805d56b5bf26c9511f2cccb5396fc62953d9404d2fd98c6a5602f1c4e1447861 | Triage

Sharing

General

Target

Nitro_Gen_Made_by_mr.ilker.exe
Size

57.4MB
Sample

240526-tefseabh5v
MD5

1df676ac3dac61122c35214de6ad0e75
SHA1

70188ae15ca9cec02189b9d7ee54d1bc524ba3ab
SHA256

805d56b5bf26c9511f2cccb5396fc62953d9404d2fd98c6a5602f1c4e1447861
SHA512

b7a8213c702e9e5a5cb62e1090fabfac8df45cf83f2ca0fcdf9f68acc3ab309b3910a2fcf7b14e4a500cab96a852ac73ae3af2f4969ed0ceab3a21087db367f5
SSDEEP

1572864:yS1gy6fnJXGMK4XR6bkEgjfBmMKYOESCU/+k3z7L:y4gy+gYRwgjfBmMKySC++k3z7

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  Nitro_Gen_Made_by_mr.ilker.exe
- Size
  
  57.4MB
- MD5
  
  1df676ac3dac61122c35214de6ad0e75
- SHA1
  
  70188ae15ca9cec02189b9d7ee54d1bc524ba3ab
- SHA256
  
  805d56b5bf26c9511f2cccb5396fc62953d9404d2fd98c6a5602f1c4e1447861
- SHA512
  
  b7a8213c702e9e5a5cb62e1090fabfac8df45cf83f2ca0fcdf9f68acc3ab309b3910a2fcf7b14e4a500cab96a852ac73ae3af2f4969ed0ceab3a21087db367f5
- SSDEEP
  
  1572864:yS1gy6fnJXGMK4XR6bkEgjfBmMKYOESCU/+k3z7L:y4gy+gYRwgjfBmMKySC++k3z7
Score

7^/10
- Loads dropped DLL
behavioral1
- Target
  
  Scythe MultiTool 1.1.pyc
- Size
  
  18KB
- MD5
  
  2ec71f6ecf0e008a07afa2d56f95d90a
- SHA1
  
  85a827c776137816c84f60076cc4319f6eb7ba8a
- SHA256
  
  b6893f0f743e8764c3fff7d973f1a4de29a648b2c0a3083513276ba5d7d8f9a5
- SHA512
  
  27d36dbd62b5bbba23705156f05598319eb4edd9480f7d9648e03e47f3ddb28d782d54d693a328e911f743d7b2997a9bedd26ff1db5a3a113d53a033fb7f8f3c
- SSDEEP
  
  384:CZgvuymNEErnV286YEDip0Ub0xILIBIcyzPkFdzZo2ERYqUQ2/DIBiYclmeesJuT:Jvu/rnV286YEDiT0xILIBIcyzPkFtZox
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2