c10b90ed593938a4766631fafd9d43bec407bc9e25acb6cb35f93d48fbadd087

Sharing

Copy URL Twitter E-mail

General

Target

MultiOS-USB_windows_image_v0.9.3.zip
Size

5.1MB
Sample

240907-nyhs8asfrn
MD5

d977192cd9a602f39cdeac2370d36c81
SHA1

f8ca38f39524799527cfb49a75df344666b94792
SHA256

c10b90ed593938a4766631fafd9d43bec407bc9e25acb6cb35f93d48fbadd087
SHA512

150b5ddeee9482f52ed55ff43b45b80e03f79fa25cd512a1fdac0ab58314b0ce4b0d2d10770e2cc484f346e5e6cb72b74f5fc22233bcc9791fba622870e41f22
SSDEEP

98304:/ezcXZqfHl5cbqwOxRb56lTSD2YpgWGFtzVXj1d99UW1R:/ezcinxRgTShpgZFtzVnZR

Score

3^/10

Malware Config

Targets

- Target
  
  MultiOS-USB/config/grub.config
- Size
  
  5KB
- MD5
  
  5017f581b8b8de2c8ba4572e38e305b8
- SHA1
  
  7856c7d7800acc045303553188e839325e03b742
- SHA256
  
  23413fe3830fa17bd971a0ced6b4c682ee75e18ea3befd3d552185f4ad26671f
- SHA512
  
  4a25390cebcf8716d62982bcabec0ccd0419fea49ba8b53b33f9422c63241ff2d096b77708673891c160950f3b2c37bb61e8ea0e62e318fafd61298f5a718af7
- SSDEEP
  
  96:0Ld4ams3gnxxEMtEg+am6Y9n0FNK/ZKw6bV1XE2yausus2aEqWCri1SdHfQ:SPD6YSEP//rCGSxQ
Score

1^/10
behavioral1 behavioral2
- Target
  
  MultiOS-USB/config/grub_netboot/debian.cfgnet
- Size
  
  2KB
- MD5
  
  f36d9b8fb3679a60ba6c53a13bdd1cb2
- SHA1
  
  b4a93e9e9da3c37df85782cf787d812af046a2ac
- SHA256
  
  25616d9fcd827329dbed2d83b59eeb8f92ea1cb5d86b78e4641316a9349a0e44
- SHA512
  
  57a70b9470ab851d79d1ec774822796426771889091a15a317fa46a08998f2f7fb1b0ec0efe9b2368ecc8465aa43575c36b30e239976b95daa4185b6ad7df4bf
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  MultiOS-USB/tools/efitools-1.9.2-2/KeyTool.efi
- Size
  
  135KB
- MD5
  
  6b374166ded5983e193a46bfde9e6f95
- SHA1
  
  150cb6b0ff90aa8e98d55046ed973f5d007acff3
- SHA256
  
  8c04a61980cd6d6eaa056489ab4c63a382a7243d79c56754ddde042511a219f8
- SHA512
  
  3f2f2cd00f0faff41a53986afb8aebd4cc5cc7689dc108e1934dcecccee350d804e4c90b09b2fa0dfceed2afb574da3766cfcdaf1da1fac7f34dbcbb44a7ff2a
- SSDEEP
  
  1536:sWArkxNrtqWMo3OX1sahAu2CM/DZ5Zt99sBvXEX+fALirygH:CrMqWv3OX1sahF2bbptuXE1Lkyg
Score

1^/10
behavioral5 behavioral6
- Target
  
  MultiOS-USB/tools/mountiso/mountiso32.exe
- Size
  
  170KB
- MD5
  
  a4cf1668e0fed25fdebc438dd61b1859
- SHA1
  
  dd02182fb69d1c876baa09342cd9ec8086c7eff7
- SHA256
  
  7e70b4997ef60cb0fac09464eafd58a5abc18d060866e25a867210a8b28c2ec3
- SHA512
  
  6d29fcb5925d99ae2694e1dadbc321d273758b83e6018733db0c61a42c32ecf2daae77129e5638a39a919a372de0e69b80e54d48c5eefa23fb39f1284b55ea55
- SSDEEP
  
  3072:F6PYPN9IMl3MGcgrCFtOy54Jw9aUnKAWbvJ347Dq+jZKg7Oa34tkH:YgVuCYgrGOy6KZDO7t4
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  MultiOS-USB/tools/mountiso/mountiso64.exe
- Size
  
  216KB
- MD5
  
  a33cc29d0ccf143c8a91fbe799a2e93d
- SHA1
  
  8ef611ad009a35e5b1d1d51825f50619ec88bc96
- SHA256
  
  72b0b68443bee9e92c9005227c56c75b3d5b7cbc0308e1a98391f5ed4f19c885
- SHA512
  
  b68a1050eba71c96973e3dbc9e24578dc3dd63f04ab9ff4dd15531e5d9b7d8b62c8504bbc469f474fc66135452f4cbc6937833aea02e7199be48f2aaf9f39968
- SSDEEP
  
  6144:SI7cqqt6pGcTcK8wVfL+C7BrLiE4/2K1R:SCqt6pGcoK8SKC7Br+EE
Score

1^/10
behavioral10 behavioral9
- Target
  
  MultiOS-USB/tools/mt86plus_7.00/memtest32.efi
- Size
  
  140KB
- MD5
  
  8a478fc7633c262092969156403dd147
- SHA1
  
  36cdc91c59df3cea713559605116011c2a816061
- SHA256
  
  2fea64b7ca36964134a8464aafbb206d71792c8628b225bb5bf6b0b714859060
- SHA512
  
  205870848db39b0c944e2e4f789924a4f3dbaa02421ba0005bd3e23b4e766db8f50afe285a2c473ed36275cb773a981d6528fd5a2e9f5e8aeb11e84a9a917ea9
- SSDEEP
  
  3072:HAZgOFeA6qA08AT6FwmQ/i5/8R/TGwnF+Gnct3X3X3X3KH9RHFx:HROFeW8FTJ8aY9ncwn
Score

1^/10
behavioral11 behavioral12
- Target
  
  MultiOS-USB/tools/mt86plus_7.00/memtest64.efi
- Size
  
  147KB
- MD5
  
  9cf75462cc87fee8ee129c10df05be44
- SHA1
  
  9c2fb211305cfd1a06ae3a9ec8a0e27e35f7e659
- SHA256
  
  9cbb8e9bf605fc24de8aae283b3d00aab80132fb65ec65a7f28d89d3a3eac183
- SHA512
  
  72969b02c30ff7b34898188aa7b539965e8e126bfda2c431676163353f3093b6a103675d2fe999020bdef2d71f8755a342a2487127ad77953b9d300a53f42471
- SSDEEP
  
  3072:UUHEMO5dPAtIHKQRQhc2GBGu23X3X3X3KH9RHFx:NkH3dchuzn
Score

1^/10
behavioral13 behavioral14
- Target
  
  MultiOS-USB/tools/wimboot-v2.7.6-1/wimboot.i386
- Size
  
  41KB
- MD5
  
  636942d40704f974d8f4825fa905b14c
- SHA1
  
  1fc44cd541b96ed691c6d390f7ff9fc88f69afd9
- SHA256
  
  cb3660508aa57fe01d2a3ebbbcd22e18ee9a8cdce111d43f42fcfbdc8f2c67e2
- SHA512
  
  f04fd1c4a7f5a4bb6e27d4c4f285f5c79f5b0ade6cceec5250c5f35831a30153a7aa5c2d084659880b02d985da7cff21ebd18241528def963b1f137e5933c8be
- SSDEEP
  
  768:C9ncTNH+aOL3NBQXGuOI4KWCPMElcjpOw/3BzeJOO9oMVFG:QcT0aENK5f9BlQvBzBVZ
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  MultiOS-USB/tools/wimboot-v2.7.6-1/wimboot.x86_64
- Size
  
  56KB
- MD5
  
  fd7e2a5b3b72339c77c2f2846393b9a0
- SHA1
  
  241203b08b5329dd677a8befbc31ac69a7dd364d
- SHA256
  
  f06653d828f7bdd5c61100a38d85c34f6e3e70aa2a4554b0882257ed4542272b
- SHA512
  
  0263ec575b3cf5f33f9b8015365bd0d3bcee4ffcf07acc7b3b24389062141f78bed0c911ad323ecef0660750421f0c126f59ed90c3d6ad5dc6556cb3d157c1a3
- SSDEEP
  
  768:ynxTNvtLBN/Xt+imWRxOpLMYF7CxejbNRzK92/j66/CmQemATRy/C15LOqiMg:qT5N/UizxOO67CxSWMHdQerLOdMg
Score

1^/10
behavioral17 behavioral18
- Target
  
  image.img
- Size
  
  27.0MB
- MD5
  
  c3df1ad30fd58957f36379748c63f3cf
- SHA1
  
  bad8a88eb4540d43efd448d8a5304b51f1cfd55a
- SHA256
  
  517715df3ec27aa0a1358b71a57d24b4491cf2fba7f9d430cf5f36591d9954b8
- SHA512
  
  4ef1e63836aaa539b945c30271dad6c5402f3b2f0ae256494996fa85b4e65aeb001f9d8f6f5724c70cedd5b678cf240fce258d16d73bd541e27f26d91300c235
- SSDEEP
  
  98304:S62W0jl/rBFmSmWxmPWCFjxEmJzDSdQOlWOASeMkWqNxUj5iXHMh2d02m3VxjL9n:yDJPman4jlbOAKkro1Fx3VTiS
Score

1^/10
behavioral19

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19