a1542df0b61bc06f0bc1cc4580a49872c88a01dffd9609932d57daa8bd6986a6 | Triage

Sharing

General

Target

Asteroid+++Injector+24.7.3.zip
Size

8.1MB
Sample

240906-cl1ygszhjl
MD5

d876513086dfe90c2c79ecbaa03f0df1
SHA1

d229e3f8aa95fa0494f5ef8f92683aca9879cd1c
SHA256

a1542df0b61bc06f0bc1cc4580a49872c88a01dffd9609932d57daa8bd6986a6
SHA512

9fe4b95db64ce07350128443fa13c8e25c42e99a83c8cf0e70a201eab47b13afc0856b4c3bb49ebdceed31f9b805163d07b4cd13b952ee02930e8bbdfa227307
SSDEEP

196608:xlUa6dl4QSy34QCJsd+x/EaZuuxIE6LpQNjv/cd8etxYIWeTULYZM:PUhTSTQCJs3euDme88iIWeYky

Score

8^/10

discovery pyinstaller

Malware Config

Targets

- Target
  
  AsteroidPC.dll
- Size
  
  5.1MB
- MD5
  
  0586300ac1cad9158caff136d5cb614f
- SHA1
  
  0563b3f16160bdea082632456cc502394b32216f
- SHA256
  
  d6e8e726dfffc713a4b05b98a821f6b21bd99f0599e21bc8e49090ac6fac03ae
- SHA512
  
  057e759c970ec099cf0e1ccf1474fc7b5def4f44bb4d2fd6432c677ca6f400b3b44f0067e37d264db253cd81401d2fbf1b77c15646ceb1d88c6748d4c7721a33
- SSDEEP
  
  98304:kV+Y5dE9K45gYEGoLw3zuh0yTQzLVKxGbErmh2R:QR5WK45dEhM3zuh0yTQzLQxInI
Score

8^/10

discovery
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  Sources/injector.py
- Size
  
  2KB
- MD5
  
  f3e7accdb3678d84f86a96409a5805d9
- SHA1
  
  87dfe5d315efd0f5ccafcb30f0d5f0394474b01b
- SHA256
  
  29f6311497b52d16c43fdc95e2478ddc9e86d43775acff8dec1b95880efb0b16
- SHA512
  
  ef673070986cff8955ffe278ebf4ab0ae508c700dfa7088be53b53680670abf63cd66c32e8e3059ec583eca3922215d7f801d60be24bd09fad7aafcc1e95fdf5
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  injector.exe
- Size
  
  6.2MB
- MD5
  
  76655500ed9304376a111082a16cc5c5
- SHA1
  
  00e277382fd4c8e3959acd732c50256f0b283824
- SHA256
  
  4c917b9da7ccf4e67c0ca49a4cd6c4f97e67001ea4040fc58b93663f77faef2b
- SHA512
  
  eb4090708f04a2260db31093fd46f20223cf71178933b36c3bfae3544913f28a6ff7e9fa3e2ec631b2003d856a5c3383a89d3dfe8ea6bf9bb6cd1cba6f000fbb
- SSDEEP
  
  196608:rsbEbGX+h1ICteEroXIzlxZV3Gu5D4S26cSEqCS3qoKTk3Kt:0E/vInEroXA14S2IlKoKI6
Score

7^/10
- Loads dropped DLL
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6