9cd1233a50262eb8fb441f83dfacdf7ff435ce982640404217660e356e5eb9c4 | Triage

Resubmissions

03/07/2024, 11:31

240703-nmnv4azgng 7

03/07/2024, 11:27

240703-nkm6sathqj 8

Sharing

General

Target

Crystalware b10 PREMIUM.rar
Size

15.4MB
Sample

240703-nkm6sathqj
MD5

2224de9e3409a823b6fd3855028bd630
SHA1

56b4bf2551d2a40efdc425561f51e430a19ad660
SHA256

9cd1233a50262eb8fb441f83dfacdf7ff435ce982640404217660e356e5eb9c4
SHA512

500dd8aa3f27b78341d46aa83be883b1ebf303650471b8df120d1be71383c8fe94a1a8a0a6f99602c4e031949e6f8755613c0c5708863a518a3218969bdb5ee4
SSDEEP

393216:bufAsbCeLWQIOcNzs5XUkhtvxv73u56/W+BB36/5:KfAspWraZvjq6/WSB36B

Score

8^/10

discovery upx

Malware Config

Targets

- Target
  
  Crystalware b10 PREMIUM.rar
- Size
  
  15.4MB
- MD5
  
  2224de9e3409a823b6fd3855028bd630
- SHA1
  
  56b4bf2551d2a40efdc425561f51e430a19ad660
- SHA256
  
  9cd1233a50262eb8fb441f83dfacdf7ff435ce982640404217660e356e5eb9c4
- SHA512
  
  500dd8aa3f27b78341d46aa83be883b1ebf303650471b8df120d1be71383c8fe94a1a8a0a6f99602c4e031949e6f8755613c0c5708863a518a3218969bdb5ee4
- SSDEEP
  
  393216:bufAsbCeLWQIOcNzs5XUkhtvxv73u56/W+BB36/5:KfAspWraZvjq6/WSB36B
Score

8^/10

upx
- Downloads MZ/PE file
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  Crystalware b10/Crystalware b10.jar
- Size
  
  19.4MB
- MD5
  
  2a143bc173789ea64bbc7cea4106bff1
- SHA1
  
  cb5397cf21e5acb4dc86b9ba799e130b989ccdee
- SHA256
  
  6b019af3dbe3a376770f5e47ab5eb6afecce8a4e2bbcc38c17fa18ea0ce8a50c
- SHA512
  
  cfb76ddadfce141c0addb19bfe51faa451e75120aa795705cf7dc0725d7a234a58dcbff9020337e34d5274cf360032b35027b5fde1a729a3519e34348985121b
- SSDEEP
  
  393216:SwL8zDijiSXoCL8zUgw1wfjhqAgQXTLO+cy80q4+b2JBhki:SwLMDijfX5LMUTwgARjLO+cyCOHGi
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral3 behavioral4
- Target
  
  Crystalware b10/Crystalware b10.json
- Size
  
  3KB
- MD5
  
  2766098a8becc96aded98229d4c71599
- SHA1
  
  3a5c52a28e5fd84bf00a3fc1da37940d1631fa6d
- SHA256
  
  56440582d3ca9c00e04a7f4bff731a10556653906f9f210a0a963a9c67302a64
- SHA512
  
  a171b97d5c519c16cd9d436ec52aaa33e4e6d080504f6fda3d83de5edd1ee3c300127615305a85be0d9a60331f3cd60bcd6ec630991df8ee6aa16d82f565cc34
Score

3^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6