36f1589b72c2e30cf37b89d5108fc2d7b0c8a4577904cabeda30cd011d29595b | Triage

Sharing

General

Target

2024-05-23_a9473b066152203957beae0748ea6fbc_snatch
Size

7.5MB
Sample

240523-wxbyaabe7y
MD5

a9473b066152203957beae0748ea6fbc
SHA1

ef29c30577a689bfdc8070f5848d76c3ffb96ba4
SHA256

36f1589b72c2e30cf37b89d5108fc2d7b0c8a4577904cabeda30cd011d29595b
SHA512

235023a0565b0699626e9209f6a8bebc425bd3243f9e6829d917b39840fc4353daea4e1637eb2453b9b95634415ae46c1c7e8e20c57a7998d5c9b38dbf6d4c52
SSDEEP

98304:pYBPE1xp/Mlgj/ruEl2/uJqrWnBrrSgNVBuQGQysD:pXpAgjPljFp+gNDuzs

Score

6^/10

Malware Config

Targets

- Target
  
  2024-05-23_a9473b066152203957beae0748ea6fbc_snatch
- Size
  
  7.5MB
- MD5
  
  a9473b066152203957beae0748ea6fbc
- SHA1
  
  ef29c30577a689bfdc8070f5848d76c3ffb96ba4
- SHA256
  
  36f1589b72c2e30cf37b89d5108fc2d7b0c8a4577904cabeda30cd011d29595b
- SHA512
  
  235023a0565b0699626e9209f6a8bebc425bd3243f9e6829d917b39840fc4353daea4e1637eb2453b9b95634415ae46c1c7e8e20c57a7998d5c9b38dbf6d4c52
- SSDEEP
  
  98304:pYBPE1xp/Mlgj/ruEl2/uJqrWnBrrSgNVBuQGQysD:pXpAgjPljFp+gNDuzs
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2