agenttesla | 7e8e1b0b4ce282e22661de58d25566dbb93667614e5feb10d462b7dfed2ef9db

Resubmissions

08-08-2024 12:34

240808-prr9ratclq 10

08-08-2024 12:23

240808-pks8gaxbld 10

08-08-2024 12:21

240808-pjlr1axbke 10

Sharing

Copy URL

Twitter E-mail

General

Target

Cxdyz.rar
Size

49.4MB
Sample

240808-pks8gaxbld
MD5

088d234249d5d06d664147c5f6af7e6d
SHA1

e5063390e93e539cb4245d6e6134cf897c03f939
SHA256

7e8e1b0b4ce282e22661de58d25566dbb93667614e5feb10d462b7dfed2ef9db
SHA512

83050f0923904b108b75274d0dac2f649db539970b8a7900b4322036340412f5a0fde37eb580a006dc9b590c5427f758312ec442a396da31e772d5bb03042673
SSDEEP

1572864:VI75bzmoo4AEGAVtUBZqB5YBFJPiBjiMqR:VI753mNzAVt5B5CbPojw

Score

10^/10

agenttesla execution

Malware Config

Targets

- Target
  
  Cxdyz/Flexer.dll
- Size
  
  331KB
- MD5
  
  6a0e13b24da1aaaa245bca6bbd7ab8a5
- SHA1
  
  5b3e5151d93afaf3aa2c7c662646b7ddb21696e5
- SHA256
  
  4800934f54a511a3e446aabda11315369c045ef80b82bb7550e9822cb2f8d50d
- SHA512
  
  7bbbaf3b3e6c4a50d3b4813f143febe3c4d48b881a7947ce4307fb73997f81e5107fcce73ee0cbb59f49035b78ff0f7b350bb89325c8bcd9363b393bdf2d680d
- SSDEEP
  
  6144:UAAbpw+JSN6nGQ7BU0wrlEVhY4AAkGcBaA7WCwmuoNCYH7UFfowKW+H2Fz:TADJSN6r7BUVBEVhVAAkGcUA7WVV0CqF
Score

1^/10
behavioral1
- Target
  
  Cxdyz/Flexer.exe
- Size
  
  143KB
- MD5
  
  d0b566a81cc36166344998426d351695
- SHA1
  
  79d9be955801bb25ffafc3a216a80cde82de1519
- SHA256
  
  b2a9cad37ba737f306f2523f8d46866705ff038e437cb342eb2255c1f9329a89
- SHA512
  
  5df8e27cff7e6716b49899c0d55d1962243b008b6cee775559198c318e2797f8c159d4469d03e9b2b552ad4d4f4d59903426383fba30ca436280bc19b002a4f6
- SSDEEP
  
  3072:HAi4pxpEHmAdx4/kyHRZa0YiRAl278IVn2JbS1cJs8lWxj:HAi4pxpRkyHRZa0Gl278IVNc+cWx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral2
- Target
  
  Cxdyz/Flexer.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.54/adblock_snippet.js
- Size
  
  2KB
- MD5
  
  f5c93c471485f4b9ab45260518c30267
- SHA1
  
  ee6e09fb23b6f3f402e409a2272521fdd7ad89ed
- SHA256
  
  9aa899e0bf660ee8f894b97c28f05db06cc486915953b7f3b2ff9902fa8da690
- SHA512
  
  e50a1baf20db9bc867e85ab72f9976430e87d8516ca552f9342a5c91822c9e1404e4f915042d48d841cca3fb16fd969bf0aa01195791ce29de63c45814fcdcda
Score

3^/10

execution
behavioral3
- Target
  
  Cxdyz/Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  b429ae86c5be521bc8ca3b164cec3acb
- SHA1
  
  387560073ff5a1f2191abc6f75fc34532bbb6dd2
- SHA256
  
  3ac70532408b89159bfe235d4ed228faa03ae3fbd63ec6a82d895f287a3b0579
- SHA512
  
  eae65de53da50708983ed8ebf9e1e3dd5f9aea95a354d272e199bb59517f62bfe35f0df7a37d81ab0423d0d6d29304fa70284c731bd54023e446b2c19bacafb1
- SSDEEP
  
  24576:DgWuftU4WrNOA6sM6kXxMfNmnjk/c5NrH0UUoo2QkJXVSItH5ppoO0KzJ6nFwHQL:DA+NOpXm1mnj0cP+DkhMAiawnFV
Score

1^/10
behavioral4
- Target
  
  Cxdyz/Microsoft.Web.WebView2.Core.dll
- Size
  
  557KB
- MD5
  
  b037ca44fd19b8eedb6d5b9de3e48469
- SHA1
  
  1f328389c62cf673b3de97e1869c139d2543494e
- SHA256
  
  11e88b2ca921e5c88f64567f11bd83cbc396c10365d40972f3359fcc7965d197
- SHA512
  
  fa89ab3347fd57486cf3064ad164574f70e2c2b77c382785479bfd5ab50caa0881de3c2763a0932feac2faaf09479ef699a04ba202866dc7e92640246ba9598b
- SSDEEP
  
  12288:6CxswUBor35JrpQ322zy+uFKcDoRFNCMmeA+imQ269pRFZNIEJdIEY0lxEIPrEIE:6Cbmv
Score

1^/10
behavioral5
- Target
  
  Cxdyz/Microsoft.Web.WebView2.WinForms.dll
- Size
  
  37KB
- MD5
  
  8153423918c8cbf54b44acec01f1d6c2
- SHA1
  
  f0c3c5412b809725e6d4809230adb15cc7d83ad2
- SHA256
  
  5696366f7458da940cc986dc5d3d4549a2368512acd769014ecbb07b47bd88b4
- SHA512
  
  f3dc771e37c71479d332142ec5a9c5c3f39ca71937f595a0f7482ae5aaaafd92e932efc9b0363d4511d547f3c8b2e0497ebbf8356e7d07fc344f4e5715b0ee87
- SSDEEP
  
  768:1sjCEEHJ9l0EeFZ2sxIHzttZDgcEST3p4Jjrjh2jJ+SG2au8vxJKia5/Zi/ZGQKk:wCEB15azttZDgcEST3p4JjrjaJ+SG2a/
Score

1^/10
behavioral6
- Target
  
  Cxdyz/Microsoft.Web.WebView2.Wpf.dll
- Size
  
  50KB
- MD5
  
  4a292c5c2abf1aab91dee8eecafe0ab6
- SHA1
  
  369e788108e5fb0608a803fa2e5a06690b4464b5
- SHA256
  
  b628d6133bf57b7482a49aa158e45b078df73ee7d33137ac1336d24ac67ed1b4
- SHA512
  
  ca22adfff9789730e4c02343e320d80b8466cfc5a15f662cefe376b7ee29dea571004c1c26cd3f50c0d24e646f2b36b53fa86835678f46f335d65eec52431cde
- SSDEEP
  
  1536:gpGhWMhWLF9jwKi8LDP/ryEH0GBy4JjrD1aah/UaOzk6hKKa5/Bi/IGCv0Z0T6Cc:taBi8LDP/b0GBy4JjrD1aah/UaOzk6hz
Score

1^/10
behavioral7
- Target
  
  Cxdyz/Monaco/.git/hooks/applypatch-msg.sample
- Size
  
  478B
- MD5
  
  ce562e08d8098926a3862fc6e7905199
- SHA1
  
  4de88eb95a5e93fd27e78b5fb3b5231a8d8917dd
- SHA256
  
  0223497a0b8b033aa58a3a521b8629869386cf7ab0e2f101963d328aa62193f7
- SHA512
  
  536cce804d84e25813993efdd240537b52d00ce9cdcecf1982f85096d56a521290104c825c00b370b2752201952a9616a3f4e28c5d27a5b4e4842101a2ff9bee
Score

3^/10
behavioral8
- Target
  
  Cxdyz/Monaco/.git/hooks/commit-msg.sample
- Size
  
  896B
- MD5
  
  579a3c1e12a1e74a98169175fb913012
- SHA1
  
  ee1ed5aad98a435f2020b6de35c173b75d9affac
- SHA256
  
  1f74d5e9292979b573ebd59741d46cb93ff391acdd083d340b94370753d92437
- SHA512
  
  d6bb7fa747f4625adf1877f546565cbe812ca7dd4168f7e9068e6732555d8737eba549546cf5946649e3f38de82d173aaf9c160a4c9f9445655258b4c5f955eb
Score

3^/10
behavioral9
- Target
  
  Cxdyz/Monaco/.git/hooks/fsmonitor-watchman.sample
- Size
  
  4KB
- MD5
  
  ea587b0fae70333bce92257152996e70
- SHA1
  
  118ff5509f187039734d04456bf01e44c933ac19
- SHA256
  
  f3c0228d8e827f1c5260ac59fdd92c3d425c46e54711ef713c5a54ae0a4db2b4
- SHA512
  
  f5a4d2bff93161eb61b9902ff74d5ee20de3316f2b1c5ad49299deaf1adf231848c5501b6e4a840e5b898791f86c66eed6f3b05ff573073674177a33a1f2ae9c
- SSDEEP
  
  96:GFCscBOvOFXDgRvi/3eCwX9PlkRo/j5SpoNOBoi+geBIzCa:GFCsEOmWRamCwX9PqRo7geEk3IzCa
Score

3^/10
behavioral10
- Target
  
  Cxdyz/Monaco/.git/hooks/post-update.sample
- Size
  
  189B
- MD5
  
  2b7ea5cee3c49ff53d41e00785eb974c
- SHA1
  
  b614c2f63da7dca9f1db2e7ade61ef30448fc96c
- SHA256
  
  81765af2daef323061dcbc5e61fc16481cb74b3bac9ad8a174b186523586f6c5
- SHA512
  
  473ad124642571656276bf83b9ff63ab1804d3c23a5bdae52391c6f70a894849ac60c10c9d31deff3938922ce83b68b1e60c11592bbf7ea503f4acd39968cefa
Score

3^/10
behavioral11
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-applypatch.sample
- Size
  
  424B
- MD5
  
  054f9ffb8bfe04a599751cc757226dda
- SHA1
  
  f208287c1a92525de9f5462e905a9d31de1e2d75
- SHA256
  
  e15c5b469ea3e0a695bea6f2c82bcf8e62821074939ddd85b77e0007ff165475
- SHA512
  
  cb78aa7e9b9c146e5db65d86dd83f04e2b6942a06fab50c704a0fd900683f3b6ad1164e74afe2f267f6da91cdff0b9ab07713e12cefc6f8d741b5df194f4fda6
Score

3^/10
behavioral12
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-commit.sample
- Size
  
  1KB
- MD5
  
  305eadbbcd6f6d2567e033ad12aabbc4
- SHA1
  
  a79d057388ee2c2fe6561d7697f1f5efcff96f23
- SHA256
  
  f9af7d95eb1231ecf2eba9770fedfa8d4797a12b02d7240e98d568201251244a
- SHA512
  
  7cfb0a58abed1915ee1b261a1c661c7e2deea4e9227f77f5875af1a25c82e19245ba12dcb2f5052d994d0e81a3465daf37f9d8c670e17f9c96742f60fdfaaa56
Score

3^/10
behavioral13
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-merge-commit.sample
- Size
  
  416B
- MD5
  
  39cb268e2a85d436b9eb6f47614c3cbc
- SHA1
  
  04c64e58bc25c149482ed45dbd79e40effb89eb7
- SHA256
  
  d3825a70337940ebbd0a5c072984e13245920cdf8898bd225c8d27a6dfc9cb53
- SHA512
  
  e4dc204494f5062efa3032b00c64707a4f38978040482501b3e085f071e3ee5a9737d537e6a52002ceb4ebe2bfe09e555c5d969581e80b3eba2a922015c67960
Score

3^/10
behavioral14
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-push.sample
- Size
  
  1KB
- MD5
  
  3c5989301dd4b949dfa1f43738a22819
- SHA1
  
  5c8518bfd1d1d3d2c1a7194994c0a16d8a313a41
- SHA256
  
  4b1119e1e13a212571976f4aee77847cdbd40978546d6273a557e238981a40d1
- SHA512
  
  37cd20a090494acb16c2255fe93dadeb409f2553afddc409dad5b5e99c9f5612a28eba397c0f3ae771e17edbe0a6c2a3af311154285e6d9c43e4cc4f06ba5b8d
Score

3^/10
behavioral15
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-rebase.sample
- Size
  
  4KB
- MD5
  
  56e45f2bcbc8226d2b4200f7c46371bf
- SHA1
  
  288efdc0027db4cfd8b7c47c4aeddba09b6ded12
- SHA256
  
  4febce867790052338076f4e66cc47efb14879d18097d1d61c8261859eaaa7b3
- SHA512
  
  00d21d5d72386c3d9b5a1c36ba85201f730556a8295d4353af54af7892ab81010d42aff209ec1fda61c54e4dda3737cea5fda64f09d40ce5004ae28239565025
- SSDEEP
  
  96:vJ7EgXasqXq6zaqK1ep8m5MDVUT2bTEwEWDhG38deyig9yhCLtQH:vJ4gXasI1zaqKwUTHhzeyil4tm
Score

3^/10
behavioral16
- Target
  
  Cxdyz/Monaco/.git/hooks/pre-receive.sample
- Size
  
  544B
- MD5
  
  2ad18ec82c20af7b5926ed9cea6aeedd
- SHA1
  
  705a17d259e7896f0082fe2e9f2c0c3b127be5ac
- SHA256
  
  a4c3d2b9c7bb3fd8d1441c31bd4ee71a595d66b44fcf49ddb310252320169989
- SHA512
  
  ee08c11fab7e896b2e09c241954ba7640338b12c75cd8040daf053c31b2f22236d7a0deac736f89d305236312fdb4f560a38d4d8debdcc9dcdd23b2d975907d5
Score

3^/10
behavioral17
- Target
  
  Cxdyz/Monaco/.git/hooks/prepare-commit-msg.sample
- Size
  
  1KB
- MD5
  
  2b5c047bdb474555e1787db32b2d2fc5
- SHA1
  
  2584806ba147152ae005cb675aa4f01d5d068456
- SHA256
  
  e9ddcaa4189fddd25ed97fc8c789eca7b6ca16390b2392ae3276f0c8e1aa4619
- SHA512
  
  50ec8a0dd98427e80a82a8d8ce44462a845876e1594c9d0e89483ce9a8aaad616edea0e5c45c1bb69d8fe7f520c6f2260d6fa350d77b400899c3ae375e965bfb
Score

3^/10
behavioral18
- Target
  
  Cxdyz/Monaco/.git/hooks/update.sample
- Size
  
  3KB
- MD5
  
  7bf1fcc5f411e5ad68c59b68661660ed
- SHA1
  
  92e81cca38312414b140f52b9de0655ee232f65f
- SHA256
  
  978235ae8b913ab4d0f906a8af621a0bfe7c314d84b715f4f64ee9b1aa3cce2d
- SHA512
  
  aefc892d30e47fafa3a15c9426f50e125c5f7f9bc4bc67fe609037e4f88f60799cfdb2b1ba1685079e6e5d85deecc45920c93088d99cab12937e57e51b198a8a
Score

3^/10
behavioral19
- Target
  
  Cxdyz/Monaco/index.html
- Size
  
  13KB
- MD5
  
  388059d63eae6c4675c1d8f1a83fa43d
- SHA1
  
  ef6c084172792cc82d87674f5cb3f2d6caff92c9
- SHA256
  
  1198e06e3033561b286fba96ba0f4fc02793a91da93941d9018db55b1c46069e
- SHA512
  
  cfee72fd72e8f12ac760f08b9b4371491bde59939576345652da952e33809d8a4f07c5a31844590fc70b2a14a4fe61725341c45e8d74bc65a077322ee7aff13c
- SSDEEP
  
  192:oL8bXRggAbYmcdSv2O4r09VpDwFgBsK7u24FzTkcmc/VT+9taAc4dReigXN:7RggAbYmQ69V9wFgBs+SFN
Score

1^/10
behavioral20
- Target
  
  Cxdyz/Monaco/package/dev/vs/base/worker/workerMain.js
- Size
  
  537KB
- MD5
  
  6dcbb695dfdfff091a88c7c5d7abaf06
- SHA1
  
  9c8fc639955005c5f4f871dac88d535f3f8a16c1
- SHA256
  
  90445461e39687ceb89adcc0cc24a507d05757a82d2d922e326a2062b6f6a8fc
- SHA512
  
  14e719ff411846e214a210c0bb95dc1b0a25ed9c309e572c7c0cb2786165e299b34a9724def728d6d795e61f6f59db30e6dc98ccce21b5c8df69734e138ed422
- SSDEEP
  
  6144:wRIlnOy7KlzfH0+RqlT3+RRl/U+RqlCb+R6lp2NHEyaNyT34OfTkVDhuYG2:Rlgl7b2NHEyaNyTG7
Score

3^/10

execution
behavioral21
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/abap/abap.js
- Size
  
  23KB
- MD5
  
  50f649f3e45a1f5c7f71f409bd5fb8a1
- SHA1
  
  1cce5441dee1f76bf158fbc0462c8e13e6b0ce54
- SHA256
  
  c7bc6470bfb0d82dbc422ca008dfb8b25fb02c8216cc3ee91e9e3971764efb2b
- SHA512
  
  0a74cd41751261daccf256af483197a844085c335c77076225801db48d580da92e295435057dfa4050ad84d1e6937779bf3849b3dbc5564159d4a7d35d5ef9b3
- SSDEEP
  
  384:rg0l1E3cOjsKpYDsv2JgYHb4AxJYmF7piUIFTyyxlcQMnOsjY:rgetOjs8M9gYHMANeJg6l0Y
Score

3^/10

execution
behavioral22
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/apex/apex.js
- Size
  
  9KB
- MD5
  
  96d8e2d7e01af1bf87b50e397ef14e1d
- SHA1
  
  c58411cd9d819eca280d7aac743afb8c48941345
- SHA256
  
  12a9de1bd5188e228d1b225b93bc1de7545aa3eeb5df2942d1b30de8b4102279
- SHA512
  
  6c9920794f054f2a4c388dd22b0ffce9440fb04ea49b43b86d1bb9e7ed519255c2735a6fcd5be6e7835e5cbea99e7f44f67bf14ef540ba958d5193b76af1b1dc
- SSDEEP
  
  96:HDGkOt8DdWFF80lbEjNVhEB9ogBUqjoI0cai81ISgI/3kl0OsMCkwnI6NkPN8jhY:rOScFTbEjNVhEB9ogGTvcai81IIeZsw
Score

3^/10

execution
behavioral23
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/azcli/azcli.js
- Size
  
  2KB
- MD5
  
  42a923c820d332ddff89a68c376d4657
- SHA1
  
  23ea23fa0dd03085bb92aa095bbc62d9df8a8722
- SHA256
  
  09f4dd1e73f6ba879f28fb7e07930279ab4c5a295483799c53c6417fae7b8d32
- SHA512
  
  253b80f3ee5a929f865f53ac237f673a3d505ce14cd80eb7f78e25c86a6dba58c4f87842fe2482932cac50ef4eb45733435da310f1cafcd863d15159f5fcdceb
Score

3^/10

execution
behavioral24
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/bat/bat.js
- Size
  
  4KB
- MD5
  
  c0ea60d00820705cac4d2857da94e7f8
- SHA1
  
  b84fdfc23fb97f37e9134089aac916392a943635
- SHA256
  
  794ce7c333161e68fff0c6a4a1bc7cdc678073147dc48e1a49aa5313483fc4ab
- SHA512
  
  b5e2330432aba944abec1dd0450169d8c1060e42b52efb2c4aaab5750d1d7ed691d6524cd9c3249dd14de8bdc039acc08c3e969b06784c9f3236b72cfa79b24f
- SSDEEP
  
  96:HDGk28EmF+z+lDHm3vPP3jq8tHEDwrORJC3MB/mMw:rZEm3DG3rBGZW
Score

3^/10

execution
behavioral25
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/cameligo/cameligo.js
- Size
  
  5KB
- MD5
  
  c6716edf2144eeca4ea7830baa11ba15
- SHA1
  
  b7c99a58b05afdc387621c30f7c693e304131b78
- SHA256
  
  fd96854fe7970a6e9839396e8daaed9412cdc531e36baf2dfbaa2f6b61937b22
- SHA512
  
  9c2c181cb9b46dc0121ad1ab647471dea5f4461c97d4c500cabf4e6cdff2e4fbf2a480e725955c02a351886cbff923bd97dac22a1a4de4d89901d15e77b75884
- SSDEEP
  
  96:HDGku8EiuNOcSuKjSap12fi/4OkwnI6N7eHCi:rhEiuSuhV8Is7i
Score

3^/10

execution
behavioral26
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/clojure/clojure.js
- Size
  
  20KB
- MD5
  
  672e3b1b27b133f9bf523fed06b174d7
- SHA1
  
  2544e09064a4b5efb8577b3d059293e8487b3160
- SHA256
  
  cdc784ca79feaede6b98aafb4a9b09bc519261b44e0d58597d47ae1bd9b514f3
- SHA512
  
  2afb794f3b3c22d7993bcafddd57360d865554c7f2a112745542924b401e29ea9908cfcf3e7e0cc93b44644a6692cb39a6e9e01dde7e10c4f4db0576e16aa76a
- SSDEEP
  
  384:rqsXVeI2xzyOz3WNE4mWmh6WgcV8K8beAb:rqoeI2xzyEomzg4O
Score

3^/10

execution
behavioral27
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/coffee/coffee.js
- Size
  
  8KB
- MD5
  
  778339eb31afb7882486697d98c53b3a
- SHA1
  
  94cd80e7ccbc14d86e2514f6736c376c145120ca
- SHA256
  
  dcdd9bf38160bbaf18d8f2a976d04bb17ba143a4924058466b82dda2c1be3bcd
- SHA512
  
  a0d65efe6ec6ec9053550c56a55d9f34713dd7e62856ca2a381162c573ebd5a6b36d859c5893734be7cb8a5b4019034b91da7f8bf72b01fc3e2d5adf32d05ccf
- SSDEEP
  
  96:HDGk08NBI0D/F8R5HFK3JPElZGHf4VTi8jQ5CQFvmieiadR0cRvv0e3v0mB9ME/Y:r/V/A5lIPmggVO8jQ5CQFvmieRRvHs
Score

3^/10

execution
behavioral28
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/cpp/cpp.js
- Size
  
  12KB
- MD5
  
  4267c07dc0ea63d7ebea810584cd60fc
- SHA1
  
  6583cf1b42a9cd826f4785de661b35f49e8c0e3c
- SHA256
  
  7c0cf17651cf97b42714a99c06354822f98c676ea6f929bc25fa038e53a1fb48
- SHA512
  
  38b2cce9bd4d9485c9f0d4d2f2b54867ad0f4f5cd1ac4ab31b75f7be89a380864baebab8ba5ebf5d95f06d727b45cdd532c3527303f116cb745b20124e6ca845
- SSDEEP
  
  96:HDGkK8EFFBRSsIvp2qwdDAi9DYuOUphQbMgI/3klnnZHXkwnI6NvRwk8i8vLRsfC:r9EFJvIcqyDAiSuOUpK/IGasn0b
Score

3^/10

execution
behavioral29
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/csharp/csharp.js
- Size
  
  10KB
- MD5
  
  213e7ed72b84eff30fd439aef1331fd4
- SHA1
  
  bbc95ab1948a1e6ab7a677b7bfdba09b57b1be06
- SHA256
  
  00e7837542dd16369d97e515d9063c015fd6bf143842723d1420f04769b4f9c6
- SHA512
  
  2dd5e536dbd93bebe19a6c5bb55c8e224ed5ccd1c3d34e8f3cb7b3f1a6a37b74d485c9940542aebb5d87393bbb462dcf3e35ab83a9faae16caa6e4a8cd2d7c1d
- SSDEEP
  
  96:HDGkyr8NlWFFYUlSjKjYrA9+GPHWpfFQjY5pHU6TGUdkwnI6NHnc3BxBvrOESOFb:ryAyFviRAtHsuW4s12/t
Score

3^/10

execution
behavioral30
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/csp/csp.js
- Size
  
  2KB
- MD5
  
  79cd5272313cb73c70fba578ca644f4b
- SHA1
  
  6c41a20753948f5ef9276221b0232b2226027281
- SHA256
  
  cfbf56a632a506ef3caf41caccdbca476aa976c09ee3b4f8a10db6fa22e92620
- SHA512
  
  bdc3da4f897da8d36af2d0dde70cf61a3a96d83a85d9f31fe13eb58b8a9c6e603b25c73c1b7299a09fe20ebae9f070ad5f67c810f7193c7762026f133b6e50d6
Score

3^/10

execution
behavioral31
- Target
  
  Cxdyz/Monaco/package/dev/vs/basic-languages/css/css.js
- Size
  
  8KB
- MD5
  
  d4edbc51c51d0d21faa30ad73255f214
- SHA1
  
  26b62053ac2848c9149e317080bb1b181a08fd92
- SHA256
  
  d1c5c95b6a340b513a40c2561379647384842764a6b382dace0f327ec97502c8
- SHA512
  
  fef4dca1ddd45fa96c2bcc390b30d2b2752eaafc131244180bdc5de0fe34785fa020d34191d0746c37713550506af3f0affaff1ab2ce8190d884a00ff74c8c27
- SSDEEP
  
  96:HDGkO8NwqVSRaZ90jedTLxzJH+xqOB+dwDMS84:rBeqGw9z1X0p
Score

3^/10

execution
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32