b4bb497039f2c1ca8c7eaf592bf32566b8fbb2f657f23555bb14c4d24db3c622

Resubmissions

09/08/2024, 21:36

240809-1f9kfatgrg 6

09/08/2024, 21:26

240809-1an2jstend 8

Sharing

Copy URL

Twitter E-mail

General

Target

KASU PACK V.3.rar
Size

173.7MB
Sample

240809-1f9kfatgrg
MD5

efee2585fa91b2126e932891f773b5ce
SHA1

62a59832a80cf21a4812825dd2b0543254c98fce
SHA256

b4bb497039f2c1ca8c7eaf592bf32566b8fbb2f657f23555bb14c4d24db3c622
SHA512

f0b50fbb214d4256d3f539679e56c25107733cfc4b5572e3f318c89ec3cc01a5cc767f77fd382cc0abc79a53d452e8f9823344f24800d155252853b129e8fee3
SSDEEP

3145728:BkjSIGXTkVrOFNpm6gV124UHLAVaA0zFQq7i5nidMlGstmQyzW9odtUIVjcYJFa/:6jSVTkVrOY/GBFi5MXs0dXdCIhJP1I

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  KASU PACK V.3/Ping Tweaker/DNS PING REDUCER.reg
- Size
  
  476B
- MD5
  
  f93ce6a3a9242f1e40bf795d0d1972b4
- SHA1
  
  7baa17bbbb41c1fbcfe3b2abde5db74caec16fdf
- SHA256
  
  3bd8bd5b7df9407a894df44ae66e5aa6d93a814a8735c453cde9689ccd89eacd
- SHA512
  
  4140af33e3e1f28429e039a8339de9969ac25f9d45596fca3b42a7a97ece8215cf952dd214f84846c3af87370b02e1b0f7ad77cc4b41f50eecacb42ec7313616
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  KASU PACK V.3/Ping Tweaker/KASU PING TWEAKER (RUN AS ADMIN).bat
- Size
  
  1KB
- MD5
  
  aaf93684d2b71892aad5185e018cc137
- SHA1
  
  2eba4ede105d48b13ce5b4ca56bac284a92b5ccf
- SHA256
  
  b24b8ff1d7f131f30da67b165e44f5e1a31ccbf001e8e31c2fb5cfd09a5c629a
- SHA512
  
  e3f0c364fdd0b0e239a94f8ee1a5482ff65875d37c402904b316652a28b8add8138a4020c677f2616caab2988ed8b17862b320720d6439082acb83961f306294
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  KASU PACK V.3/Ping Tweaker/Ping_Optimization.reg
- Size
  
  746B
- MD5
  
  e85884fdc431c32cdc545c18457f2106
- SHA1
  
  a5e3f98e162a34cdcb0584ca7a1cf849735d4e48
- SHA256
  
  d9a163ef0f3d2b99100dcdaa14b644bf698e05bca65e29552f3a4a1fc587356f
- SHA512
  
  9672483d4a48d93133c6252eaa0d23e53763d5a5a4384c43dc825c2f970ca6354865710824382fc7d394de91f3418b40bf03dd27c7b2d124a6c5771d11c411dd
Score

1^/10
behavioral5 behavioral6
- Target
  
  KASU PACK V.3/Ping Tweaker/Tweaks_internet.reg
- Size
  
  947B
- MD5
  
  03335f697f34e444698a389400e851e9
- SHA1
  
  fb672dd2d69effe078b69ab796d5804951539c6e
- SHA256
  
  e8602243027b9a6ce8e7c6e18334d41ba66dbd6d829cbd78b63fad5a9d7cce2f
- SHA512
  
  276ad267d8d029b2e632e41ac3d71e5603428158838ca3b0458167bc1e0a1ad6d399dbad56ea99afff34c574cfde9acbe3ace71af229db94f03dabfd4ea3f926
Score

1^/10
behavioral7 behavioral8
- Target
  
  KASU PACK V.3/Ping Tweaker/low_ping_and_delay.reg
- Size
  
  319B
- MD5
  
  a33a770344437b9a6e7032734f0a2d9d
- SHA1
  
  16572654cea038e615c82490a9517c222394d86c
- SHA256
  
  230888c9d1bdabbf898e44aea761e5c747e472c12982b56d29edf35fab089a5e
- SHA512
  
  670f7fd00319272c191e04e434304b6f137e9d270fd749b15cc101f5a7eef578bf969617a5411adc80f7f6884a163a32f3b7d7c7c7dab583e9c84694f9ca06c9
Score

1^/10
behavioral10 behavioral9
- Target
  
  KASU PACK V.3/Regedit Tweaks/HoverTime.reg
- Size
  
  106B
- MD5
  
  bbf53980c0369b1dfb6d7535b6dc24c8
- SHA1
  
  29ae9373bf8017c59beb048366f30fe64ec095a3
- SHA256
  
  99b86cd4e59662d53390aa64ad8c53367d4cc4d61b44e7491a2e867dcc199a2f
- SHA512
  
  4ef062a3b4925bd29b31a6adf65bf0a1d241e1046aaa8d05c4e21b6f7dffd20a91af53c9d6b1c6ac7f93d51161ea89445b3aab0204705f727d42ab182e3eda2c
Score

1^/10
behavioral11 behavioral12
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/10GB.reg
- Size
  
  165B
- MD5
  
  ebf66ea99358a0c31b1426f8a34752ee
- SHA1
  
  65fc28a791def06a70550b28bafc0ca37e82fac7
- SHA256
  
  033c65d9eec7efaa4967dccd7b631bd6554e5c39209475d5c550653cbed52b2b
- SHA512
  
  fbd8fc8137892cc2e69432769a3bcd429283849f84bd29e811770253b5ae58c2f94704d41ff8acee470fa372469e3b1f3c839d8a0ca3c592bededbf7e8e43c21
Score

1^/10
behavioral13 behavioral14
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/12GB.reg
- Size
  
  165B
- MD5
  
  08b029b52576e7ad345cfe49984c1fd5
- SHA1
  
  b8c7115d320e53ffd2d78b5bcf10089874bfe036
- SHA256
  
  3410817a68fecdeeaf50da29f57b0a416cdea77382763ca33be94830c6fc2451
- SHA512
  
  89e8271d2084c734f8d7ad5da524a840877cc149563bcb5fb7282aef09c04ef9953d2d7b81769c8381cf542fed554ddc345a4a050dcd1765ddbd83c0fecaea92
Score

1^/10
behavioral15 behavioral16
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/16GB.reg
- Size
  
  165B
- MD5
  
  59637f9cb6db57fa61f78a6faa60bf44
- SHA1
  
  1c2d97abddb2e10893ad143e13400088bd1fe493
- SHA256
  
  4e43785c2b68e48b0457e381da46c1fa72ba11404e9be3c43cdf4e68370a5800
- SHA512
  
  bc1d381ac3eb00df81fb415adb0a23aefa30d2f2b0157ce4741d2703dc5692e66490ac9920bca38cedb5112600bc2b12b96fca5d2c506690a07f33dedb3fca66
Score

1^/10
behavioral17 behavioral18
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/20GB.reg
- Size
  
  163B
- MD5
  
  e38d1db8a2fe53d22bffb2057fcfc19e
- SHA1
  
  4fdf738c19a457597ff65ebbde14078e9362fca6
- SHA256
  
  7f8b9321f72504bd891bbb54550f1cf6430ae3a3bbaaeb671e0c409c941c289a
- SHA512
  
  12c65bd9972d8a03e146218f3ba09b8a4820b0817f212b670d772eaf8ea90ad6e7b8016e2f000566a7553f9b77a5443b393184231113211b37fc5ec88be267e1
Score

1^/10
behavioral19 behavioral20
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/24GB.reg
- Size
  
  167B
- MD5
  
  5101881556e64132916c590d70d94d96
- SHA1
  
  11fd61021f42ef34478aa94dd8f4c8cde9af8908
- SHA256
  
  557ddca6f75277f05f33a16081946c4fb8bc7af29106cef51ab7a5ea95eb07b1
- SHA512
  
  ea0e0397a824be21a3c32e4d1c73370fbf88170e7ca624bf8ea7dac42f55df4095d78c9b7107fabd7dbdb3a998bdbcc161ba2be763b9a54aaa1be5a6229c85c5
Score

1^/10
behavioral21 behavioral22
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/2GB.reg
- Size
  
  167B
- MD5
  
  7657660833d4730e0bdab7056422dd72
- SHA1
  
  2d74530b552e058e571d7e98f52f2b9b2d7be84a
- SHA256
  
  e234d1a0320c65632e23e340c813eae1a54394b419d7caf213eef578581eae6b
- SHA512
  
  c8e2df46e6b09b8ec673f4b1cbf1a965e2414165fdb398297dbafda4bf1ec0e2df9f98d771d0efbcc53f4bc573f143ef56395ced7174665a761012d3956081a1
Score

1^/10
behavioral23 behavioral24
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/32GB.reg
- Size
  
  167B
- MD5
  
  d17dabe5e1376f771f49ac16a6327789
- SHA1
  
  504f3bbe7091b99f0d2fa9a4f57485f28b113aef
- SHA256
  
  88b822608834c60c5e16540941c5277a55c2ea7ed1e884f07afcb1ada6953280
- SHA512
  
  4dba6439205e6deb54e01dfd734673b0bbd4a18dc77de147f74e6754b319886022c5d984ba7f5a5df44b5aea39f50589dba00fbb7082c53f84bbaa633eb4b910
Score

1^/10
behavioral25 behavioral26
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/48GB.reg
- Size
  
  167B
- MD5
  
  a8e0e5104876594b00640bc633ed58f0
- SHA1
  
  ca8b67df20813fe34d340eccc51f07ed6c967e49
- SHA256
  
  14bff4bc64ef775e7286085649f4f380cb8a8cc6759abba33cf618229610f21e
- SHA512
  
  e66a8dd1945b1cc2d5428e4986cc2cbe32ccabd0e8a64579ba926338bafd5e903b20485ab5c5ad01a95e2abbeee7972c0acbf42d31cad6d6de0a318bf3cc9214
Score

1^/10
behavioral27 behavioral28
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/4GB.reg
- Size
  
  166B
- MD5
  
  5cfadb0d0a1a23cc25ec1ed60b1f7eb9
- SHA1
  
  cc4ae1c730a59d5f57de2cb78bd0a46c87f0ba8b
- SHA256
  
  e73a5673185589ab272431175c9a06ca75f883a5d8876dd0201a51104032fd57
- SHA512
  
  a3db6bd9511d5e4256dfaf0802a6791614ef3f7ee7a114b4e4518e066b89c29d0f01342a98463b6610204a6e887c073c1147d39269df566501d5f8ea0f08aaee
Score

1^/10
behavioral29 behavioral30
- Target
  
  KASU PACK V.3/Regedit Tweaks/Ram Tweaks/64GB.reg
- Size
  
  165B
- MD5
  
  9161aec02a1a5435b486fd07a01ad5c5
- SHA1
  
  ced525044879dc8081274d3951914e8dfbd0b3d4
- SHA256
  
  3d7e13753fbdc93ecb06788713c266e3bf0b216a2a3432a88bfd25f13a3577c6
- SHA512
  
  e122374a76888b28e3a8e9d0e6aafaeb748c49f3888461ebd1a1b013dd4949ccbece678971d7971b94b2e80eb1c5692044bd12a5ee3da39b90643d35cf4b1866
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32