adb01eccb72b9a8c58b277a8543957d4f9f1095629fc42e30558fdcc7c6482b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Aimmy.zip
Size

392KB
Sample

240828-24cq2s1dqg
MD5

4a9ae52961ec3c0f2401a86c873af045
SHA1

416f925a0688f2f15d8a3af900b63891b996d63c
SHA256

adb01eccb72b9a8c58b277a8543957d4f9f1095629fc42e30558fdcc7c6482b3
SHA512

1b816472a0139bad02e6183c199755ae0fb8beb30747c55cf03da8a75375db4662bf6e008f3d3b8b0adc7f2664a59d82766fef2907d7a212f1ac3faaed347d04
SSDEEP

6144:omz9YmW4Y7e/phDkGh6xT6z377frxvAxR13eAP4GLNJfv8tdhKfHh/Arl:vmmZnhXE23PkLeAxYsfHh/Arl

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  Launcher.bat
- Size
  
  1KB
- MD5
  
  657a0896af0d783b71acee3e3ac09ab3
- SHA1
  
  00346d1e96589652460cbcae7897cce245caa852
- SHA256
  
  c6e3c6dd72ee9a69ea53f0eea8285168bab3b534462a43bf41c0e6f4913512d4
- SHA512
  
  65f691628c1e0a22cdb30c49f7c641d5915e9236fb43ebe670c9bba4be296c8bd7c0b1a6b5a5537357cf9effb92533ff87e44bc8003a186bfb4a166a63a13263
Score

6^/10

discovery
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2
- Target
  
  compiler.exe
- Size
  
  203KB
- MD5
  
  df2e6e3d053c1a84d67be7ebff7db7b6
- SHA1
  
  0f2d0c16b4426d2b0b7b146c2020f636e4b737c3
- SHA256
  
  b61ec68b2f9f2902561222bacda3719a09136582a26c72b1ed5ee3be117ced55
- SHA512
  
  1b6b3a5d3ebf9725be786d8399daf54342e21692a1ad267b70fe4d64279754898d1a8b4b2a9e89e01fdb683ed9a8fe0763bee17811099e8babe722409071166a
- SSDEEP
  
  3072:fnvavn6z2TMRXs0I0ziBev6pQBeXEmZQCJeoH6ctzJQel5axhtvbOEUgnuBKn7+S:fva5TMRXs0IKiBDbZt4Ggn77+ez328
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  lua51.dll
- Size
  
  389KB
- MD5
  
  dd3adce82e65eb0ce6cf6c762db6899c
- SHA1
  
  9906968a7220838f6e89d9c131080749a60797fa
- SHA256
  
  cac41cdc5602eb688a6244c6ff5fed42489be7a2088020423fa91b6436f089ad
- SHA512
  
  baa7be89f6e2cdc0d35032900417b64b16cdcfc86ce9a0667711a27255a4e4506f8f4482088c6f51cf4c0b5a5dd13f2f16c08ba16f2754d2c311ed846b9c3cd3
- SSDEEP
  
  12288:tiZ+ox9piQ8G27pC6Yyu5t60O0MJuAghAuNwABR:te19pm7pCuCt6+w
Score

3^/10

discovery
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6