2c376c69255d3445a86e8e1966c75e69a95ba95ab2fe15cca3f0c0ae1d18a797

Sharing

Copy URL Twitter E-mail

General

Target

1.jpg
Size

1.3MB
Sample

240516-l7kytsga49
MD5

65d67bf0ca6d16df1eda6b9dd92cf354
SHA1

fb7bab2d0563f90fbd93f630e0a07405c9705f8f
SHA256

2c376c69255d3445a86e8e1966c75e69a95ba95ab2fe15cca3f0c0ae1d18a797
SHA512

4469c3bc5ece1c28d6cc69c2f68ae2c8b64ea11e2574db65cce742dda386e0ac86ab5e702a5198a5d764357631dc8db1836bd4b9ba4d945d15d496b7eb3728c7
SSDEEP

24576:Kp5Im3s642K88NromMZHAPgBFfozRV/zA/+CD/+l1FHrXXBdS7zGe:Kwm3s64t8iMmMePgBFAzvk/n/+lDddqJ

Score

3^/10

execution

Malware Config

Targets

- Target
  
  AutoHotkey
- Size
  
  339B
- MD5
  
  2312ab36e3363bfa8f217c14354aba68
- SHA1
  
  736c5cb239a94007863c03c68705b890fd051302
- SHA256
  
  c53105c99521502a13e4dd32fa591a52b4b35026c68de86aa34f68532ff94769
- SHA512
  
  dcd58e38538b9aee53fa4d9b51e563e4e42bf9c7763d2094261b3de11dd21617bcb4bb8c39f86da9409c84b2b0e52a17a56a4aa1c832a0df47201576fd91860b
Score

1^/10
behavioral1 behavioral2
- Target
  
  AutoHotkey.exe
- Size
  
  774KB
- MD5
  
  e63e2669a293c1a6709c373f208a48cf
- SHA1
  
  489957991f7c59ec748fb4951fa0b2dd676c8998
- SHA256
  
  b740b8ea604a8b6ee1864353cfbbcd6778187486cc408d750c7a1a93bc6a0a0c
- SHA512
  
  82655f6110ffd9fcca1572b593ad0bef51974da5a18bdecc79ee88f8d56e14157b5349fadac4f27a8df4e6537165415acb6670fa0c453c5131d67d2500b5dde9
- SSDEEP
  
  24576:oOm5/ylKXZF9rk2o7YTuoSGjkm+XR5bQQk:/lO9YxSV+n
Score

1^/10
behavioral3 behavioral4
- Target
  
  Execute.txt
- Size
  
  7B
- MD5
  
  40cd014b7b6251e3a22e6a45a73a64e1
- SHA1
  
  6ea36ce8d4940505e9a2c8fea5db868cd8b3d440
- SHA256
  
  e3a67d9540e9a204f7dc4aa9d44a0ec652856cfa932a21196bf9df23aa0e4cd1
- SHA512
  
  776d4496cc76782961d66f235ff257567e12e85b950101247fb29de911a4e44048398932f2881b5610cbad6c90fe1c4e99f346cc7d315d7b9a612c89b19b42ea
Score

1^/10
behavioral5 behavioral6
- Target
  
  Gettype.txt
- Size
  
  7B
- MD5
  
  9221b7b54ed96de7281d31f8ae35be6a
- SHA1
  
  223fad426aa8c753546501b0643ee1720b57bff0
- SHA256
  
  8eab5c7c6d1116d28014f0da7b7e78b9857da1e6f951b903f2a714fc6d3c790a
- SHA512
  
  be37de186628a2c30698a6d4826ec5f8845e7b69317b2f044e86fae615c263a5fd179fcbc50821c85b49c9e3e71adb10a947060312da281418c8ca231d656d5d
Score

1^/10
behavioral7 behavioral8
- Target
  
  Invoke.txt
- Size
  
  6B
- MD5
  
  5fb833d20ef9f93596f4117a81523536
- SHA1
  
  d6aa1f3a789f3f3108666e0ac807ca5ca7dc5fa5
- SHA256
  
  e77f5b9f691679ef6fa67d3ec953199b1696cf6a0e77741c035f11aadfd9bf73
- SHA512
  
  afaec35da2440502779227d9436570db82e1f5d86c90662eae82564d717407518d4e1181e024566e2d8d6029bd4e738b9ba4a3108753a8d0d0c98934db94ba35
Score

1^/10
behavioral10 behavioral9
- Target
  
  NewPE2.txt
- Size
  
  9B
- MD5
  
  8a56a0e23dbfe7a50c5ec927b73ec5f2
- SHA1
  
  abebd513e68e63e7ec6ae56327c232b6e444ce0a
- SHA256
  
  3b348b38ac24e5e26423cc6d46936e7a4fdedda9d4aa89fdb2cfde4fad662cc1
- SHA512
  
  276fc17efa7fef658167a94f22c76ae2abb6768d40702a39f970f196099058139249b8e12f18569f7f42f03f581f2543e49f39ab41553dd38d85511558a77ed2
Score

1^/10
behavioral11 behavioral12
- Target
  
  SMOSA.vbs
- Size
  
  559B
- MD5
  
  338d201c115658e7c4b6793c8c84476c
- SHA1
  
  d5cfe8e15c1a9a0ddda0703756ce35b69e388675
- SHA256
  
  ead9c0c801a0f9b9ba4a8f5377366dd9d8608a81f08e491c578180fdc3c6af75
- SHA512
  
  8db6dd778eeaa72cfa5f97f31c7b552e80753221376d31bcb03ed8cbeb75b34e1bfb522958e004e5e7fe309b78983fc41ce6f5b8edbfcd84d1a053bd181245a9
Score

3^/10
behavioral13 behavioral14
- Target
  
  getMethod.txt
- Size
  
  9B
- MD5
  
  db37f91f128a82062af0f39f649ea122
- SHA1
  
  f21110ae7ac7cde74e7aa59b22ed10bace35b06b
- SHA256
  
  e53ba77fa1dbcb1cc3beed1344f6ae7b182d6a2e2a09bb32ec0d4474978e4a32
- SHA512
  
  681c5c69acba8c2b327afd0bcb1062fb5f6ee3231e6b95f4cd97ecd768879250eb81d36b1e1640554a85002a7b2b099acfe7f59f70884f10afd51d372583d3ae
Score

1^/10
behavioral15 behavioral16
- Target
  
  load.txt
- Size
  
  4B
- MD5
  
  ec4d1eb36b22d19728e9d1d23ca84d1c
- SHA1
  
  5dbc716c4600097b85b9e51d6aeb77a4363b03ed
- SHA256
  
  0cf67fc72b3c86c7a454f6d86b43ed245a8e491d0e5288d4da8c7ff43a7bcdb0
- SHA512
  
  d67f0ffb682d7a13510ec5d3e643889d43bc7593429f806fd882b2c72c05a530c2462d332d4293015f33397cdec84c53d1eea58a7bebaab5504153729df02700
Score

1^/10
behavioral17 behavioral18
- Target
  
  msg.txt
- Size
  
  823KB
- MD5
  
  635549af818b1ae895fda3b993034179
- SHA1
  
  b6784933f70c07122e7cecac3cf1f9849440341c
- SHA256
  
  90a714bed50022db437c27df67b572c0eaf015f6e36789011e4f071ccb7279bb
- SHA512
  
  c0ab094ae4635d2c79151e8f97978522837c4a376a938f43170b532db3cd39e3e5ee5b2b4007691cf6abd5fb078375ade952bc82eb330239220094e408d35cc3
- SSDEEP
  
  12288:c4Gfk4KhdY9y4v1UKbgIoThNc2ga/PrTFoZtI8PIJAb5RNlifHXnn0h0WMdvainV:Vo3TpEn
Score

1^/10
behavioral19 behavioral20
- Target
  
  node.bat
- Size
  
  687B
- MD5
  
  52dc8ab7250ca32c7dea8867d6464e5b
- SHA1
  
  4e3202f42632fa8a2c1c632af80b8223b9ada385
- SHA256
  
  b99b7a8864e07ed15ba3e11ec6e5ad793d3a8e257321c89c7c2b7842cc674728
- SHA512
  
  f43a7fc7e9d57f46eb08a8d84dde6503b5fd65c1f2e4a28f80ca700ca2050506c05b09ad52e092c6b46f094a079580bbd863cf04ff0ea3db589d2527218ef985
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  run.js
- Size
  
  1KB
- MD5
  
  660c9112523248048eaf7d9f1ee30960
- SHA1
  
  3126188624a0299d3821ae3dd6411b4905ecfd0b
- SHA256
  
  81b60a632098a246910c001762b65d85e8c00ac88be7a38529e41bdd9ae51093
- SHA512
  
  effb1eb00acda9d51bb6de63604d96cb780a6e76e57fe48d67878089c894773ea41209060e7213e3f92d337e24e7f83a7ede6535bd84920d69af1a3e8d37e6e2
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  runpe.txt
- Size
  
  2.6MB
- MD5
  
  036668dd4080665d5acd0044a61dcb3c
- SHA1
  
  edbeae42a207cc2d5aceff6bc2aaa8fd38a91101
- SHA256
  
  3909a7af458856aa8cf4e37b4e2f996b66b3e08b2c36ed77a39641510cba4dcb
- SHA512
  
  9f0f0d94031767cb0de606fc9e7a317454f9d1bebc57858e7ed993b280e7aaa5b888da12be495e09d7a5f443bbe765766a4ba0e55e3b420daac1470a55d1c344
- SSDEEP
  
  12288:hBmLyimPgZBqfajaWFc0uMDjEMcrH3c6pRQzlFm3lMovRczBXoUCcKsKvHyky2B8:IAJphpd4ngbSmcp4gSHE
Score

1^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26