Overview

overview

7

Static

static

3

solar-spam...V2.exe

windows7-x64

7

solar-spam...V2.exe

windows10-2004-x64

7

solar-spam...lar.py

windows7-x64

3

solar-spam...lar.py

windows10-2004-x64

3

solar-spam...rt.bat

windows7-x64

7

solar-spam...rt.bat

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    solar-spammer-discordTool.zip

  • Size

    14.9MB

  • Sample

    240525-pklhmaaf8z

  • MD5

    686a33c598d85a46da1ffa696cc98589

  • SHA1

    68add766897b260a4194477ede057d2db0b02de5

  • SHA256

    d1f6b30cfd3f071abc5a5d5d3d612e1448381dac7188f7492d7678916e3100dd

  • SHA512

    475cc90d37afa2b6601539ae323311dc39f1548c5f9fd70d30f0224d2fb5cc1a2d44910292cda5730902da5d67079cd83fc26b938097d62dfe926a3ad3ed1ec5

  • SSDEEP

    196608:/Zz8/xV77ydYuF9KmP+jzSSO+mulaKt960MS4S4EwUlUBO+n5JXISAB0QXHh+Esh:xzEnUlH+bXt9SS4S4Bv55I1B0UW+fM6W

Score
7/10
pyinstaller

Malware Config

Targets

    • Target

      solar-spammer-discordTool/SolarV2.exe

    • Size

      15.1MB

    • MD5

      f4c60a9b5f305af90f7466366001067a

    • SHA1

      9b29203471278ce87bbbb08c746a978b5c628e87

    • SHA256

      6e771f17e68054173d154930335dbe1d5836a9ea81a073f354fd050dc298f216

    • SHA512

      0ed0095cd369e9ae924ce7604a14e197571c9e91025d5d726c6d3448208f847e893cfb6024b7c56bb0db89d83cdca5567888c6c79424bbe477c9852f7ca1a4d0

    • SSDEEP

      393216:6p8QEFG8bk3me4xcGfdr61juv3C7A9WC:jQEFG8baS5Fr6qV1

    Score
    7/10

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

    • Target

      solar-spammer-discordTool/solar.py

    • Size

      279B

    • MD5

      6639a1095dc3e0cec59e7e33b19006de

    • SHA1

      3d7a5fd6469021e400df9dd19da1c7687f7f6c6a

    • SHA256

      4976a8497b8e1e6c17d8a17e56b163554b7da3879bd91d2e7fab18ebe45bc89b

    • SHA512

      67e16f62aae236072c2942edcda0f3a428a2521e6adad67ac7071982d2a53eadb71d5b0fff6638a31fd5b293a94c0153f16b0d160716f64ae108b6947658f087

    Score
    3/10
    behavioral3behavioral4

    • Target

      solar-spammer-discordTool/start.bat

    • Size

      96B

    • MD5

      609cbafc09d19eb02e49c5834d7af45b

    • SHA1

      bceb0733fc6c0ae021b4f0173a98b9f1e8dc70ee

    • SHA256

      e19cce9949d67c601444b2528cfb6f59401bf0c3c46a1dc54ae1df1070e41741

    • SHA512

      fac9732c90b748abea899b9aa71559bd8ae86525c09fe97c09c34b04d8a64ad652ce6482d1c99338c9a2b80e49c7490894bacda552b9d7b065ed4e4a3a1824d0

    Score
    7/10

    • Loads dropped DLL

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks