fe3aec6d25aa75e3afcd67df5f56f22de04b14b036364fe7ecda68044197d239 | Triage

Resubmissions

13/06/2024, 21:30

240613-1cmaqs1apf 8

13/06/2024, 21:28

240613-1bhwxs1akf 3

Sharing

Copy URL Twitter E-mail

General

Target

rookie_2.29.2_portable.zip
Size

1.1MB
Sample

240613-1cmaqs1apf
MD5

6a03f66ff25270256a2269463a64da26
SHA1

9938c15825c124500f3c456df18687d53d7793b4
SHA256

fe3aec6d25aa75e3afcd67df5f56f22de04b14b036364fe7ecda68044197d239
SHA512

f901ffffae3bbc591ec2c4b7d8896bcc6339e5a22777e1b08668560b146e71ec02dbc40d06b84ac51e3ccc7e1943957a2769a7830402755d28a843790a7560c9
SSDEEP

24576:YXwUNSjGlgq+G/VELltQUrG0cnyhjO76dz2F4OvnnlqsduARWtGfigl:YgUNS4gqZ7SjDq7i2H9HddRiGfis

Score

8^/10

Malware Config

Targets

- Target
  
  rookie_2.29.2_portable.zip
- Size
  
  1.1MB
- MD5
  
  6a03f66ff25270256a2269463a64da26
- SHA1
  
  9938c15825c124500f3c456df18687d53d7793b4
- SHA256
  
  fe3aec6d25aa75e3afcd67df5f56f22de04b14b036364fe7ecda68044197d239
- SHA512
  
  f901ffffae3bbc591ec2c4b7d8896bcc6339e5a22777e1b08668560b146e71ec02dbc40d06b84ac51e3ccc7e1943957a2769a7830402755d28a843790a7560c9
- SSDEEP
  
  24576:YXwUNSjGlgq+G/VELltQUrG0cnyhjO76dz2F4OvnnlqsduARWtGfigl:YgUNS4gqZ7SjDq7i2H9HddRiGfis
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1
- Target
  
  AndroidSideloader v2.29.2.exe
- Size
  
  4.1MB
- MD5
  
  b7fa8a83dd1c92d93679c58d06691369
- SHA1
  
  0cff7bb71ff43ee92172f30566d8ee1b043129fc
- SHA256
  
  6cf2bcdb1a463fc69eddb125eba8cc12854ee23effcd7c65b968667c668a7f0b
- SHA512
  
  d74f8450f1fda260d0176ceba347bde6ad58b24a09eaac3cc921e20236a11707cab2f5eaee3bb10907c387d67efbcb66d823ae052b1317f3e953c4984a2b94b8
- SSDEEP
  
  24576:JUjV//Ppn/JcDJ7bdukqjVnlqud+/2P+AXg:S5//Rn/QJ7bYkqXfd+/9AQ
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2