blankgrabber | c346bb8c81211e612f906627c01933b852c4f9334551b0c1c0acd73a4a2099c2 | Triage

Sharing

General

Target

RoseBETA2.rar
Size

80.6MB
Sample

240521-zfxp7shg7t
MD5

49eb8543dc4fd9d96a3d401b7af782b1
SHA1

83925f9e93e92d12f510c306fc1ca80b35459a28
SHA256

c346bb8c81211e612f906627c01933b852c4f9334551b0c1c0acd73a4a2099c2
SHA512

90a340ce8bae17420974ce2382845c5b8e07abffbc9f68b2fac295c6eb9eb1f7b7e8aff4810165787f1e71f2b48a8be16efc50395ae2ce278b501398ee106018
SSDEEP

1572864:gmWfYlqeSWJhuS7JhVCZPvzosfqZOLWip8jnqjIjnBBS3Z1/MUjmGH2VPLjrvkpB:gHYlqKh1hMFvzgQWLrqjinB41/Ms1I/6

Score

10^/10

blankgrabber execution

Malware Config

Targets

- Target
  
  RoseBETA2/dist/client/assets/clojure-0161a6a3.js
- Size
  
  9KB
- MD5
  
  a21ae7b603f4ea70c566ade461ffcfa0
- SHA1
  
  32ba4ad53cf75202f7bf2cede31ff246ca567791
- SHA256
  
  b157264d459a51b7c69287ada5580ac91532b830068bfa2aae743d79da5683e3
- SHA512
  
  5495421c14a150c5cd86f0830870801a8335958605aa70595c7b943e91c0de6b1e96189c9a6f63e4ca759665d96e805b04766599e21788492cc566b118a0dd39
- SSDEEP
  
  192:hvD97PNZLQ3xN//F3kxVrpHJJJbs+b9N1FhbZDbBPjwnIHUBS:hb5PNZLQvZkxVdp3XbLhZtwnId
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  RoseBETA2/dist/client/assets/coffee-726bfa76.js
- Size
  
  3KB
- MD5
  
  c76e5755c656fb0d31fd5ed5af4884c6
- SHA1
  
  5ce63fbf574927e72ba481c286d999c23cbff766
- SHA256
  
  d9db11c2cc3ac24d53cbb8e9bb00137c344bae42b0a3db237430dbc780414bdf
- SHA512
  
  4b38c7247122fa55cd3b5309f50f7dd735d7aa52a7102a1d7eb825fe267dfc94ea901c4a5699990071f42bb8cef23736288b66c73766dd38d340d34f56019f77
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  RoseBETA2/dist/client/assets/cpp-147e3099.js
- Size
  
  5KB
- MD5
  
  9ab64475f0f85460a860683fb0c47a1f
- SHA1
  
  1a6eae0b573946b7d75281e19908e8468a7b78ac
- SHA256
  
  2cd028553e37abc628ffcfb6a31a6393ffeaa0b50305ad6e9542eef4c51b1847
- SHA512
  
  e9ea0dc8a8a8439f73c65e6f0cc1a6a7036e0965ad53ba4f46fe34998a5055bc0aa516e6ef621ea20d8c4177254e48f6ee3d0d44d76041e5cbe884aa2be9928d
- SSDEEP
  
  96:hFDHtRs+rbV1+gqVV1+/XVb9ZRC2seM6jjz13MwVcEghhb6c7bwwGcmvRhUlNNny:hvDrTOSVv5M61h8hxHwiYg19w
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  RoseBETA2/dist/client/assets/csharp-4b9c2008.js
- Size
  
  4KB
- MD5
  
  2eb62a64c6a4f4bbfecf06cdb15387c0
- SHA1
  
  d8fb886baebac9f6affea49901413bc0a1da9165
- SHA256
  
  64da5e7bc723afe5f9228737ce90f3bcf91d0dfe1d5b2924e05c7b06500a5319
- SHA512
  
  c57f70cfaad4bcc23108bb04fc093f6f5de1ba765e75d013e559513bc43e20b0caba3c10f20aba962aa02012f61ddca8b1b83f8ea0a71efa909d5fa232d2fc03
- SSDEEP
  
  96:hFDHtRs0x+rbV1+gqGV1+hmQaq1cBh8bnj8/pLxb6J994wGcKU7dYIkeZ:hv7+rTtPWupw9SiKUJGC
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  RoseBETA2/dist/client/assets/csp-1597dd73.js
- Size
  
  1KB
- MD5
  
  26116dbc28b8bf717ca07ee0517a2f77
- SHA1
  
  e7200235858cfe65120af0f1c404619d21227722
- SHA256
  
  b8d5a7f576484458ad2ed7d0ab6220f36eb421f94bb838e8e1d3422f1865ea15
- SHA512
  
  fdad4b0c53af4365bd0108640162698d1096934ef94293d53e6d93f7c2e7b7ab58434404725a651ac620fdbb4d9b54366da2bbadaffad7a134e3c08a25b97dd8
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  RoseBETA2/dist/client/assets/css-6b24b69c.js
- Size
  
  4KB
- MD5
  
  4cc8a888146e162cbdea58e0ad8b3768
- SHA1
  
  35bf89c729e1dc2ac66107097fae4824b99b6b0e
- SHA256
  
  a1cf6c11cdd270d9c3a497fb6aeaa42aa5e3cfe02f5d6d9962df66c2dceeca3b
- SHA512
  
  19fe95b20324cde20df16a349bb1c17c82ec491a4d64f5a3425addc94b14d7932a3b0f0a3a892011c5a9525a205c1620f4aae1870d572b63db06e5bc9b955cdf
- SSDEEP
  
  96:hFDHtRsHzIq+q17qcq6V1+//Mj1cqTroIrqjAfF3l5XY0JW:hvgzv9emjoMfF33XbJW
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  RoseBETA2/dist/client/assets/cssMode-14b8fb3b.js
- Size
  
  32KB
- MD5
  
  67f034340ca02794e247f8c2d5b4aa6e
- SHA1
  
  57b1c2dc88425ce40a92146ff25d829d08ae23b7
- SHA256
  
  37b5ff4f8890132af9067038e15f6e77e8ffe6889655d004da896403fc7c958a
- SHA512
  
  14b4620cfe349ef73772922fbf3d7df591518231850772c6bf0fbdd460c02f1feadd1b5dd09f9ba709fbf3fbc5a97c9704d3a083a90994c76fe6c6955e8c1b32
- SSDEEP
  
  768:x1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:CfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  RoseBETA2/dist/client/assets/cssMode-1da7bf79.js
- Size
  
  32KB
- MD5
  
  c39f05703cc20385c4eb745cd2433d80
- SHA1
  
  5f870af01fdb81e33f666f54df16fb8ba0dfb18e
- SHA256
  
  82b6392f353c8bc04fdc4b1c6f2092b50f532cc1978463cad97572b8a30f4479
- SHA512
  
  e9cb153e952b9686e32d5f06cefb31bb98e6622ebd9706c92f4d5f5f81c339d07be4d79fc84c8b47663abc5ef19ee6720145be35990cc27d5fd68282dc2c36b7
- SSDEEP
  
  768:h1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:yfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  RoseBETA2/dist/client/assets/cssMode-2c058025.js
- Size
  
  32KB
- MD5
  
  541f23f357c62805395d4a5bf66328d1
- SHA1
  
  fb8cc3feef08a8493c97b88fb39a31f6157da453
- SHA256
  
  5f10e0e0f1f3928d6ba98e14b6c741d45b8b85ca0fa2ae1c0650410dd3033abe
- SHA512
  
  3ad2a6b4ba4f9a024b14f9a7fe229c8d452d58ea67e23c6ad1d931cf75861f0bbaca8f0c081bda1eeb2f47e2f6f7fe90b1dfd60e3dce4dc1671c53cb7c4a3131
- SSDEEP
  
  768:q1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:BfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  RoseBETA2/dist/client/assets/cssMode-344d01ba.js
- Size
  
  32KB
- MD5
  
  cf1a27e55097066da4b5feffbe5da6bf
- SHA1
  
  cc87627eee6314769c22203596afd8afd389ecb6
- SHA256
  
  97c909b1e542f497d090a4ca032621131cbdd1c3ebe9316cd1a8dbaa2d73c1c7
- SHA512
  
  178bf76f13174849690fe6f21684170fa33a78c1c665084026e9242762839f826536200c6d371ed6d219abbab65e6ee133ec23af31796f9a743e72d03e67a426
- SSDEEP
  
  768:A1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:3fSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  RoseBETA2/dist/client/assets/cssMode-3b155fc5.js
- Size
  
  32KB
- MD5
  
  32c538fffd66f319153b1c3320f5eef7
- SHA1
  
  c63b9bf6b66681b15851d9174702c9c1be7f818c
- SHA256
  
  2b0b270cdba3c1f08bb179a97a9fe8bef9847cc4f5696f6c6e58e5dca94a258b
- SHA512
  
  71f778fc309da01879f49a1a07a4fbad7aec950c4c68acf33d1f94730a76e2d7cfcd8d48e1887cfb630915ab5364dc90144dc5c9ac1af0f7423c1b8ac56d18d5
- SSDEEP
  
  768:l1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:2fSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  RoseBETA2/dist/client/assets/cssMode-3bb745a3.js
- Size
  
  32KB
- MD5
  
  a111f48958c597e7d40431ce88b7085c
- SHA1
  
  0cbed6f8280c77f98f19b77473448ec47f5c7e05
- SHA256
  
  fafbeeb39b6de50b48bf902a6038c2a89fe5fe6b4c461f4fc82680d344f114f2
- SHA512
  
  5787ec91b80825cc1d45aebecfe3f59609c2763d4d8eb764c119e082f1f78df61abcdeb600b2336f6bf2343352920125bcc0aa17f9aca123bffbc3f0dbe602a1
- SSDEEP
  
  768:s1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:jfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  RoseBETA2/dist/client/assets/cssMode-462e01d9.js
- Size
  
  32KB
- MD5
  
  6f8e008319add38b6fba5bf8a7da08d9
- SHA1
  
  4017ed10ee68f55f868c4e493ff9d594d0464a0d
- SHA256
  
  4f4fd00cf4f01ea782e734731b6efa6374719ffbd5cd75cbf419634cc004e214
- SHA512
  
  2b0f6f4141460fe0991c94ccbb7eee8ea70a63f628392bdd962a3768b4ba809c7fe5df05ae3d2c6ba74420a2102c4f3161cc728202d893b29a946a3ea10859d0
- SSDEEP
  
  768:L1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:cfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  RoseBETA2/dist/client/assets/cssMode-81713bb5.js
- Size
  
  32KB
- MD5
  
  aa1442a6f2c92a5b11241e4608fd7748
- SHA1
  
  fa93b9501305ba26e968cc1b07521cb8a89c3f7d
- SHA256
  
  3aa274c170361daa8a9f4686e1173a6f80be1496218d9710a7ef1f0928b9bc74
- SHA512
  
  c4fa519c5be4de7484d7df80f72f324e81f0f23b7328ba41884c360d334c80fc86bcc5c992e3af52a69c195d44600bf920cabcd5f88354bf6bdc73a59177fbd9
- SSDEEP
  
  768:X1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:IfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  RoseBETA2/dist/client/assets/cssMode-92efe8f0.js
- Size
  
  32KB
- MD5
  
  b400d2897d647c6a3f5763d23527a112
- SHA1
  
  6c2971fd71aa58083b65a57b56c7b2bed91ebe03
- SHA256
  
  9e38f915db535c0f6aba70fce82d3f94b6f1e6a02ec85f51e53d951f08577f27
- SHA512
  
  bff024debe617f33fa26fad8ef5698129a99e0b6f7c3f2d11ed5989395839f5899cd9b48dcc18cd5c2266a75572a42bcdefef7f8ec84ecbc708eed237e3ca311
- SSDEEP
  
  768:D1+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:EfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  RoseBETA2/dist/client/assets/cssMode-c5ff827b.js
- Size
  
  32KB
- MD5
  
  20a913325770ca62bec6c4d4e67a9229
- SHA1
  
  0e79a999070344798a9c0d796eef09439c3b60bd
- SHA256
  
  db11154412db9a4bc0112ac2a03281467971704759fb71abb162f8ac88041be3
- SHA512
  
  241ffa63aaa05cbb92cb12def895f66db01e00d351361df429e148a8e24a27fd41074c818b92de4076829f0a1576f3961bdfc6a7f5433afdf39abdc6fcb40098
- SSDEEP
  
  768:01+fkjen1/e6JVAYn1qOh3lSPOCGRsq1gP31lO:bfSYNVb9lWOCm9mPu
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32