erbium | 64fb9b3d5ed1876e0a610fc18a0750e9af8719ce04cdd87b8647464f18cbd9d6 | Triage

Sharing

General

Target

wanya.zip
Size

11.6MB
Sample

240512-rwekkadf45
MD5

c1fa6a74a1f37b61980a39a1fa928de6
SHA1

5755a0720650529d25d9562803386278d711c5ff
SHA256

64fb9b3d5ed1876e0a610fc18a0750e9af8719ce04cdd87b8647464f18cbd9d6
SHA512

beda8e9f62f73bb03229705790803996d94d943051c5880dd6ea7678b91246648c6632b3c4c64689a6174b92ffc0abac00a125b8b915ab937a65f500240bf62d
SSDEEP

196608:Ui1nwWk9TglrZwEq/dLgJL/q06aav5hgOL+7KD3/lhMynLQ3Wsb8/QZ0VXNwxCDG:UBf9Tg5ZCdEZ6wGD3/lhTnoVb8/QZ0Vs

Score

10^/10

erbium

Malware Config

Targets

- Target
  
  wanyria.cc/MadeInHeaven.py
- Size
  
  24KB
- MD5
  
  aff401d63578a38eca21722feaa1d8dc
- SHA1
  
  2a9c5dacde7c53c17459575bf0580e10f5b50041
- SHA256
  
  c1d3101ad32b1250853da632e804d5bc89e6d9d0e4f02dce4c2920878bf5981c
- SHA512
  
  1d800039547550aa2aad40ec3663e4038493a0d630d5648257f1e4f3187c58b81119737141e5f7c9cf9662551cb31d5787551dd391bd801d85506dbaddd2700a
- SSDEEP
  
  768:Ae8888888888888888888888888888888888888888888888888888888888888E:Aw
Score

3^/10
behavioral1 behavioral2
- Target
  
  wanyria.cc/Wanyria loader.py
- Size
  
  1KB
- MD5
  
  61c09239da3d9e24715be5708034c035
- SHA1
  
  34f48c8334d465f921d0a8228a6c7bd391272098
- SHA256
  
  b2dcb2d067742e926f63f9f70a1d1940e41d56c96d5ec0a95545a2791919a0b3
- SHA512
  
  32fb26a9a732e9af2609cb99019f5eb59bd13f1bb1f95c8fb07e9c9c46afb8693bfd5dc49f594d982d978cf96f344e8bd393f5daa09ed7f1f6beb862a9b19dc4
Score

3^/10
behavioral3 behavioral4
- Target
  
  wanyria.cc/libaries/RUS.BAT
- Size
  
  38B
- MD5
  
  88fecce206498e4d417101c2ae6ca2b7
- SHA1
  
  b23f50184b340c61566d4d7b10094a11ad8c0bb1
- SHA256
  
  2c6930f0638ce41a1ea1c66d68864b77d34c359453bb7e52bdeee0e00f59b270
- SHA512
  
  7005d126d02e9e6e74780ba10029ff4d3659ad7fc89fd83ddbaa94137d3e5e7b2b9afa33261a06bff28dde4a139b83d2576e94c60f08e9eab7b54f6fb156aa0c
Score

1^/10
behavioral5 behavioral6
- Target
  
  wanyria.cc/libaries/engine/fagality.dll
- Size
  
  36.1MB
- MD5
  
  38bf550f8d73ea9791d7778d9b6b44a8
- SHA1
  
  67bf70a4d78f9f18b1af30cd9c85c632b52188c1
- SHA256
  
  ed6566cd8828d0d9a7bd2bd7731df7703977d9b18fa7ede31bb8b1835b12da78
- SHA512
  
  cfff6d55b90a42be22d09aaf30eed718b71fff8bfddab2404e968359a18ab8aec679a4ca85e144d3527602fd515a03724e897addd68865e796b0a387f582fd7f
- SSDEEP
  
  393216:g4S82OrtN+zJkGsF20dH5ZXtpKjzw1QxgvLqmNAmjpy:7OOrtN+zJkGsF2OZZXuv4GcLjp
Score

3^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8