d72f9698b167953faba47d00d817412c212e39d2aca60dff25ec01e98f6081ea | Triage

Sharing

General

Target

livebot-win32-x64.zip
Size

99.8MB
Sample

240802-yws7aatbke
MD5

fe26a833a00fe6d9d6491cb7ceb4164d
SHA1

884577e9a3661e553148e59e794986e17d301173
SHA256

d72f9698b167953faba47d00d817412c212e39d2aca60dff25ec01e98f6081ea
SHA512

0dd301d74eafbcf40a5b43fc8d179185a496f3b5cac282b43d04c7bdd6d366d6baa5be3d366dfbfbeda3f9332b7fec1796b3bce1ffd6498b044fa7cf49d0f803
SSDEEP

1572864:TU+fW+vdU1K3fCPlANltlhicj8C6OIoR+b2JdskI/MkzOaodZ46jOqwc6fgu:A8W+lU1BANjL8C6q+qdskIlzOtmivC

Score

3^/10

execution

Malware Config

Targets

- Target
  
  livebot-win32-x64/resources/app/node_modules/undici/lib/websocket/websocket.js
- Size
  
  19KB
- MD5
  
  ea42b0df01050c3f8685a8ae29f5013f
- SHA1
  
  0a6c35323f5892d4c60b2817fcae4c3217488b5c
- SHA256
  
  e869e315cb92192a41714c970d73af780977141b999e17323c2415fc3cfcc36e
- SHA512
  
  7bd165d833b656272f43d947a176df170b42bc9b38f181f434f62a951e604b5a9d5192f3febf73817f3ce1230f305a819940849f9faa40361b9f8bf163435c43
- SSDEEP
  
  384:EQcl5TjAX/J+p/jIy4iP2gy+OZ2gy+Edsgy+E8sZSI0doxJzQuACBdXCF5nbXzPU:EQc/T8vJ+pLd292HsqshxJzQuACBdXCI
Score

3^/10

execution
behavioral1 behavioral2
- Target
  
  livebot-win32-x64/resources/app/node_modules/universalify/README.md
- Size
  
  1KB
- MD5
  
  453be8dede0247d779b204b4b56872ec
- SHA1
  
  c51050ef5f2a49f01a00afcb68b0ef14dbacdcaf
- SHA256
  
  6ed9f070bb95ec35462a438fab1952b258708c2d607947e8eda8c2f60431a039
- SHA512
  
  8796c3774317d3dc98153f926e9a4ccf13ddada480670ba717a8f0a11992016981954671fe8e23b435750308acb13dcb9522a554e0b023ad4ccdaa26c3dc62ac
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  livebot-win32-x64/resources/app/node_modules/universalify/index.js
- Size
  
  777B
- MD5
  
  164769c005d2f5727fbc4e0c447c0676
- SHA1
  
  f90c4b71d53f75e44b57949fa8561cc4747e4c5b
- SHA256
  
  d3411ff41b782d91b9cf61daf5a36fa9f2a0383da19be846aa4463f00226e929
- SHA512
  
  6ceffec71aee3d009b4e988d47c44280d74338440bbb228e360e199a27e5a31d9edd55261360f47fd8a81c4bd878d7838ad318725849499a9f4c10599256827f
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  livebot-win32-x64/resources/app/node_modules/util-deprecate/browser.js
- Size
  
  1KB
- MD5
  
  521e3c4a53c4265653c9f68ebd52f700
- SHA1
  
  335965112d6117af8926dce4497a1fb9fca022eb
- SHA256
  
  abaef53ebcdc98f3655331f834986a2d11b6a824f58d670369669246d1b7b69b
- SHA512
  
  646b092a66d77f69da1e33bdc20f1037865a03368c7e8e83994ddc7e6cf8ac246772815a13d405a1151a55237212d081b96699a3890b4df55507d2cc0c9763e1
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  livebot-win32-x64/resources/app/node_modules/util-deprecate/node.js
- Size
  
  123B
- MD5
  
  0e28b0a11a7a2d9d18f33f2bfa67d380
- SHA1
  
  26bb9fcabaf57f0bb50e5e026c13de394bc0c478
- SHA256
  
  9a86a29fa34a99b861e707345fb1d1e2e55a6c23edb8f992bed57cc607f42d8e
- SHA512
  
  e860d48ca4ae777d963ab666aae99f3719bdf336bf218b282b76a2a0f0268ca6b7283bf8c825544a0ecfdbdbbff3ceb7c98649d89f95665d3a5e2b2f6daedc0e
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  livebot-win32-x64/resources/app/node_modules/wrappy/README.md
- Size
  
  685B
- MD5
  
  55b4b44807d7edaf6084e42a5ae078d6
- SHA1
  
  582d7139d169b0fc0b1014f2372a0aa26a52cfb8
- SHA256
  
  0d2537e86a9e5ae85d8e53910d779895179035c9daa35555874ec19f1225c224
- SHA512
  
  f3e5db665c0d880249c74db96e1d0368681c9f6a9700c99abd26917bcfe05ea48262a279ad7370cead673cb9a81937ca356907e92d07d8951a8d8e8028c2a871
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  livebot-win32-x64/resources/app/node_modules/wrappy/wrappy.js
- Size
  
  905B
- MD5
  
  04a65e1669dc90fa11c900693c1974b1
- SHA1
  
  7d5c1c908664b3df4a9b72400a126652ba0dd905
- SHA256
  
  153453c4d84a3c2f13589c37055a7daff61d48475dcce554f7eedad15fc7b3e5
- SHA512
  
  621895dcb5779c3827ad29c216af816d0c99686b1f18ee45ae844da67be1909ae24e1fbd11a09bef27f6f8143fcd39dbf74d2839a30c871dfc98e2c905dff46b
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/README.md
- Size
  
  14KB
- MD5
  
  5e5b177e6fa93e5020b11a227760e26e
- SHA1
  
  6e537af0918e44a696bc15359724c7ef67fd41da
- SHA256
  
  bffa22f25fdab49d0980b2829bdd4ba69e3915521218b26af022749b3045d8a8
- SHA512
  
  82301a9061866e0f7eba77675819c95d46e4f298e4579ee3f113af9e1103bc5f101f43ebbe7aac9112cf494f116648977ba3a1fe99d123f033b8aa7faa4171a7
- SSDEEP
  
  192:bOtb2NXopUU5FfgjN9CGyO2GCOphoJ52wO5oU80AQH6KY2QI+X2QA+kZwfdsbee5:bIb2xE5h8N9Cn7neGbBj3+
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/browser.js
- Size
  
  176B
- MD5
  
  a5360357c30602199353294a98721d7d
- SHA1
  
  44121b2e0b4e671c60d14a5e0c0bf56d2e73d72c
- SHA256
  
  010da44addea1d88b2b732540c3f1fd0cbcb28926b96623d4c64222e0ead2d0e
- SHA512
  
  f7cb84738fd31d4a47080ec043004a2c71e6c55ea57b21a63e40c0619b280628a0c6328bf3ffd321bfe850a0d424b73eb3fa7074603d2d1d05f5eee76477d751
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/index.js
- Size
  
  376B
- MD5
  
  9ecc636aa286191226b73557fa9dc210
- SHA1
  
  9016498dbf20fde310ad9218ee7504585d0df28f
- SHA256
  
  70a117e957f85622a6fe2be39afb9597489965fe3fe6ebefd84adb8f0d9d114a
- SHA512
  
  bad5ef6a294e4ed6180b3b16506a1a7ee43d7c383840c4f3b48d6f8a444354e226c3295e1f3013360f256396f07fe1661f4aa2423f322857e67df2900a121bec
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/buffer-util.js
- Size
  
  2KB
- MD5
  
  8c25c9dd9f6e3773f89b9e32b7105c3d
- SHA1
  
  f7118209aa3e4032abdb8180519a3cad15f0de05
- SHA256
  
  8b0a45739132f82e25ea13163780abf547ccfe989267f3eb7abb475beec92da3
- SHA512
  
  bc2e6d02069d7841150e43cbfafc5992e3003906363ff38dbb2ad9c8d39af99fa47e1343ababad1f72d27e3e09e022b9cafa978a57539ab3da27eda4168596de
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/constants.js
- Size
  
  360B
- MD5
  
  c4c97fbed010f392b658ca20911fd097
- SHA1
  
  fad3f4b4ceab89dfabb0183de9ffccd9cf6de134
- SHA256
  
  ec5f8aab235e7bc88de01bca315e04d9afd49918b8c07d9cce3637f907ddcbfc
- SHA512
  
  926bf22e2fa05049e3a5540c3ba2e7fd2f8f3032c218a6e8d4710507450292d124ca822e2b516c7b2c989a7d2400c0f9511e6b8d974fe0b91a1a13a9b0b8c1be
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/event-target.js
- Size
  
  7KB
- MD5
  
  d02492ef6fdb35d8ad8af33f90c91fdb
- SHA1
  
  923aff1a440b1bb30658a2a3f9e3a9da6ceb0eb7
- SHA256
  
  c45d3c6e12d170c860c0c3f1a050aa0f864d9806632b609a1e607d675aba128c
- SHA512
  
  47d8c788b7b57851e6967f9ee5a0d183800040e77f540720982e91cd992a03543f9014cbed590cdbf1c6c6a17f83e88aa3d797102db5aa6ae756e6bf4e0cdc53
- SSDEEP
  
  192:vcQQOMbplFo81yEPHNjAZvIAqishOoS6n/6LCcGxFa0cnrVSL:dMDtyEKvgiUPHi4
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/extension.js
- Size
  
  6KB
- MD5
  
  379b482fc8622cbf8731096e70734b3d
- SHA1
  
  af02e218b64fac9b65b54732ff593d62ae6bee5d
- SHA256
  
  852564f0f6b460287043803eae732666fb5610f676874354fc89f06aa4e986ed
- SHA512
  
  6c991272627c0a452bd536c9e3604a9601d42f0f17aece0bd712df5c0fd5a2f3abc2bd70f025fa099092b7cf3946e2ade4c21e537720b8ac266196f8c813cbe8
- SSDEEP
  
  96:sKoor/fSpwCljhsZhk+FsqNB0GtPH+9xalu:sKC5BeZhkAxNyoPH+b4u
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/limiter.js
- Size
  
  1KB
- MD5
  
  7b8a8dc5be27a1bd1a39544cc28ae73e
- SHA1
  
  d56ca70e1a496b15e1cc90ac740679d7a6c37eab
- SHA256
  
  e0469d4b83f6ba764b15f80e1766b75c136fbff68f048f4c050f0b1c7f065f69
- SHA512
  
  1c1731373a93c3d7f27dde4b6e06565d013ec7fdf6714ec3e1f5844752059a0790e4bc571f20301f45dc63a55e9129e304ecf3551791370c40152942caecd574
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  livebot-win32-x64/resources/app/node_modules/ws/lib/permessage-deflate.js
- Size
  
  13KB
- MD5
  
  43902a471ef6d487a55cabcf40f800a3
- SHA1
  
  1399d89d25dbd6ccd295881ef50797010b8dc82c
- SHA256
  
  5937e85b8fc9cfec9bf14035eea735cd3ec53b0592de74bcb354d77a5e812cf8
- SHA512
  
  698e92a7877c802f5a953086b67841c776cb088efcd91c179dcc18350ae1c4ae8e38abb63b4e4f16da1fbdc21bd92894aab2060ccc9f01545442b6f2a9aa82d1
- SSDEEP
  
  384:CxmZmmNBDZSD/OMiSOsbOk7OadYO7oFJn9:oiZ7ZSyZSOIOmOxOM
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32