498be69b69a8aac03d30dac6fc8e2ffe007b534d8b13362f812fc013b3a0b3dc

Sharing

Copy URL

Twitter E-mail

General

Target

untitledSpammer.zip
Size

35.9MB
Sample

240723-sgzgvsygpe
MD5

492344b31297f1a2544bf9396c939244
SHA1

c0d3d056f1d697f51a6abb1011047df4ad6ca657
SHA256

498be69b69a8aac03d30dac6fc8e2ffe007b534d8b13362f812fc013b3a0b3dc
SHA512

98842cfb34f56765ed8b35f7e2810e0aa2bfe2690841e662c6966283f640beadf7edff745644e84c0fb702c6b983edcf62ff83ef08047191aa0beb138adc3e98
SSDEEP

786432:2mvQy//uNd434HUXuy2KlAJF7k77yi9Mr/JKWll4S9PczAWN+f:2mvEII0XJlIF7kn4r/JXll4S9Uzhwf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  untitledSpammer.zip
- Size
  
  35.9MB
- MD5
  
  492344b31297f1a2544bf9396c939244
- SHA1
  
  c0d3d056f1d697f51a6abb1011047df4ad6ca657
- SHA256
  
  498be69b69a8aac03d30dac6fc8e2ffe007b534d8b13362f812fc013b3a0b3dc
- SHA512
  
  98842cfb34f56765ed8b35f7e2810e0aa2bfe2690841e662c6966283f640beadf7edff745644e84c0fb702c6b983edcf62ff83ef08047191aa0beb138adc3e98
- SSDEEP
  
  786432:2mvQy//uNd434HUXuy2KlAJF7k77yi9Mr/JKWll4S9PczAWN+f:2mvEII0XJlIF7kn4r/JXll4S9Uzhwf
Score

1^/10
behavioral1 behavioral2
- Target
  
  untitledSpammer/Installation.bat
- Size
  
  472B
- MD5
  
  ffa83a3742998e84477c5b2f68c47b20
- SHA1
  
  85ce0131d700dcd17c7c23c00382ebde98d08c0a
- SHA256
  
  6599392c32e3c9938daf35e87b85e502c93f64c2460d43d3d640a2038a913fe3
- SHA512
  
  f331a2ecc96603ce2ed35947161874dd0a547fddc4bb3b2c3898c63347aaf700966916b4d775911c7eb77705cfb4aaea2f8844fd66ffdc7e319bae1651533e34
Score

1^/10
behavioral3 behavioral4
- Target
  
  untitledSpammer/data/channelamount.txt
- Size
  
  3B
- MD5
  
  7ef605fc8dba5425d6965fbd4c8fbe1f
- SHA1
  
  13682ac418603aa0966369d46bbf282f562acf47
- SHA256
  
  9ae2bdd7beedc2e766c6b76585530e16925115707dc7a06ab5ee4aa2776b2c7b
- SHA512
  
  aff2049bfb5ff4f33fb20ef230c71ac1c0a1c0a8d3359b5fe8a6f455b1615a71211f281fc47d3d9a23413dae34192d29eae9bf4c7c3c2424910c71c0959cdc8e
Score

1^/10
behavioral5 behavioral6
- Target
  
  untitledSpammer/data/channeldata.txt
- Size
  
  138B
- MD5
  
  96a91bb2bd45f8f5db0eb2d65e488da2
- SHA1
  
  5317fe94acb76c6ef12ba14bdfa7866f491b4f4a
- SHA256
  
  ff49f47e28c751402aa34d7febecc1b84983f7511ef5da7468e788325a330a97
- SHA512
  
  8d43e5a37ab9885f6f27ebc22e295ba4928ee7e957ac9ef55f4d507b2970d10bcc4e5bc675057cc7208db4309205adef8be85023ffebc0fef692a4b850fe0820
Score

1^/10
behavioral7 behavioral8
- Target
  
  untitledSpammer/data/delay.txt
- Size
  
  1B
- MD5
  
  cfcd208495d565ef66e7dff9f98764da
- SHA1
  
  b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
- SHA256
  
  5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
- SHA512
  
  31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99
Score

1^/10
behavioral10 behavioral9
- Target
  
  untitledSpammer/data/emojis.txt
- Size
  
  1KB
- MD5
  
  e51152349875dab7a49bfb3e8c73bae0
- SHA1
  
  2a60bc9f2753f40d3c2667f89bc48dd2dd0144bc
- SHA256
  
  08408f35eb5d23e5a3c4e674bf1298a568130c905425af3c3c8ecb1aac229bfb
- SHA512
  
  5ff981413d5e6555d56a9ef4f41559ae7ebea2dbb3aa9e82460a3a5c54dcb071a664ab078d42f3feb439c152f92912f4673a59b8a4e03c9b9171cc736dceb18b
Score

1^/10
behavioral11 behavioral12
- Target
  
  untitledSpammer/data/messages.txt
- Size
  
  7B
- MD5
  
  e7cb455a4f776aee71a66c247e30c6db
- SHA1
  
  1daaf94c8745e020bf48967784051f5f94627400
- SHA256
  
  29bb2bda5f4f50e967bf7e93174308c2189177f9c9a0d7b9beb6dc86bb6688ae
- SHA512
  
  056eb780222c51ee8d12ca691f2051212b9030a65a4c9d9e880cd1c9e5c4bbfcbdb4f82714bd89e6492ca7e410630cb720e1ddd5fa69c3135c7f5096f0c2df61
Score

1^/10
behavioral13 behavioral14
- Target
  
  untitledSpammer/data/tokens.txt
- Size
  
  150B
- MD5
  
  ce4b2c226615911ca2e5aaddc828ab1e
- SHA1
  
  43996bd99f8c7edcf583288321ad0288a490ea94
- SHA256
  
  eef195af82b33a753a2c6014a8d5c394211720b4c2906fe4c903416afa724ebd
- SHA512
  
  3cc650c24ae43cf167198d8f7ecb5936d99b18fbf5b140f84483d6fd29e6050d3f0108302baca39d6d1d01a4fbf92232a0e091c243bfc6791c7bcedccdcdf54f
Score

1^/10
behavioral15 behavioral16
- Target
  
  untitledSpammer/data/valid.txt
- Size
  
  2KB
- MD5
  
  42fa899b16feaa19c35983aa5a02afd4
- SHA1
  
  fa1181887d71c52b7f651004ce0df61f753f05ab
- SHA256
  
  ebafbda9045aafa4dec925d12f9a83b2a016c401e2ca68e761150757f896cf16
- SHA512
  
  d7752ba1aad07384b9ad13d6a33f382ce6b2c23e68e13a50905d8d13906035a7b1394fbeae8adabfb2b59eeb9409228aa81bfc4039efd28876db17852d01b60e
Score

1^/10
behavioral17 behavioral18
- Target
  
  untitledSpammer/extras/__pycache__/scraper.cpython-312.pyc
- Size
  
  14KB
- MD5
  
  1e1a8c5f7f62d810ad186b9e91688c26
- SHA1
  
  35b26819432a956f159887a9c0bec146e09ea41c
- SHA256
  
  fdda35a04ed2b66c30070c91ce63efaa7c41e2d66b2f0cc0ab3ef8620893f2db
- SHA512
  
  f407138f97580b049b1a3366d661f8218852f552b4985cb8161905ea9b001d2c2e7f648d321001b479ac6f08fbd7cade769da3952f53009b0a8fd7a778501a63
- SSDEEP
  
  384:6jmJJNmdStU8GKOediRm22ecHep3/eDXgHV:64Ced+YHQyXM
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  untitledSpammer/extras/scraper.py
- Size
  
  9KB
- MD5
  
  d72b6c5d0c409ec56ec02adeabe94ae3
- SHA1
  
  b86a9b24c17479ef70f19780fd2484c8c608b09d
- SHA256
  
  559d322c0e050152c251aa19f51547e466ec0103b3efc24661d96b0d0055836b
- SHA512
  
  8a77e328e3f570aa6849ce6a4f60dd101ea7e2ab3b9295132b4d41b487f39dbbd87d6a91cad3b939f9e03efc5e5fc58ba87b66cceedd89c6c13f2f3d205c8785
- SSDEEP
  
  192:caTSdAl0C0vOExVC6YVf95H8GKObLT0q2Bd7NR/01I1x2t5W+9icFwTKToTN:nTfIxVC6kfz8GKOY577NktDQCwTKToTN
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  untitledSpammer/untitled.exe
- Size
  
  36.0MB
- MD5
  
  fe5cccfedaa4196408f2baf125b2417d
- SHA1
  
  d683df014ed84833aca0fac1c77d9636b860f206
- SHA256
  
  8796b87e9a0f817ddfb102c6a12f468bbffe8de2a0648144ae3492c80513ad5b
- SHA512
  
  162416803412271a1407da9cfd2b0ceca854a5649ba26d654a8473395d81d367308a025097d53a86ab9c4f9fc68062253e1246b5de32a992e115e49735c01069
- SSDEEP
  
  786432:YMvizlZOrHf7eKA3uTz2l0b19mzjb25AJDONn+CTzl/uk+dbjNw:YMvlzan3FlO19mHxhON+CTzl/KdHu
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24