa44f2c3332ee95e44ee00c5793c12be831a0cf0f423d407d89648f92cfe3c38
- SHA512
  
  9fa942eb990727bc87c673360c36e73b5fe82ad2c7f6aaa5555528cefe87f3bad90f176348ab0f27532377358dd3063ae7d9be273f5775a28957cb6340cf9923
Score

3^/10
behavioral13 behavioral14
- Target
  
  cryptic tool/util/15_TokensChecker/tokenschecker.py
- Size
  
  3KB
- MD5
  
  a258360f8ed05cb475fd96d362650ce5
- SHA1
  
  1b506ab98e7d2195a44ca34f3498b567748965f8
- SHA256
  
  0aa45a2dff9550450a455ecea75696b8d3a88c6eedd7a85dea174579742bbfdc
- SHA512
  
  5da51f47fa81c21cac2346d14bbd1ba159f72e0243db44f402fe8949dcc04ab70e5ef7c7328fd868a25b98fa09289ab2fa1c78bfda0fe79e299a871c668eb6d9
Score

3^/10
behavioral15 behavioral16
- Target
  
  cryptic tool/util/16_ClearDM/cleardm.py
- Size
  
  962B
- MD5
  
  af2f0fa01b82a7dcb96284bc487e8a76
- SHA1
  
  94ffc03734eac363e207933a579f860a50f8fc41
- SHA256
  
  caf34c4180d41c484674393605e09e6421e81ac06ba2198389e6b674a8368983
- SHA512
  
  32876e36774a851e72057fac91839168e26a7ecc118624740b9fd3656a0491200db8edf8a0f7747c539f0911c9dee6427f124a42c1b52bf478d14a674eb375d0
Score

3^/10
behavioral17 behavioral18
- Target
  
  cryptic tool/util/17_HouseChanger/housechanger.py
- Size
  
  2KB
- MD5
  
  9ab73250679c3b9b85d21dfc1194b560
- SHA1
  
  bbbbdb300db86d0368208c1e2357de4954b91c76
- SHA256
  
  60597849a21b056541c7c9cb6284b6fb26682b1d60e1032f2c52fa727edadbf1
- SHA512
  
  2eafa8375422d8dfe917492b60915eb3747d206dfe4f4ae61791afc84ccd522f5659486a77b29cee1789d80bc6fbc3d4881d884d882136b24f2732591852c14c
Score

3^/10
behavioral19 behavioral20
- Target
  
  cryptic tool/util/18_ServerLookup/serverlookup.py
- Size
  
  3KB
- MD5
  
  29c3ee6422fca392c2d699031141a5aa
- SHA1
  
  5f17f6f1a92875de2583bf83a8387f2715961e4a
- SHA256
  
  733eceafa25b785cfa2bc974e5eda4e73b2c40908c82b70e6f0bdf1c7d47b302
- SHA512
  
  d2eeb5debf0de3d4f9f860fedc748acee4715a7e651f2128688b41833e30de4a5d9037b6b6928479da6f0af971fbc245adfc4d05aa529a344c5c3fcb998cd9be
Score

3^/10
behavioral21 behavioral22
- Target
  
  cryptic tool/util/19_MassDM/massdm.py
- Size
  
  1KB
- MD5
  
  12b9f6c6c536d3ab584c557b39678c4a
- SHA1
  
  e5f6a1ea1b681f7e26b30f5b6975fa869933e2aa
- SHA256
  
  6fd04eb18cf76e30f0ddc6eea3c40b7db0185d164373fab188b1b231075bc514
- SHA512
  
  634ba97986b544c11706a181a5dbf573294afc646a196e316cac08653d99a0d7efa69ee03b5b19368378e3336c922550f710bf643f82a3b7c32220472809f8c4
Score

3^/10
behavioral23 behavioral24
- Target
  
  cryptic tool/util/20_GroupSpammer/groupspammer.py
- Size
  
  3KB
- MD5
  
  53493a5dde05d305fc424806f9b06da4
- SHA1
  
  a20a396cd128b0cdad953593df9b1e42b11053e0
- SHA256
  
  cf94a075c1f91ad4b54d84b019d3d1b0816d3815821c73c68be58d161cfeb9f4
- SHA512
  
  ebf79945993a00c9d8cf1b5d2b8c89e5c9cab67d349554d2c9284d1b55809215590c4837102ac196ba8a49e4292d7d3431d18538b88ceace0c4b14c3673f6fce
Score

3^/10
behavioral25 behavioral26
- Target
  
  cryptic tool/util/21_NitroGen/nitrogen.py
- Size
  
  4KB
- MD5
  
  03793058c635760b3e96979f2af5437a
- SHA1
  
  03a803cd70a84b6fe87ee2823b1991192c6ab9d7
- SHA256
  
  a35df7b34e32a60c5c13432cbb65d4aaa945cf9366e5efc01d884984745fcf98
- SHA512
  
  e70bc439037feebeec731ab8a6c5f60c4b20e1a535a83e4ed14b9eb097d07a875cb5cde1795bbf00db89817d61b07887ba443687daa761d180231b9adcf381aa
- SSDEEP
  
  96:QtZYDd27SSCnE4KybBWoSaLI+8EO7T+PlZMi+byZM3be:CU7RnE4KyFkaL/8E4+PlZobyZoe
Score

3^/10
behavioral27 behavioral28
- Target
  
  cryptic tool/util/22_WebHSpam/webhspam.py
- Size
  
  1KB
- MD5
  
  52e16b71c24e2bdcd3c2ed25dae80c76
- SHA1
  
  632023410791bc239f87c7883ad20e3c09de7c47
- SHA256
  
  3985f0f718782b601b99eb7f9ee2255f00144f8516629d4ce4c709179ed594cb
- SHA512
  
  898c156fe010e67d915ccd57ff14db8bded46fe41ade701af43b39ecfec1dc37b235244f40ddd356a6a48125e3ac362ff2d9815bb7b7dbabe6771a554faccbe7
Score

3^/10
behavioral29 behavioral30
- Target
  
  cryptic tool/util/23_WebHRemover/webhremover.py
- Size
  
  737B
- MD5
  
  1789276671392f39bcf0463383fdb54b
- SHA1
  
  75bcb0d93808e494514fe872a6711ddbde4bce6f
- SHA256
  
  6d845feee54a7b354ea19c67ff46ce2e58eadfbaf257bbfa9e75f4e2b6e375fe
- SHA512
  
  3a48f505ad617032f914f581f808ff8d0d2a0daa356a126f85d9733678993bc3283fbd00c22352924021b52b2233c41ffde07c10d0f8068bea5510abbc3aeed5
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32