observer | 0e5470a33fd87b813ecf72370f9e1f491515c12f41c8ea3c7bbc169ac56acda5 | Triage

Sharing

General

Target

observer (1)02.bin
Size

439KB
Sample

240809-zzwbgsyhml
MD5

32583272b5b5bd95e770661438b41daf
SHA1

87315b71483fd81a36b4666462870df3a7a54d43
SHA256

0e5470a33fd87b813ecf72370f9e1f491515c12f41c8ea3c7bbc169ac56acda5
SHA512

885efba3442c55a332a58c839140cd70d74db453c812bd6a2209808e1d1cb4c00df3df65c0847e0af0f1a7ad5f9705ce79c50d594fd6c4047a55a7a9fc456b46
SSDEEP

6144:Hg/4WXUlri/065bkuZl9kwz7WdloA+HNBQTzf4PLF9xU2FpdRdL/Io2:HOSrO5bXZnkwz7WdaA+HLQ3f6JPRzg

Score

10^/10

observer discovery

Malware Config

Extracted

Family

observer

C2

http://5.42.66.25:3000

Targets

- Target
  
  observer (1)02.bin
- Size
  
  439KB
- MD5
  
  32583272b5b5bd95e770661438b41daf
- SHA1
  
  87315b71483fd81a36b4666462870df3a7a54d43
- SHA256
  
  0e5470a33fd87b813ecf72370f9e1f491515c12f41c8ea3c7bbc169ac56acda5
- SHA512
  
  885efba3442c55a332a58c839140cd70d74db453c812bd6a2209808e1d1cb4c00df3df65c0847e0af0f1a7ad5f9705ce79c50d594fd6c4047a55a7a9fc456b46
- SSDEEP
  
  6144:Hg/4WXUlri/065bkuZl9kwz7WdloA+HNBQTzf4PLF9xU2FpdRdL/Io2:HOSrO5bXZnkwz7WdaA+HLQ3f6JPRzg
Score

3^/10

discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1