Overview

overview

10

Static

static

10

GPT4ALL.exe

windows7-x64

10

GPT4ALL.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GPT4ALL.exe

  • Size

    111KB

  • Sample

    240523-tbxlragc6t

  • MD5

    c82f0edecbf1280b75b0bbd04b030f19

  • SHA1

    6cd8cf4e48103e92f48951428bfb594aea0e313b

  • SHA256

    d5210ceacbac1b615fc7286df0435b5fb0562ee8cf90e4f8242c544ea906e43b

  • SHA512

    1583eefc55fbe37a810cffe31f957f299091ecf8e7b293f150f473318daec3f085a015ef8b37022f7c5f80093abe0076f7d6566b23b96a7e5fde2394d3d5f4db

  • SSDEEP

    3072:ZbKoYUuQaS+T8s14NEn05vYvjNhOYhbxqHRQWtzCrAZu9d2:zYUuQaS+T8s14NEn0RyNVbgz

Score
10/10
toxiceyerattrojan

Malware Config

Extracted

Family

toxiceye

C2

https://api.telegram.org/bot6874514158:AAF3aMojFRhYPPKLlQHDrhjxEaY4YfxO8Og/sendMessage?chat_id=6875765187

Targets

    • Target

      GPT4ALL.exe

    • Size

      111KB

    • MD5

      c82f0edecbf1280b75b0bbd04b030f19

    • SHA1

      6cd8cf4e48103e92f48951428bfb594aea0e313b

    • SHA256

      d5210ceacbac1b615fc7286df0435b5fb0562ee8cf90e4f8242c544ea906e43b

    • SHA512

      1583eefc55fbe37a810cffe31f957f299091ecf8e7b293f150f473318daec3f085a015ef8b37022f7c5f80093abe0076f7d6566b23b96a7e5fde2394d3d5f4db

    • SSDEEP

      3072:ZbKoYUuQaS+T8s14NEn05vYvjNhOYhbxqHRQWtzCrAZu9d2:zYUuQaS+T8s14NEn0RyNVbgz

    Score
    10/10
    toxiceyerattrojan

    • ToxicEye

      ToxicEye is a trojan written in C#.

      rattrojantoxiceye

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scheduled Task/Job

1
T1053

Persistence

Scheduled Task/Job

1
T1053

Privilege Escalation

Scheduled Task/Job

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks