b47f027d4abb21ce7a8eca56eea90b8df16a017ea8c8a7bac9f2aaac6b76b70b

Resubmissions

12/06/2024, 17:05

240612-vmcamasdqh 6

12/06/2024, 16:56

240612-vft7vsscma 7

12/06/2024, 16:50

240612-vcjxqasbna 6

12/06/2024, 16:40

240612-t6wb6swank 6

Sharing

Copy URL

Twitter E-mail

General

Target

sketchyorignorant-main.zip
Size

24.0MB
Sample

240612-vft7vsscma
MD5

edba45834f372e973bdc458d1beccc47
SHA1

9059cd87f356eb79929defae26f047fa4383537c
SHA256

b47f027d4abb21ce7a8eca56eea90b8df16a017ea8c8a7bac9f2aaac6b76b70b
SHA512

011468d9bd3e8f3bcc95e4006ba3acf42b4c22c953457879bb0e51a1712533d35b7d98d5299fc11aad048b2070334bfed67cfc5b4dd01cd9b893c04290c6505f
SSDEEP

393216:bv3ZmN7GG2TEdmL0/yfs7boPxQsHrJi5/CLt3NQlYFbOSYSoQmak9Kxr3c9/iJkN:bv3Z66Edm5sHoP+SrJ+mtdISWyk9K565

Score

7^/10

execution linux

Malware Config

Targets

- Target
  
  sketchyorignorant-main/21632898
- Size
  
  922B
- MD5
  
  4a261a62cb4179bd7f1e9963bdf464b2
- SHA1
  
  da471b6d2cb05e5cc0d0506fe6dee8126f03616c
- SHA256
  
  a5eed75ecc135a193f06ec0d4a9d00e71ebae3063442dcd4b8ffeadc53be59e5
- SHA512
  
  ece2175d09f1a640219d4eff38f15a1643c8345b760727b7ca799c279f9998a860db0f5c3b5981791c011387d51f73dc5c315318fc34c92eae16080f0dbf8548
Score

3^/10
behavioral1 behavioral2 behavioral3 behavioral4
- Target
  
  sketchyorignorant-main/67175893
- Size
  
  1KB
- MD5
  
  d16de348791885bb6a61417c2b093bdc
- SHA1
  
  3dd7010cfa262ad2490d0ddc564bd8952aa07694
- SHA256
  
  114dba189dba4ed34179ce9d3c2fd4e14fc9fdee09f680b3fd8b7476ec5bf3f0
- SHA512
  
  fa880783ca1f9d7def9d79766e29e463686d8abd42dd7ca7af56995895894c92910565a17f99c789d82972fa62323193b1e6330284ac6b219a6f70673c7f33cf
Score

1^/10
behavioral5
- Target
  
  sketchyorignorant-main/67175897
- Size
  
  3KB
- MD5
  
  0fd1856f34af804d73c395fb6d1cdd25
- SHA1
  
  129737aa1577891669f00426e5879c218614bd5d
- SHA256
  
  9e04ef5397a0f28f9f78fec004be35b94236730fac43cf76648131f620fe4a10
- SHA512
  
  ee6520aca71b9e5731e9d102c4cdddea74aa4304f2dcf0e5ac0f0eb656b57436e58d3985b4d3f062c86eb830bb6bb94a8273d4ef24e21e248fc2d66601925709
Score

1^/10
behavioral6
- Target
  
  sketchyorignorant-main/67175898
- Size
  
  2KB
- MD5
  
  4f5237cffa1eaaf80458dff4e1e12204
- SHA1
  
  a62164a0f8f0c7419489675b123a8c18e7467810
- SHA256
  
  a987650d993c15e8638d749c718b641530b23f73e5b7d1bf2da0fda60e9ed41f
- SHA512
  
  c05be0788970c09c9cf3bb64e05a7fd331e349235a47c2fa098d7e7658e5cf56f02c76cf95d9706ce6c49c2c9ee3fbc14aa9d01ca8a8f4bf4abf5a8966766bbf
Score

1^/10
behavioral7
- Target
  
  sketchyorignorant-main/67175899
- Size
  
  18KB
- MD5
  
  f88fa9c1edbd495e87b2a6eb0af92a74
- SHA1
  
  5acbf7387649e9fd2a0405ec3d076e56d20e10aa
- SHA256
  
  d08efd59446f4da8f27d422606f8dd48911a2ce410b36c5bef5cf61e822159c1
- SHA512
  
  c13cdc47cb31f72d222bf98c1f3b410d3f0bedb72a43bdbbe9b2379575ba8faf68feba1ac0a00a2d7b82a71f44d7e6ac73604ae8cec17b82da4c72fe47711a3f
- SSDEEP
  
  384:PwVIgdm7rq5uEAMkFWaVHYD2XPEtZMAgKQuyxDi4GuKl:P0ewYSDAEqG9l
Score

1^/10
behavioral8
- Target
  
  sketchyorignorant-main/67175902
- Size
  
  2KB
- MD5
  
  4027d9abbe2100e7ab658347f9b3fb20
- SHA1
  
  2d08951ec9a626e2fbf50e51f623deaefa3c99c5
- SHA256
  
  5d6dc4d5aa777bcb1be6ba00ab5fbff72b763ad43ee6405097678ef12587a952
- SHA512
  
  9286f6a799016e481479a2d6ac335a732191507dc8367e822d3e0ce616d6d14113a0e16d1051660bb07effd4a603bb9bf264d54184a3bf8526ac61c2c2b349d2
Score

1^/10
behavioral9
- Target
  
  sketchyorignorant-main/67175903
- Size
  
  7KB
- MD5
  
  81b5e1ab4474e34ac03d2a07dc41d322
- SHA1
  
  6a46ebae62de10ac9a8ef92ad1f3e9514ce9a21d
- SHA256
  
  74991b0a24a0811b334c5128e34ca0d1aac5fa471248173e16c09d7326964e29
- SHA512
  
  620f6d52b59dec723726e21ef0b62cb093c3d8dceee17f5ea50e12911b8a3032f9b01d968ca367e399dd4beccb127cc2388bec98792e195e13d48ed52f5a8520
- SSDEEP
  
  96:bgLd17imjCBS26t8wtixZq+51d0REvYXRFgNi5LGA1EOkfbldnd7LOe:b85imjuSRt8wsxZqHDfLiOkfb/t
Score

1^/10
behavioral10
- Target
  
  sketchyorignorant-main/67175904
- Size
  
  5KB
- MD5
  
  d3135711ba5e49c59225fca5f2fe83f3
- SHA1
  
  fcac8293f28dcebb69e15e1b0ef160d1cd8148b7
- SHA256
  
  1a758d23239d494aea655a3569915d29b10b3ad5a1e50c78fa9a854c9f9d2eb2
- SHA512
  
  d38e088ad0482b57622a4d7968b11ab0144360e3743a276aadc98359c37552454f8d6efabeef95cfd025571949100708d88206ca18d539f455c3a2493f418d45
- SSDEEP
  
  96:bYWzVmDytlsn3pB+8bLj2akWGhNFIDLyFB:bdzVmDJ08bLjoWG6G
Score

1^/10
behavioral11
- Target
  
  sketchyorignorant-main/67175908
- Size
  
  2KB
- MD5
  
  ef1666b127d1f582031694c6b52bc99d
- SHA1
  
  c81c2e09476b3912e4a86e05b9a024c4ba5cd636
- SHA256
  
  cdb5af6c97dbe8acb5da74e2b0ded31717800643c8d6b31641f8f5027bd2d17e
- SHA512
  
  dd60a470470a736e1b36f8fa8fc95b5f4441fdde492934f98f4c82106d5fcd087a0e027f72ffa46884b25c4c63840cb49c9091f29a619e66485f93c55865d39b
Score

1^/10
behavioral12
- Target
  
  sketchyorignorant-main/67175911
- Size
  
  9KB
- MD5
  
  e733341d5a4190d47b28ab9310cd13d4
- SHA1
  
  ee236c763b3386d68fd4bdacd1090b5c48e0e96a
- SHA256
  
  f98d503cf9700373339f2bd73493997d5bd6472f8c031bea4239d30e095e225a
- SHA512
  
  a2813cc5a1f624caa66d59bc611b22511ce4bf623e72054ef664ab36b78ac8ff789fed3db09997434ec659b6c9e5636121f3f4c13b79e7be4c0a4a88b343eb1a
- SSDEEP
  
  96:bkSN4zHbipdO6UevUTY4caky/UaXHHPU2PQCt7LM7U5gA9D44PD5cwLa2:bRqzwzhCh9kTa8yQCt3M7U5gwkA5D
Score

1^/10
behavioral13
- Target
  
  sketchyorignorant-main/67175917
- Size
  
  6KB
- MD5
  
  41fb30159648a83204498aef4507da20
- SHA1
  
  00dbf4abe9af2e5e129300e22ebf7144d7d6c5e3
- SHA256
  
  18ee0b69ec19626ad92b656da26b4354ea2c498c49d3fed5558bbae8b7618fba
- SHA512
  
  2e46cd5a2c37ae8eb16559758a5fefb71435707fc9928182d964a38ae75233142c37932f240f3bcace4c25961808cca2b664c9afd46321b77156b7bd67392291
- SSDEEP
  
  96:bw/NtzOtIcFVHbfWuq7zLYEhvKt8BpGmeC7OrKQTKv9Zs:bwitXFVH7qHLYEkt8JeC7OJQs
Score

1^/10
behavioral14
- Target
  
  sketchyorignorant-main/67175955
- Size
  
  162KB
- MD5
  
  a6ebd8e5ca38dfbb79e136fa16d8387a
- SHA1
  
  3cff1e11f430000cca957243d24657f171492d1f
- SHA256
  
  5f50db54ae9c17b3d0d3f6cec935579a621c3fd1916da10cd1d2a64d7a0e4c38
- SHA512
  
  048136ad43f0f99cada675ab41cdec31961dfcafc9796f089135996182fac953c20c7b04ced4d1e6900db22fc99e703adaedae6180a31b359924428d5a1db5c2
- SSDEEP
  
  3072:onvVKPQMiiN2PRRG42niaCRmXfMOB/gmlA90thMqU50VfvstUQzu9aNy97+:Sy3fMmgm2WxXs+JaNy97+
Score

1^/10
behavioral15
- Target
  
  sketchyorignorant-main/67175974
- Size
  
  15KB
- MD5
  
  d7c493ca4f84a7d50b53646421a37487
- SHA1
  
  82af5ff3b480cb5a3870da5e3b4762c3d6b7b888
- SHA256
  
  882386231c45df4700b275c7ff55b6f3698780a650026380e72dabe76fa46526
- SHA512
  
  bd5ac5f0433953d79408074239edc7c43ce23d56659d467805d81ab01c576a3cf77ccedb3bba41d48bc4ad46a8905ac8a1927b99312053ef6295fd940a6766d2
- SSDEEP
  
  384:QkAUnbXYwhNjTJ2O8ZZc/JtwRb6DedKzVYqQo9sCDyTXE:CU/jTJ2lZc/JtY6KgZYH0D2U
Score

3^/10
behavioral16 behavioral17
- Target
  
  unicode-width-0.1.5/src/lib.rs
- Size
  
  4KB
- MD5
  
  8c86ca7a3a138110e2b50cf2518256c7
- SHA1
  
  23cda3db5dca4b5d50aca17e2777919194f41df8
- SHA256
  
  38c44436eac069bd8d11203f31ecfef8adfe92da1fce19ba00bdd25aa3fbbe20
- SHA512
  
  36e2c8131c8b78e93479f6061f98c68bf4d2a3de412179efbd9b435c8e08e7e47ae7635b6c490e9d6582ad6917da8523dbc8982ac64941eb619790a4aef346e7
- SSDEEP
  
  96:DAxovCbRLjhZI7BcU2d7cccctldVycctlzkd7cIl8lg8Vml8lzgdh:DAx8CbRLj/NRxcccKlScKlzkxcIal+ao
Score

3^/10

execution
behavioral18 behavioral19
- Target
  
  sketchyorignorant-main/67175985
- Size
  
  7KB
- MD5
  
  882dbbc613a93f64c3709b0a2bd0d6dc
- SHA1
  
  3bd865df56c1f9266444b96351a1c30ffa5d9d75
- SHA256
  
  4785bdd1c96b2a846b2bd7cc02e86b6b3dbf14e7e53446c4f54c92a361040822
- SHA512
  
  9d22616bfb4a75770a828a0a3cddac6787297a5fdc53eb17e25811cc94de717f2de8bd66d53c5d65ba1c83d8892aefee5ae758cf56a1ef0a0c3120f70b244339
- SSDEEP
  
  192:bjXHn5J4OIuWn3894xCwiOjT/qs8YSAFNlSyCqwvH02t:PXHn5J4OIuWnseHjGmFNtvwfjt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral20 behavioral21
- Target
  
  sketchyorignorant-main/67175987
- Size
  
  16KB
- MD5
  
  a8de006fe0c7e373c560dd51599287a8
- SHA1
  
  75648d4aa5657ab34a4df9c34a3645431fd2739f
- SHA256
  
  d326610f408c7a4eb6f51c37c330e496b08506c9457c9d34287ecc38809fb060
- SHA512
  
  f5c0fe4f28ff1a3a0931e8e235b5157a45f67967985bcc752418c5ec3481fca44a8ae4800088889b37e8cd0533f53d3c456d5ffd19b767b3f83a87b49a2e209a
- SSDEEP
  
  384:pQuVHEnKUoABSbyDIAE32fLeTN8hl96NawQ4AuDumvLGqd1N:auVHGoABSWDIAE3uCp8f96NNAuqm6eN
Score

3^/10
behavioral22 behavioral23
- Target
  
  sketchyorignorant-main/DOOCKEREEERE.7z
- Size
  
  32B
- MD5
  
  5892911de91eedab1926941e99e74c3f
- SHA1
  
  059e5ed8cd3a1fbca08cccfa4075265192603e3f
- SHA256
  
  5bc3a0638e7c9286a5b28dd5f32cd096bf5dd9c56e2c45afbd5e27d5353ce4ba
- SHA512
  
  faac5025d40e7348edd6e111e33191fa245b30bc6caeafa7ddb1064a4d842b02d84004f1fa8ad0d37895c97df6898fef1e0ebcf7a193caedf856ca5109811276
Score

3^/10
behavioral24 behavioral25
- Target
  
  sketchyorignorant-main/Microsoft-Windows-Ethernet-Client-Intel-E1i68x64-FOD-Package~31bf3856ad364e35~amd64~~.cab
- Size
  
  279KB
- MD5
  
  d3138d1e579e81757544e8eb8f3e77f1
- SHA1
  
  cb2eb9d7d00c117d913ecc08ecf3db4ddf30d566
- SHA256
  
  19065d46ee5160304620e5553cad8fd52f5d4613debeeb775b30e2091acc84a6
- SHA512
  
  bfce618049b5f53997be3427c7162efccc2738bb147f450d8cc933ab4a9f20daa880b772c98ce175c0ede7f435f7a6c50a619d2d58200c90c2edc12221ace7c7
- SSDEEP
  
  6144:0g6ft0SjTMqnRLmc2TA2+vOirDmuhev6KJ1GQAC+nY:Ift0Sh5mgjDfheyKJYY
Score

1^/10
behavioral26 behavioral27
- Target
  
  amd64_dual_net1ic64.inf_31bf3856ad364e35_10.0.22621.1_none_9c37897afc379c39/e1i68x64.sys
- Size
  
  562KB
- MD5
  
  24ac8364a0dc46b5807161fa38bb4426
- SHA1
  
  92f80b01f40d5c8d088f8097adc4bafac69b9ae3
- SHA256
  
  54ec7351942999e71100b89379efbba36e5002f663bd76e0c37e5133c6f7add3
- SHA512
  
  6e9cab5ceeca11c0d9b7d5cc2fe957e4672ecb95806869b1ec9cbf9d5c680f6249dfaadd429525aba897ccb8638de9aa8c47c7052f854640ecc3a0d438ecf723
- SSDEEP
  
  6144:gdZ5rPY05P4dRVhrpDrNiGnWb9TNmwZIAyGopthtiLQ7S1NPKM9aZCKlg:IfrYwgpXNtQTZIJ/thf7+9a
Score

1^/10
behavioral28
- Target
  
  sketchyorignorant-main/Microsoft-Windows-Ethernet-Client-Intel-E1i68x64-FOD-Package~31bf3856ad364e35~amd64~~.cab.lnk
- Size
  
  1KB
- MD5
  
  cf8bd6b21bedac2606690ae8d3620665
- SHA1
  
  845f5940f7861448aa45e6bb4c164c1902d4e353
- SHA256
  
  abd995f85e32d7ff0fc38388106c7046697381aa9bcfcfbc37c4eb8c1094522f
- SHA512
  
  e86fe30acfba775c6da834ef69cc3a7cd135167207b24280176889411204f2726dfd002fb3e0203af0690a6cd1e60b3bc255fe02f0ba3fb20c6fb7e499964ede
Score

3^/10
behavioral29 behavioral30
- Target
  
  sketchyorignorant-main/Microsoft-Windows-Ethernet-Client-Intel-E2f68-FOD-Package~31bf3856ad364e35~amd64~~.cab
- Size
  
  232KB
- MD5
  
  416f7b28b10ac6ee5c13dff7a865ca08
- SHA1
  
  6c543b8cf4dc7dba7cf0476c493721b4ea4fa40f
- SHA256
  
  97add46e6d7bfa3bd82b921d5aa474af1d01a368fd013d8bdf72b1877582b924
- SHA512
  
  7af1250bfa634b04c94aa4c0c3d6c866eef7be0446c55140ffe014b2734a2a1dc8941bcca3d25828c74b056a58d4d643f26ea13a37d5bf2042dddc80c32d818b
- SSDEEP
  
  6144:ZT3x81sD1e218yRTp/AJkHum/AxA8jDp0:Bx8yD1eWNTCaHEA8jl0
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32