c8fcf760c450eba6b4a179172db6cc1811c0e8ff9006c9a41648e55fde64da86

Sharing

Copy URL

Twitter E-mail

General

Target

SafeGuard.zip
Size

115.5MB
Sample

240903-ehe8qaxfpc
MD5

15ed9b2259049dcd16edec6a2bc26ac8
SHA1

01f6386c3c1bf9ec8441b4fc6b3f228168b1c59f
SHA256

c8fcf760c450eba6b4a179172db6cc1811c0e8ff9006c9a41648e55fde64da86
SHA512

5e98300f88a47e6ee1e953e4dcabf74a64660071ec4223ff5f39d9c63dc7f6251f540f6f142f7a84f430cb7c44fd0ff07745e9952b914b2e46d729e18b242bdd
SSDEEP

3145728:DliB1JqU1M7/obW+FU3DKyfWz4hcdhlECwZ:DlSH3M7d+FsQEOZECC

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  SafeGuard/node_modules/uuid/dist/parse.js
- Size
  
  1KB
- MD5
  
  ff8aee90a6d657aeaae68b443dfbfc43
- SHA1
  
  4d5c922be485889d72a6e05263140d097f88b398
- SHA256
  
  99adef9dc614d4049ee14bc55af24c0910711c0e435819145bddf43e686bdc85
- SHA512
  
  8a2bddae16fb9fe0310d6afa9cdd3523bd5582a1148810977b1e7a80046b08fe61aac4534d25780fa453983b5fc86db0c5394557d89a556aeaabcfa5f3c3182b
Score

3^/10

execution
behavioral1
- Target
  
  SafeGuard/node_modules/uuid/dist/regex.js
- Size
  
  274B
- MD5
  
  49ba07a9801a790aa2be6ada96f5d0ff
- SHA1
  
  424464cd4c0b6b7d59b679ca1b5bf88028f46682
- SHA256
  
  0623d1302efe06fe4386bf45aeab6b9eff86625589b846be80038562ffc8be61
- SHA512
  
  f3a1614cc41400b4df1b24fabf511f18df80e43e254ee4f9d91dfac0f77bcb890486efa31c7228d5a38c3d19705c5e33033c8102e94ed7a0f1ed90713280e05a
Score

3^/10

execution
behavioral2
- Target
  
  SafeGuard/node_modules/uuid/dist/rng-browser.js
- Size
  
  1KB
- MD5
  
  20999a89b751984d07eb5787ecb47d3d
- SHA1
  
  f55a3c157b3eef14a348f72ac71f4f2d7a825913
- SHA256
  
  687867097c1ab394855d0b4fc237366ce8ff6014bb037d613a1c580b23e61038
- SHA512
  
  308aa0fbb4619e5b5005c08366b505ff218959434df07303f830c10fe80b5647f0d98047ff8ab4109faf801313cb84319a1670b75efe0252fd048a6d6d03696c
Score

3^/10

execution
behavioral3
- Target
  
  SafeGuard/node_modules/uuid/dist/rng.js
- Size
  
  572B
- MD5
  
  38fce2b001e0fdec8d5b980f61c8b7de
- SHA1
  
  d99a8c7a70e12291012ee1cadacaffc85c062d77
- SHA256
  
  3ad28d4533aca72534db36e1ba2a85791aa669280f10533e437d3183abde5522
- SHA512
  
  245299d2d7eff35c2409df4d2a439c4604266078c4c32a3aaeecb09d7fb41d9cfcd66cabcd4acc2f61b94ab3a1141d64d6f615bc3903d8343203851ad5aaabc0
Score

3^/10

execution
behavioral4
- Target
  
  SafeGuard/node_modules/uuid/dist/sha1-browser.js
- Size
  
  2KB
- MD5
  
  8e5b0c53fe245391e91fd2174b4fd18f
- SHA1
  
  1f2b4d9618f80d95a97aaf4cb913d73e3bfcdfa9
- SHA256
  
  fc9306945f1c7afac374e85c3f27c55a21ca6c8f2224d4261087f9859b00a0cb
- SHA512
  
  65fe4abaccdda77713aff02a35ba5cbe70a7005b7d7e5a65c75069d56b057be2bfd2742716a01f7f9e1bcc5ef1c26e0b0c0c22e5da1ac01341b6f0668b18d160
Score

3^/10

execution
behavioral5
- Target
  
  SafeGuard/node_modules/uuid/dist/sha1.js
- Size
  
  575B
- MD5
  
  4d8afae22d0df2c6ed4701738ea1036a
- SHA1
  
  f271417b3b4b925a91505d477395f2c18551d74b
- SHA256
  
  5e2c3f49e8453ceb0af03169ee6ff92d45587b983d74bd8fa4425c8496ab26fa
- SHA512
  
  0acac9b5db75a39b3e35b28e4016f73ef617693c7a8ec1a0116af4c0e9554a964cfc8a1cec1a17c1f5b070a87b379725362dc5aea4f6e568a14ec7ea589d03de
Score

3^/10

execution
behavioral6
- Target
  
  SafeGuard/node_modules/uuid/dist/stringify.js
- Size
  
  1KB
- MD5
  
  9fdd8e8b88ad7f0de01fe878f132d85b
- SHA1
  
  5f3108687cf1d8541a5414e2b97efc1effc4f4fc
- SHA256
  
  94aadfe10e7108d88966e8a5197d77975b8919da623c02d472c06bda8f6b5a8e
- SHA512
  
  be46f241f89556f019667ba0f95295a59b695c67230d2af828ead9781614f6b4287a61244e06ade84fe4c1e6b0d59644a1044fbbfa427f3cdb7abb4b77b1f680
Score

3^/10

execution
behavioral7
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuid.min.js
- Size
  
  7KB
- MD5
  
  50fecb6517141ce734bdc903aeb7aa6d
- SHA1
  
  ffce0e94a0a6f3b661942c5f9344e709773ec44a
- SHA256
  
  c5df6d9704bdada96df0770523058f395192ee9d1fe13880eb1d57dfe6417533
- SHA512
  
  50d3359e302038551aef86746c00f002af206d372a642f048f8c4f4b3a6787497a28c7afc2f901bdb95d17db91fbea8a789f8c3991d18d5d47663a11be30df35
- SSDEEP
  
  192:NT/XsoaxLo7L1AsLVllMA5/VYZncbsPYxb2g9n/m5iCyK08l9l4E+kghMnf4W5Qe:VX9aNo7LWsLPnYZncbs5UeiCyK0Q9l4W
Score

3^/10

execution
behavioral8
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidNIL.min.js
- Size
  
  280B
- MD5
  
  97eadda1db2f6d8638d7001fa86c213a
- SHA1
  
  cf570b87215c39cb3ba8faa10fcbb3676401f3a7
- SHA256
  
  18c98395b8a11f83924c22af88573b8bbe3a5cf4fe7864364e6902e49ac3d7fd
- SHA512
  
  5a47348d173856145a04959aae5721af7487cca889b3bb36141c9d2201d870888a51214d98bd14841586ab148238d38771eb86c87e062fcfe6a00a3865aac246
Score

3^/10

execution
behavioral9
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidParse.min.js
- Size
  
  883B
- MD5
  
  a50bbd8269f219ff4d7775666356db32
- SHA1
  
  164d44846f8f3c057dcbdbc6194d2359736b30c2
- SHA256
  
  555a6f1b1f49532a96c4235ab4de7c1e5fec9b8724bcf1a1247ba4eb33116af2
- SHA512
  
  156f6daddb1adaf3eab804a369fbaac87533716e67feeb42e0c086444819d29b16460cc089a4d43843cb5a2f004cc0c76c283590cce395a2a599bf4f4dac6560
Score

3^/10

execution
behavioral10
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidStringify.min.js
- Size
  
  829B
- MD5
  
  2a620b7de0de213635a243d79a5adea8
- SHA1
  
  42d487423e0f548b06c038ffcd4e96005e7d6f5c
- SHA256
  
  9b6db819fecb2f40d9fa5ac8c892218004b3a633a1ec29d7a873801a7eade28f
- SHA512
  
  e39773c5c88820061c027395f438fd77e1d9927ea19d877f085add3d205c62a334a79ac9b5b27d99d77c3668e20bea57c86f33234eec8c0b8610c2428d2338b6
Score

3^/10

execution
behavioral11
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidValidate.min.js
- Size
  
  420B
- MD5
  
  1f2b131465472255f5e884f071268ef0
- SHA1
  
  63f140c82d8a29a95fa178432fd8e4615f1b1723
- SHA256
  
  45a1c7d7618c149522c8f8085675e6707381f6106ca414c294b3e6169065cf21
- SHA512
  
  55f66728fbfef9e9a3babe26ceed989acd5b6f9aa320bccbbbe97b0887983a80f6b1a8f345eaacabbb4e6cb2c7a1f9fdcaf305e89172251eb8128d80b0ab0da9
Score

3^/10

execution
behavioral12
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidVersion.min.js
- Size
  
  506B
- MD5
  
  c34b9e4bd9444e98516c7612af302c83
- SHA1
  
  3cd573bcd85847cd969401fc251dddb5b6ce3e88
- SHA256
  
  c0a99b310a43528b5e4f59c87dcc489732bf8c4dd3a367c34cf882a88a3cecca
- SHA512
  
  8a879d38af09b369a283405942e5deabe320feb227230d361b54d59e9bd16b0c8b627d315569f35b1b8467cac79d1770f4d86bf8305394f57e7241306cc9ffcb
Score

3^/10

execution
behavioral13
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidv1.min.js
- Size
  
  1KB
- MD5
  
  ff50b98ac80a5c9bf03fcaee164478f8
- SHA1
  
  101e0d72280458e2d4991288e8e3dbdbe9673595
- SHA256
  
  9963a427c7b05e1ea3c923cfed992cfea294e980e42d754ba593cec66d285a07
- SHA512
  
  e21270457de8d68e5d53703e7df8424292f3393ed4d300e847d1daecc728c577b3d35d62149e91301d3c06bcc4db71be801de036b8a8b6286aed33c87fbc7f34
Score

3^/10

execution
behavioral14
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidv3.min.js
- Size
  
  5KB
- MD5
  
  e7faac0557331b9c9d3d0cb47b563cba
- SHA1
  
  248f091690df296d883d80962591b3b60e2f4e1f
- SHA256
  
  2d31a5a7ef824371df6f91ad677cd137ca9b51a529be40873f9b60009c550932
- SHA512
  
  d2bf0a2f7cb21f984cb046ec75e9dea6fb3104c41a332b9e731e5d015bb0a57c40ad61704f15c2c9f91f49abf9fe928af80c3d927c793da3679e1181d12859dd
- SSDEEP
  
  96:zn2LsDxBGEgV32T6MppPIHpjEBSiCTtAjtr4eYwO3kXuwom1Ee3k:zislsEgo6MLPIRBkBe3kewom1Ee3k
Score

3^/10

execution
behavioral15
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidv4.min.js
- Size
  
  1KB
- MD5
  
  446d2277e6a146a9fbca81cd4ce3f3b8
- SHA1
  
  59d9ff543ea6044e84be895d760541ea0e04cf98
- SHA256
  
  4bbb806e743e21bc9f97b62fc0564e0889b7f31ee9d48c3f2b85d4e00fe629cc
- SHA512
  
  04232a10f976768914dd3fc415b6bb8eb7cbe05c6063aaf2521e2b442f5f799c38c9652c959dd47ff94f679ff95251239f8a6b9504d17c83d84240eb2c26495c
Score

3^/10

execution
behavioral16
- Target
  
  SafeGuard/node_modules/uuid/dist/umd/uuidv5.min.js
- Size
  
  3KB
- MD5
  
  520ab4a166db0fc982b02935090be2d1
- SHA1
  
  bce98a448308558bd7bf015887fe11ffec24cced
- SHA256
  
  1a444d14f3a6f8952bfc827be5c52dc7367c99e5bf30a5e5102f0b4ad420df76
- SHA512
  
  0d917f3253d55b5f1b74524c7b9120aee66b53b505ed0cd0bf00c14aacbd0e5f2f128190c9230409ffd6c0db1bd9cff326b221048eb1a6b7707e4eb0940dc5bb
Score

3^/10

execution
behavioral17
- Target
  
  SafeGuard/node_modules/uuid/dist/uuid-bin.js
- Size
  
  2KB
- MD5
  
  9aab7399168af5d2bcf72d3073ef2102
- SHA1
  
  9eb0300daa39606ea1c3c66ff6c185df6068d637
- SHA256
  
  84503472d0530df457248874ba69884f02775e50615155eadf700ab8c2f1237f
- SHA512
  
  d1154b436607cf1c4ecd3daa49a8cec14c2243e9bad45c75154164b997892208704c6e915b79bfbdc90468c99535b22dcfb74c3f6c618eb1d89b60b664fc78f4
Score

3^/10

execution
behavioral18
- Target
  
  SafeGuard/node_modules/uuid/dist/v1.js
- Size
  
  3KB
- MD5
  
  8d6820ee52db4b056f68cb2a9f317716
- SHA1
  
  a31ee25cde7af8268434cdd0f2e7aa6c0df5fed6
- SHA256
  
  926e1f88385e64b9fa46517324df8451a35e41e8a3be5e17d34bdac39f3973e2
- SHA512
  
  b7079d37f18a4b96320d89c009f675f4be8510df2afb97c362953c044d060db981f23266ec83c7984684dcc650960cdc193a0612b7207dc22ea3c915db69f422
Score

3^/10

execution
behavioral19
- Target
  
  SafeGuard/node_modules/uuid/dist/v3.js
- Size
  
  429B
- MD5
  
  57dcadfc627bf6fc06597839a76620c3
- SHA1
  
  91c6084b8650b805450d36adb37e247f82caf913
- SHA256
  
  19faebabadc1f444c42243c7c7c01695b0302c361c62d219caba055f1e39d483
- SHA512
  
  76ce797a6e2dd9f8708a3c0a93bb3ba16debe7f6d20778d7844ae381b9abef9bcb575e9daf8362a7a23df9795a7ca745ea03684af287702fad377bc227284d38
Score

3^/10

execution
behavioral20
- Target
  
  SafeGuard/node_modules/uuid/dist/v35.js
- Size
  
  2KB
- MD5
  
  8d44a2b911695e2344bc194606d31c23
- SHA1
  
  d3e0118450a0ced7485fe8f0959aba7b18391e23
- SHA256
  
  016952187924f74ca5c5f2cbbba9ecf30a11b2144a9c3ee165953b39f45524ec
- SHA512
  
  add720ad9fc95541c796a3ed77cc959dddf2dd6157fdc723f341cf26dd2c4cfd8c9a9261b07ae7dc5affaecaa0396e80db73b5439b4afbd5954ba96b2e0e1a9d
Score

3^/10

execution
behavioral21
- Target
  
  SafeGuard/node_modules/uuid/dist/v4.js
- Size
  
  896B
- MD5
  
  2303a04a729b1914233643cc9fa1ed3d
- SHA1
  
  6345ec5651c2c9dd05bcd2cb73b2e3ea5205fc4b
- SHA256
  
  724d58f3856dc66e53b58d8abb128d030d7822fe527bad8f3dc2ca43f11fd117
- SHA512
  
  7cad97dcf15ea077c5efff3f7d75a5d0717b8445f5f4fa5c6a7741e08da3d31f2c3b1ded81d0d80a8b794400c67407b6b9a2d6b7253b07ee0357b670470e5d49
Score

3^/10

execution
behavioral22
- Target
  
  SafeGuard/node_modules/uuid/dist/v5.js
- Size
  
  432B
- MD5
  
  ceedc3cf03c9367c3a5edd7a5b42963a
- SHA1
  
  87d38b77253effa5d5a50958c4c15180daa191bf
- SHA256
  
  62f597d088c250620ae8b6952430d0478e10dab76fc2366307571b6afe72c4d5
- SHA512
  
  1cad081a5091c33ec2d13b831deb819a54ab352f528adc1a9830a17f6b81db0710ac713d2bcba0018424650b5477a2f46e5ead35f5e25eb1bbe771ad25c48841
Score

3^/10

execution
behavioral23
- Target
  
  SafeGuard/node_modules/uuid/dist/validate.js
- Size
  
  426B
- MD5
  
  1a964c8aebd547289a71bac6cf293a0c
- SHA1
  
  3316b5bc7b64f757d9e5b73d36c0a6842622b7c6
- SHA256
  
  1f702789845eac8f7cd8ace409b20a72fb1fc4bb74a732cb0d843b4af6a6ce99
- SHA512
  
  4110040eb08028b5811998f0651f9e23b67df0ac991dbfab23cd4d5439e65bce8f59680c44824fa9469a99359094d9d803af20fb4e46cb25d460d67fd2d7198d
Score

3^/10

execution
behavioral24
- Target
  
  SafeGuard/node_modules/uuid/dist/version.js
- Size
  
  494B
- MD5
  
  757ae226399db174032295d28cfe3456
- SHA1
  
  96117825e0ee9fd0fa6dc08467306d8dec033700
- SHA256
  
  dc18ff71360242be3695fde776c4a2ad494130c60f2a5bc45e34c3ed6aa5dfeb
- SHA512
  
  287e1a9b55592dfa7585b7e71968301f7183336b6a27c32d289f0c7dd964384c8d17485f6bf5fd638244150cf796a8c99ea9db0932107d3f47e3743037051b22
Score

3^/10

execution
behavioral25
- Target
  
  SafeGuard/node_modules/yallist/README.md
- Size
  
  4KB
- MD5
  
  b6f81a74cf6541b8b704f47915be24da
- SHA1
  
  eab7e2809a81e6b84ad47fb731f927b467d335c1
- SHA256
  
  2d1c0895ef3ac726f441ed26fac902f352f7de3ff4a98191687a45e5c22190c1
- SHA512
  
  9248b280f6ab3d885b70277e902a4bc1da66ea07f051a7c682e203074d6f12f6b96693ea41a5188f35f4fd7b50cc7438876bd5455da73149ceace108d6dc6287
- SSDEEP
  
  48:eW7ouxtvKvCX5RBF8mm8x0dmWctEFhtilI7HdsEPtZhgHpbMrSIRepCSk2JVurQ:nsuCvaRfEuAcy51Nt/34pCMVL
Score

3^/10

execution
behavioral26
- Target
  
  SafeGuard/node_modules/yallist/iterator.js
- Size
  
  215B
- MD5
  
  6b93d2839ba6ee80d663f650a6018a8a
- SHA1
  
  3bf0dc29528531bc0e7425536e734b38a1879b79
- SHA256
  
  b32509c2ffe5ce62270f2e8459a87c80214ce0ae3a7f333c58b43cba92e63ff7
- SHA512
  
  2de621359e3ed1d2f4ae7adbb22d6f78645072d1e33aeda7d22b930dc8ed52d76a5f071da0a1ff763f189d25929596e473f0c6286c26fc25416bb24ec0c870fd
Score

3^/10

execution
behavioral27
- Target
  
  SafeGuard/node_modules/yallist/yallist.js
- Size
  
  8KB
- MD5
  
  02a2f77e31521dca6ff19946c3c1c9e2
- SHA1
  
  69314e88ac1864a6a1f8c91bee5f7987d7d46a78
- SHA256
  
  f660c9e3d0def4c8156c4da5e4e2172d11dcffd97973283f36570fa9a3c31ae8
- SHA512
  
  bf0985d01cc8703fdb862a19d9738950f7351150d508bea43018b1affdd37f60f89000268a1c93bcfcc3bacca31647368ffea2ced0a7e0aef818832853391fa9
- SSDEEP
  
  192:C1vwDCNCubaCsA3zc6806gRRkuyhubrBP97:C6UAYtX
Score

3^/10

execution
behavioral28
- Target
  
  SafeGuard/nw.dll
- Size
  
  161.8MB
- MD5
  
  72c62be7d0998921a7ffdb2e7d5d0169
- SHA1
  
  cdb9dc55f2454ff8c12fcaa594f16af43637658c
- SHA256
  
  b03f2a09f2056d4c3ac58e4472dcc05884f8acd28c2a4e944e7c675640592490
- SHA512
  
  9e76d6ecbbb62fb94f66b49223845a0363ccf38cc22da1bca92ed5822c1cbe540a8fae6eb8f1fd9359b3abf938f81564c14ad04d3986ef2edbfbeeb5a4328144
- SSDEEP
  
  3145728:ewZ/uGGL7BeWRS3nBl4jDAjujnzNDAMlHn7VpQffe:ewZ0N7+nT4gaFDz76
Score

3^/10

discovery
behavioral29
- Target
  
  SafeGuard/nw_elf.dll
- Size
  
  926KB
- MD5
  
  c41046d1835ec3d1528ca00b5e7f3ef5
- SHA1
  
  724022623b53fdebee292f0162abca7669ad1afa
- SHA256
  
  dc36f6eadf8fe91702202f06b4b89f04f0affa5aa0d73b20d9a9a6e18fc32315
- SHA512
  
  083d52ee402c2cd76ed5d3a2e64d0560d1481f7b340789f03f8e3a898533e9e1ada281cdaae2fa2b7730a7d8a5169fb335d959cd750b426e0f0711f685d72fd7
- SSDEEP
  
  24576:nwpsqQ7ukXGFbb/c7R/ihFPKN2cfpvN0roN:nwS7ukXGtRhF+pvN0roN
Score

3^/10

discovery
behavioral30
- Target
  
  SafeGuard/vk_swiftshader.dll
- Size
  
  3.6MB
- MD5
  
  7d8ccc1c84d6de68a044d37ad331204f
- SHA1
  
  be9b821602e34adceb8dae25514d74f70fc3e7fc
- SHA256
  
  a2da843d8a9fd2383821d692866d199edf5239c9925c2de4f716c92b30b57ca5
- SHA512
  
  d23395ebe8b5a7a6d315c5c71edaaff5e96fc3facd49d63895f0032d45137cb21af5408b36a05833a0689cc61e950ced25bdb1c4a944a66ec2f1a3c54e31926d
- SSDEEP
  
  98304:ttFCYcLu5Diqo+YBgd9iNRNQmuWB31txnkDvKh4w/gMAzM:ttF9M+N9iNRNQmuWBXxnkDvKh4V
Score

3^/10

discovery
behavioral31
- Target
  
  SafeGuard/vulkan-1.dll
- Size
  
  752KB
- MD5
  
  15e5744888e6d77e3c1e06757d500672
- SHA1
  
  487dac5baf5c97cb79ab8a9e2d932056a433f564
- SHA256
  
  3342eb3b2d5fdd3d5f4d84aa5694a9555e24d2c9f383474d45463498f2a0a4f2
- SHA512
  
  a0141a157975961f875a9b93a75c8338397e82d00a49db7b597bc0a7dcb2de08aed48ce4afc32a6259f7e9fc661f33b4f0bcf8f9b82e1358717d25d2536d4b01
- SSDEEP
  
  12288:4lLcRO/oDivgBLlSGhUcvGWVMAw6mGicLclS6Z5WLDYsHW6g3P0zAk7ujJR6gz:4lLcRO/oDivWLlSHc+WBw6mgLeS6Z5W/
Score

3^/10

discovery
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32