General

  • Target

    tsetup.5.4.1.tar.xz

  • Size

    54.5MB

  • Sample

    240901-y34atszhlk

  • MD5

    ef1ade60d3c2d94a9e09c75c721e3263

  • SHA1

    2b14cede6e3f3397cd207a04898c7acc2134ee01

  • SHA256

    02d827e50bd6c6de5d0e50aa84813977b56bdad3999298b7dec64ac2ad544447

  • SHA512

    7155bc54a50c0b0377cad5d409ab9be42be0ad790f9f514cf11bac55ccefdb080898d98db50db2e995c7f2c81659f541a305c7a9172176f13d2994d54860a3e5

  • SSDEEP

    1572864:nJW7ANeWn7o0+4TrWMCQM8Qu/vSmAeKhbTjzZ2Wc/p7mP23ot:nJWUwWk0+Q1zQu/dDITnQWURs

Malware Config

Targets

    • Target

      Telegram/Telegram

    • Size

      161.3MB

    • MD5

      49d6e301dae4b2e43734c79a89fc76b6

    • SHA1

      90a03b7a4685470a56403754455f0beb298ce9ff

    • SHA256

      dc266988a27c9ef03e346c1a25a7e5f079e5668d43e0af41eeb298975247ccb8

    • SHA512

      7f93e645fb11e78c5c9c43fb38d9d77b24af15da0db19667682e8d0b0a730a849d05b6006ebaae5faf9371e3bba01e36f1cefde4b865726a3b5590a2cbe70648

    • SSDEEP

      1572864:Z/0AsAyg/P7SRDjgKAG+d1PuMGXAgzZLHnyo1xXuTT40pkQfDtToVynL6oB3Ipkb:d0Rs/KAG+dQMuny2XsT4VQfhTzB4m

    Score
    6/10
    • Checks hardware identifiers (DMI)

      Checks DMI information which indicate if the system is a virtual machine.

    • Reads hardware information

      Accesses system info like serial numbers, manufacturer names etc.

    • Target

      Telegram/Updater

    • Size

      10.1MB

    • MD5

      52a3920fa96f78e21edddfaec509a07a

    • SHA1

      597ba3f8effa2f3c1308ab755ea755720b5e5eb8

    • SHA256

      f8abeccdfc5c457622608ac81c41c83f8853d7b66b42241701e5f4c85579752c

    • SHA512

      8b3cf837ad035110015fbe5808d80a31a49b645fa2dde2405679ee31e73188a043675692f1c3060570c2917256e9ef5fcb5621ee323b308c6ade1b2188f6a46f

    • SSDEEP

      49152:xadi7M7I777HXS8kV6fgGiWX5JH7gTqNwmabtCd5dNOSeAWutU5PkmuNZnmL2zoo:x8DVxqb8E4AFGSgnLOxa19jbAgG

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks