2682455b3e3ec0906091f044c3d39db809b2f7ccda4c47943411bc7cea356cf2 | Triage

Sharing

General

Target

PySpy-2.1.1.zip
Size

32KB
Sample

240905-22z4katbkr
MD5

88db88f6b7278716c9882096fd1d0c51
SHA1

bdca41d7100e6ff9d28fb4628decf7a6e48f63e7
SHA256

2682455b3e3ec0906091f044c3d39db809b2f7ccda4c47943411bc7cea356cf2
SHA512

b751b779f404b7e66c3ac2003544d755539034804830b5a6105dc66d2b598f82d4ec9c82ff4eacda3db62eb5ad7e61fb9f2518c053e091025cf5ad2d5b5fa3b9
SSDEEP

768:DL0fnR2F5aiC6tyh0a76AI2How62SQoiG6+MPXu/Zx535AhYTb:X0fn0F5aHR22Iwrqd8uUhU

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  PySpy-2.1.1.zip
- Size
  
  32KB
- MD5
  
  88db88f6b7278716c9882096fd1d0c51
- SHA1
  
  bdca41d7100e6ff9d28fb4628decf7a6e48f63e7
- SHA256
  
  2682455b3e3ec0906091f044c3d39db809b2f7ccda4c47943411bc7cea356cf2
- SHA512
  
  b751b779f404b7e66c3ac2003544d755539034804830b5a6105dc66d2b598f82d4ec9c82ff4eacda3db62eb5ad7e61fb9f2518c053e091025cf5ad2d5b5fa3b9
- SSDEEP
  
  768:DL0fnR2F5aiC6tyh0a76AI2How62SQoiG6+MPXu/Zx535AhYTb:X0fn0F5aHR22Iwrqd8uUhU
Score

1^/10
behavioral1 behavioral2
- Target
  
  PySpy-2.1.1/LICENSE
- Size
  
  1KB
- MD5
  
  ba4daced0a3015c2bddd9a3865dd6611
- SHA1
  
  8b2cc0b9cf6737a86d3d7e1bfa7a167757ca258a
- SHA256
  
  4330ee8395c41ba11ef2154528dbf8a1de14eb28215f7cbe97126ab4d60330de
- SHA512
  
  aeab9b44655716fe6f2932df41924c461eadfc846d8af42b373996b4d4cc26e5eb7affdd68e8fc8f88a3e7567b289a6e186dfa0fac5a4cfc1334d1e4baa802a7
Score

1^/10
behavioral3 behavioral4
- Target
  
  PySpy-2.1.1/README.md
- Size
  
  2KB
- MD5
  
  62641b213d527520c1bb58c16f1277f2
- SHA1
  
  36e87fcbe8fe52a94a75ea265cea55a4b59ea745
- SHA256
  
  3f2667596e59125cd354cdac6c1c1846103c9b77c7edcb3f45984035afbfc705
- SHA512
  
  d04618ee384b8ad3bf5d37d80f047a6a0aa24b1141249654f4f91088b9a22eea6b26a14b75cc23f6c6fcf08f75656a48acd6ac75f5d6dcb316ca05f8084aae79
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  PySpy-2.1.1/build.bat
- Size
  
  685B
- MD5
  
  624a936f900dd74227aeeb7be820bff5
- SHA1
  
  7c8a49514106c48788af2f063cf6452b77fd129f
- SHA256
  
  5bd7570dbbf82ed3c40c815e982e440d04f716d7f3d8bf3f6cacbe77fa226e7f
- SHA512
  
  17fe7c8dad76162a2439fbdc9b3f7734dfee95f8c4d64cdba5046f517f05d58beba1c241b8136696732a83183d365018c283d07591e77b67a1eb590dacf2f457
Score

1^/10
behavioral7 behavioral8
- Target
  
  PySpy-2.1.1/build.py
- Size
  
  1KB
- MD5
  
  bd07af85a11d9839fa047721e3e237b9
- SHA1
  
  81f04d43161f439ef5cebc249e13ffc6ea2cf6ef
- SHA256
  
  5a6e07cfa0545055fd5a3d9c4187186efa7d120c8ac1848f2233b4069e31bc3d
- SHA512
  
  21c5ed00e4da2c1e1641246cf06e6a97aaab26ced3db05bdaa1cc1d8982c82907bff9cb1054996d01ff947604115c630c9e12e72ab4d56d733a7779f0edb38e1
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  PySpy-2.1.1/config.json
- Size
  
  162B
- MD5
  
  6decb7a1df8b56d66934e4562d5f0045
- SHA1
  
  a81bc2d9c4d40eb4cf80dcd68dfafb7e79c7455d
- SHA256
  
  c9bea6b34bd3b2c80e60b68230806017734f81dd221533d35281660b5832913e
- SHA512
  
  3c05abcce708fccf85de1bf2049671c4e82a797dc0d746c28150f5a77d1b3a759d09f781ccffa0704a75c315b3ec25f07aba3249e926efa897d5eaa6c91e61c1
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  PySpy-2.1.1/main.py
- Size
  
  48KB
- MD5
  
  0ae239d8f1f45aa2ef410fa18c540a8d
- SHA1
  
  657bc7aa475d93973ad273f411e5b93125d76e44
- SHA256
  
  4b39812ec510b885042d5b1416f9cf4a41ecb1cf167261d52665eed14e7441cb
- SHA512
  
  f88100022dd23a56c7ccb121225a86a82ccbf147fe8f7561ad1cfc0779e1ff111748487378aacbcef5e3cd07dfb9c93e50866afd008a9fb8e81ec0d52d2e4846
- SSDEEP
  
  768:5MdwAV7JyjmlIz2P4RFii3iCNya47X4Y7Xjq+uuHWQP5D4hf:5M1hJyjYPWya4z4YzjxP14J
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  PySpy-2.1.1/rebuild.bat
- Size
  
  303B
- MD5
  
  6a8285687b726a45af63c24a08837d5f
- SHA1
  
  500b6dbfeae86ea49b5c6912af9d4ad709eb7a9f
- SHA256
  
  2b10493f4d850ed99e235d8da2926945946d67a55337aeb5e5d18da9825cde1e
- SHA512
  
  cf35fcd6aa00a7e6dbdb68d5e9663609554120053db21bd9a720ff9f80f3f4000371a112d68d76486b211a75cc549d82a7c23c2d068d0cb519db50f1f2b1c369
Score

1^/10
behavioral15 behavioral16
- Target
  
  PySpy-2.1.1/window.ico
- Size
  
  16KB
- MD5
  
  b6e5150df552488d0adee83ee05685ac
- SHA1
  
  5798c533d951ad8730cb3d89acce255cf237931b
- SHA256
  
  a892c47d4c03b1bc03dd9fd953e000461dcb4b8d4dca149a95ed2748053f52cf
- SHA512
  
  3a0a553d9e2d6f1f3a05b04ebfdb65b3c91ea2cbc6f68c09ce55837588950928d9873b55ff52d81e3f3c8bcc0af40ac575b7a1651d5e20e83e6d1aa17ef4053a
- SSDEEP
  
  384:iErM2ys+gVZIyOvUa8aiLZTTdgTmE6oIroNDvqF0TQJBvtg0U07LG+:LHwgnOvzMt3eTioMoNOFjJ0uLx
Score

3^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18