2d047577c13b36c4851bb98b1bd11341a6d9f12ad1e346c7f36c14014bef2acf | Triage

Sharing

General

Target

TrafficerMC-3.1.zip
Size

73KB
Sample

240710-p91zls1gmd
MD5

46a2332c30a41f57bd528a1d49b87cf1
SHA1

2fcdf113fda7c7afb23feff526022fd94a7e2b6a
SHA256

2d047577c13b36c4851bb98b1bd11341a6d9f12ad1e346c7f36c14014bef2acf
SHA512

da61f55efbfefc4172aeec38e09778897c75a3b7f4f2c89043ba18f165e3c027b4772d3cc98d3fb076f634f667e667487909b2372db5228c695d30a4203284f5
SSDEEP

1536:qXIylQzIK1FQWZbkgApjQ/PIGOvOG0tnLp+9PAT2sgiPAaEdMB:w9ik2QLAIGOvOhx2ATzg4B

Score

3^/10

execution

Malware Config

Targets

- Target
  
  TrafficerMC-3.1/src/main/index.js
- Size
  
  17KB
- MD5
  
  e0609b8f5153048ff7c2cdd500c0e032
- SHA1
  
  d094ce8c974746a31cf93f71d240df7e336f2bdd
- SHA256
  
  87c921b38d3cfe2174379caa35e42f7b5a2c539714a54d11df0facf95c256e43
- SHA512
  
  be33cee0f1c776c38c6461fe167c4cf0c9495c1d4e9f76812011c9abb5f107d2e6f38840d990f658a3b32cf02258729ed92d424e75fe4281901c2a1d41915602
- SSDEEP
  
  384:G4et5AyCHyZUwC+yobF4kM3NSjM81HZTiSrU5d9U+9KZHa:hq5vyDkM3sIuHZlrU5ga
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  TrafficerMC-3.1/src/main/js/misc/antiafk.js
- Size
  
  1KB
- MD5
  
  eb0c3cf2494e9bd3d371e158a556de6a
- SHA1
  
  a276be3eddc7dda4488536a94afd5a001635a3f8
- SHA256
  
  816c414dd578a72117e0b2857d04de3cdc870d4b9a477e3f79c627ba6335c798
- SHA512
  
  1f58dd5bf8acd4585e5f0d5fef7df97695ac3cea74e2b81a775bb3ce7e0e8868ee910998c197d0f55daa4692cee63c71838b5204adf7495ce8ba67bed704c487
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  TrafficerMC-3.1/src/main/js/misc/customAuth.js
- Size
  
  1KB
- MD5
  
  1d2a83f36886267cd74c8d9f9a8c4962
- SHA1
  
  8f3aca662d0e39d3e5a5e65f8e14193c4737fbe4
- SHA256
  
  1fe6af4d9fe3802cfaa2be68d57b04b5f7af612bd4f368fd40d19ba0c685f23d
- SHA512
  
  0eee46a4b312226f3fb085702bfafd8f05eafb181b9169a25a9858e1bf9eb5ae48c521fde52b5cbfb626e2531c73dd8d7bba77055705310df37e3f76f1fc1552
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  TrafficerMC-3.1/src/main/js/misc/utils.js
- Size
  
  4KB
- MD5
  
  c9d42fe733336542f78b080df7cf2434
- SHA1
  
  a470d0aee32ea61f964b3d20c7d31c4f93635501
- SHA256
  
  c10c350cdb898aaca534e3941280b480881aa32ad5db5dcb6969608569143545
- SHA512
  
  04b25b9ee716df84881c6a9261a4eb09543db6539e59892ecf1bfe24fb0ab6908beb6f766b045eace5e3ad1699293777e3c85baf3f5476452912947e40c8bbc6
- SSDEEP
  
  96:aTRaDqWXTrGhy5H5kqaGYHlxL00GbPkZPJ6SbLxqs+aTLgOE7gykkWFT2xPmIhWO:jqOQu5La2hSbfFT2xPmIhWhhuRCk
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  TrafficerMC-3.1/src/main/js/proxy/proxycheck.js
- Size
  
  1KB
- MD5
  
  f43ba385719ba3acdf785217cee59b0f
- SHA1
  
  7acc3ad4df88d0e2c6ee907c23993e4a1c871cea
- SHA256
  
  51414066ab69e382fd1590677a4a1742befd7eeb4c5f176080a81969ffce1326
- SHA512
  
  5491a754c9b5e237376e9a0ebd572165c5692a7668baf6c14da18530d42346ea98b594fc2718d688b45085fdccd422b658e931b6fc92ae60a658fd33d1856c3b
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  TrafficerMC-3.1/src/main/js/proxy/proxyhandler.js
- Size
  
  1KB
- MD5
  
  6dc8b2f74893058fa8d1aa863b381f11
- SHA1
  
  627c079e86229c1294ad87b48ad566a2947af63b
- SHA256
  
  2b5e8c81b05333520da9d089429895c2137cc33e3b83377f25e10b13150d1660
- SHA512
  
  742a00025fbe03a9dcedf083bb59756c6deb10ef484ada46f6c55cfb783c92cbc0354f5c4a177449d614c4a1b1247372fd6eadf9dd491ddb2f1e8620afeaec85
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  TrafficerMC-3.1/src/main/js/proxy/proxyscrape.js
- Size
  
  801B
- MD5
  
  7ad19af5412e2f69f925710ed52cf281
- SHA1
  
  336f96e8188593d5c8fb1311e85460779750d69a
- SHA256
  
  3218b8f39b7d4d3575b3ee709b34a76821d3ff9bd33951fbeda590f334ea7186
- SHA512
  
  07772b7a7bd4db22f361fa15fbb7572b17b34f1c8d8349392c0bf7c0a2479244af8d31e8ac3dfb4c3657e7e10f9bc48d61c17725a6207ed2cc665c6043227557
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  TrafficerMC-3.1/src/preload/index.js
- Size
  
  372B
- MD5
  
  1518496c88a6f58234f968e3c77e4541
- SHA1
  
  08a2abf4013f2bb7f81995becf18f65c7d2d395c
- SHA256
  
  ebd86eb0252696bbeabf092700e8016db4001eebd698c855c4827fe806306f99
- SHA512
  
  e462db1d85debe5fc65bf8aedf6da54df669c77184717be4f3e336dd12a130877b7a218e22e6110070e4806621dd82d8f37a678317eef1d5cf903bcea1d5e346
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  TrafficerMC-3.1/src/renderer/index.html
- Size
  
  35KB
- MD5
  
  ef571fd6c9ed917eb362aeee93995c97
- SHA1
  
  22afdd64c89d8ea5b9ae7ad7d1d14a60b3741ca8
- SHA256
  
  6e065438baab1cebc4b32dfefbcf37f81a558a54847554d06973631ed1bc10e1
- SHA512
  
  9d59fec94550c094ccfe8aa4d2c180b33b0dab6e79b4922ce3eb245c1ded83b992ecd175fbe9297cb6ee5f29f7e99513e38c39751ec2637f6898df6fc41a1369
- SSDEEP
  
  192:EelS0v5kjd1VoYIcs8pRq6RkTshc6cjx5PTXigVFvf0Dul5KY7EubioFTl9mCgUy:EFCcqWc68PbbACd0Jt07rJu
Score

1^/10
behavioral17 behavioral18
- Target
  
  TrafficerMC-3.1/src/renderer/src/index.js
- Size
  
  13KB
- MD5
  
  a0f80a6878addcf59e6df97f074ecf82
- SHA1
  
  7e9535acec3b2610e98f86bc6cb55489e320061b
- SHA256
  
  99b1e7ff8bdba73dfe75b79650c2e5901e6e72220c46e233f91c04051270f884
- SHA512
  
  eca37de69776325a83f592dc4e1b3006dc965c0cd0624c1914b1a2bb5f2e3ee2b12bc16ebd63731adaf29ea7f84b4d91dca4f84de829ff17054f0e741bc27934
- SSDEEP
  
  384:KJom8KkGNDnFOAK3JTLlKe6I3+HngI4Cv6b33TS4:nm8KkGNDnFOAKV6I3+H/NQjF
Score

3^/10

execution
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20