9e9c304a4da7328fee6971f829d0c8a3031afae74427e55d679437f80cb1e6e8

Sharing

Copy URL

Twitter E-mail

General

Target

UpdatedIncognito-main (2).zip
Size

1.0MB
Sample

240912-xb1j7aycma
MD5

0498eadfbfd89e09403458b8603f2fc9
SHA1

7ce3a4b09241dbd142389996b343882142639f8a
SHA256

9e9c304a4da7328fee6971f829d0c8a3031afae74427e55d679437f80cb1e6e8
SHA512

d6d4cf95b4fc61f9e44cafeadf371115e847fb37907839a9cb89489ab787aa24713e1b971535e112d896ad73e6d1316a9ce2db82b16c3fa8bcc9472b2975ff5b
SSDEEP

24576:CyweNvZLkarcb63X0coffqkgsDF9g60Gxi9Vu8yxdbBiMrj:LPjrce3X01RrENGxi9Vu8aj

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/BUILD.bat
- Size
  
  69B
- MD5
  
  6b343ab92ad034d3264abccf0a5de3f7
- SHA1
  
  456fb45b1e7bb86f62121c1f7556bd7eb1cf16b2
- SHA256
  
  87062464ccae23e9f1db4a445c2d9d9a6498914732da4224c837f8f4191842ec
- SHA512
  
  fe13d0286e3217864ba3f46e134296322e9a69b7fc7b138fde661ebee0bf7b0b56434ab028bfc4cf2f4631d2e4c8bf391820e765c0eb115aab91daa7dff5eeb5
Score

1^/10
behavioral1 behavioral2
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/COMPILE.bat
- Size
  
  20B
- MD5
  
  05a53d67cb74dfd831427101872201b2
- SHA1
  
  5857d985b5e6950b3e831f249d3f8d2a1d674e2e
- SHA256
  
  fd9b86b17ddfcbfc352a905d468aec17b170207e34cac0af0ab8923f1e295914
- SHA512
  
  f7700d0b8d85d7277a1681f672a2869317ce3c604fc8cbf4a638c9a5de14cd2809536a526e75b9a7af018eb1e2d1229b58d8a0d06f1af08ada7ef7f5f0539fad
Score

1^/10
behavioral3 behavioral4
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/RUN.bat
- Size
  
  20B
- MD5
  
  bde758ab26c86e7a9f657445c9350b20
- SHA1
  
  f6c65964524a9eaeb9c75e9bfeb2d446da3ecaf2
- SHA256
  
  c6ca3eb70563dbdb14ae6bf08b77b2cf0b40d594a55823ab1cb691e0b22b0c4d
- SHA512
  
  8e320b7b6b42e35245ff9f9ff219db63c3df2e329ad9117f113e8c5be122cd41ab65be2452d303021c378c83cf65d8bbb5dbef430277f1715ca504c81f6f51a8
Score

1^/10
behavioral5 behavioral6
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/bin/API.dll
- Size
  
  1.3MB
- MD5
  
  157fd035b2a344a94166d7db3756df0e
- SHA1
  
  f221d28c1deb80b4e8d9201226435aefce6b0f75
- SHA256
  
  8716c75aff75941711aff8770836f47eb9a254416089ef3571c6fc9a338b3009
- SHA512
  
  fad0174fbd22f58dd4fcdaad8378c214270b4faeaca64d9cb306f50e9316072a4c417c5723c4123b8bf94a3dba6ef4e3303ec60f4a2cf0c3a54d8ab375ea717d
- SSDEEP
  
  24576:ZqBSLRktEBl6blwTUMD4zB1VU2bFjYWR0pMQUAqLRAovh4bSAXVVRNRfMXZO:ZqBSLRkt8l6blSU//+2bFfvA1SQVVRNk
Score

1^/10
behavioral7 behavioral8
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/__pycache__/certgg.cpython-311.pyc
- Size
  
  10KB
- MD5
  
  564a2a45d8701c74b97fae09f3c78dc9
- SHA1
  
  6099403bd30f25e535ece5dd24fa1842683d072f
- SHA256
  
  ccf78ae67223c18c99a8a7086e7b2947a2021bfa4460796b813c70b79ad4de5a
- SHA512
  
  0c640feef49139a558c5dbab8ae18d1bdcd25cfc5c96dad1ef45328bfb93e967ac4080f9c4359550cd46ebfda65f123b026ccf77c4dfb609a992c5e6df5f02f1
- SSDEEP
  
  192:DqDFH01uiP/FkQK45kU8lrUy7RxlTkvoFEqKwjYWnJgRK86:O9gnQlrv7R3e9qKuYWnJgRK86
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/__pycache__/certgg.cpython-312.pyc
- Size
  
  9KB
- MD5
  
  272ab8d6aec21d476ed8db995c7c8dab
- SHA1
  
  f8a043f7586ce1b58d398355c9171d76409f4ce2
- SHA256
  
  a45b04e8fc1fa82959c63090b5b09ab55331fb99ddafc8dd73bf4439c862422a
- SHA512
  
  6c4b43f32ea0ad99bc969714537bcf166f7d3b0f56dfcc589cf6492eb4df90a7f54a78ee9056f0407e20b36487f72e41f2c6e60b40179aaf58e5d995de6c5bae
- SSDEEP
  
  192:jbDFHpMtP5o/+poEePxfhvUy7RxIYemXvtUn4dQijqPHWnJgR+pk:P9pM0xfhvv7RyNmXvtcEQKqPHWnJgRP
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/__pycache__/init_script.cpython-311.pyc
- Size
  
  69KB
- MD5
  
  dc9c599570c9d2460226a6838b3197c8
- SHA1
  
  57a5131117cd20733530011cf9bf506b3368415d
- SHA256
  
  0636318bac49e6fca5f1be4f1a3de0552b8039d31fb2790789518fc64012e09b
- SHA512
  
  a460b3c2e9197fed35a4d146e3107d921705076fa3025caf2769c83bd4d38e8a8c52b275653aed9558714848baebed16610f95c68e21579a7b08d6f307356863
- SSDEEP
  
  1536:0OOcF5UHElUQGls28ai0WXYGQgQWDrr5K1DjDk+AWm4rMWgo:0QFKetMjBi0WXHtQW6nI+tmPWgo
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/__pycache__/init_script.cpython-312.pyc
- Size
  
  69KB
- MD5
  
  f216cec89ad21cd53c09dc5663f9a64f
- SHA1
  
  654f529c2f0b415bb1f4e6ee1ede8397c46e29fa
- SHA256
  
  7ade39dfc30683ef76046fb23fb9503eaeebcae243bc2c0c4e61733a45c44d13
- SHA512
  
  21916778ae222113601c5f0cc9c13cd01e852cd2372f4a9b038cb8c91e5b290e4a44379a83256093fcd5b821ebd4fbf8f0014ececba5f93756522995772c8637
- SSDEEP
  
  1536:PRNU3OTmaFQEnRvkiwHKKC/aNLyqgWg1Pl1nwKEbV5eG:PMWmaF3RvkiwqKeKuqgWo/wN5r
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/__pycache__/bridge.cpython-311.pyc
- Size
  
  15KB
- MD5
  
  d3de3193ea4d4cd813dcfad5c50d52eb
- SHA1
  
  0a7600cddcea174e97da695b3b0a6d7172c27cbd
- SHA256
  
  e627d9d83ffacff6b9932f8b6daf08661081342374867445db493de297e8bb83
- SHA512
  
  63efe8ec240d436d3400fa6d933b2612d037c7f1aa7bc369e92f24d0f7b1caac15d133c00129a155ee764ae2785ed5eb49138c6205926c969f5b5061467419c6
- SSDEEP
  
  384:5/a3umxUMeLaiumE2apBo7YiOxWL2pkVjnl5h:5/qxOMeLahQapBo7YiOx22p8nl5h
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/__pycache__/bridge.cpython-312.pyc
- Size
  
  13KB
- MD5
  
  afb1f91e9ff17a69ece03c9380456358
- SHA1
  
  c1344657a35d9971005b4f5c39c24a29a03d40a4
- SHA256
  
  cdfc4529ae6c1a6f93d006a08793ac8acc578ea5fbdc8515821a0c50f23c77d1
- SHA512
  
  bdf1cae573bea990b702d1cabf5789f39b787e17a2061534ae0ee54f8d26c72acf222d385973a94b4c7af6450715b20d36c134346b355ce09726f507cf9b014d
- SSDEEP
  
  384:yT27w0u8RKEriJoBLEvmrApUgvYKFDY1WLcnpVjOG:yTMXxRKEreCEvgAp7vYkDY12cn7h
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/__pycache__/bridge_callbacks.cpython-311.pyc
- Size
  
  29KB
- MD5
  
  93e8937ff40442561017968876dbefdf
- SHA1
  
  1f10a6ac18b2da2a5da6c3e81de48bd0e9e3eea4
- SHA256
  
  2cf33bb5d8cbc838514a7b686949362e91013300675b0a54ab275d26559ac09a
- SHA512
  
  f3ba9bd3b73ddf77a25f24eaf9c07b4e8a2194139e4792218f64c60222afb5be623649f860016bbf0f1db2edaaa56116dba26104f96bf721566ccf99dc47c33d
- SSDEEP
  
  384:RGR/HIYla7oOECr9b6U90sP7fcE7RQewzM79pr9aSwtuBVV7Ujq:cFHIIad99bRxQWv3wtNq
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/__pycache__/bridge_callbacks.cpython-312.pyc
- Size
  
  26KB
- MD5
  
  8640faa14a6f1dfe9c1a4b18f4001c7a
- SHA1
  
  914e110b786268275e9b32c02ceb183268f03935
- SHA256
  
  9d047c5709dfd1dba22239f305ce34441ad353d23b67e1b8c5570b2baa7b381b
- SHA512
  
  61f087969ffede60b6f38a22dcb8e5e953394e8d41529f0287c7f7807670067548c32d92ed456c7479eaff379acc7f15c1ace87d381eda01536e78f9db324639
- SSDEEP
  
  384:2MCHHSbDnNSUbd7C+EN5QX6UjLdtYP7rE7HD6Kaw8wKm94XktxhVV7Uj+:LSHSbcUbdG+OwB9jd864XktU+
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/bridge.py
- Size
  
  10KB
- MD5
  
  19dc0d370292feabc9fe8336d7ba1305
- SHA1
  
  ba389f767f18cb29d532bdd14f5670200bcf8ca7
- SHA256
  
  18f3a17fe214f96ff65338b9471d725ac151c494b457b9714127dc922ee5aaa1
- SHA512
  
  d663acdbb785c9dc2e735d9d6285a117a0745e112d86bf6c87a1958c3afc3d5ab600ce641153b97c3cc165d168ee35f39f8f15e66aa7e9342020cdf138c48ae5
- SSDEEP
  
  192:eSMnGDGBcWNOahThpkr5yE1gMXJnRejy1HiSk7RE+3irKAIMqwr/oKa:eS05Bn/hThqYpmRejwCRfgKAIeoKa
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/bridge/bridge_callbacks.py
- Size
  
  17KB
- MD5
  
  c09ba9d46c95f4fa389c6cbb96a4537c
- SHA1
  
  edd14aba4f0ce8789d824550b268f07248f9fe90
- SHA256
  
  ef49bc7d5de8c244066c91933fc5a4ccb1b1f151f00744aad96cca2008660118
- SHA512
  
  8bd092424491492547b04127085b9fd6af13218e58a951ebc5c653f747d45ac8c5b8a92e5bcbbce7d274bcad5cadf5edd943e0c5bc1cbf465bc970214600cb85
- SSDEEP
  
  384:egwYwwmPF3NyIDNTGuLeMc9Xyqu1w8pjdrhe:8RRNyIDNTUP8p5rM
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/certgg.py
- Size
  
  8KB
- MD5
  
  e5e73b81930090cf0094966d56e821e9
- SHA1
  
  18fecfa12acd6817395c8cd6f1a37ed26f52ae5d
- SHA256
  
  f5d1ae15267f387204a8ac42b7aee2cc23dcc039877d91ce44076a24effc6dac
- SHA512
  
  64ccb2c561e62f7de3ca590c8aa5a7b28bab5eb9903c0dd7bcf05006a82126018e40d322eabebfda870fa51f8d8bffc039bea1852b77985835014bff21313f8e
- SSDEEP
  
  192:eyJKw4cYhHKxfbdiwn68X+eLC27bTuHhAbdZYk7:e8Kw41HKxfbdi6+eLDTuH6dZX
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  UpdatedIncognito-main/UpdatedIncognito-main/cert/init_script.py
- Size
  
  69KB
- MD5
  
  cd94d3b1fbb9f73c6a77dbea5dc8e9ff
- SHA1
  
  9e7c3b43d911687a88bcd1aec6095605a4b7db8c
- SHA256
  
  3c90ea713fcb49c36c18fa5700fd81ba32a8c7af232a0ceb4131964780c15401
- SHA512
  
  b5dced2591185c7f2767ad093d29e94000c299f5edb895dbf698c15d67ffe39b6bfdb98f38ed4cc4f16617d32a24ce35ce5563655106dd4632524c0c16a8ca65
- SSDEEP
  
  1536:VRNU3OTmaFQEnRvkiwHKKC/aNLyqgWg1Pl1nwKEbV5ed:VMWmaF3RvkiwqKeKuqgWo/wN5c
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32