2b0f8f354fca4d967aaef9e1b68cfbf858cd3f299fd2f3cb3b7ae882436cd9dd | Triage

Sharing

General

Target

GLtoG
Size

110KB
Sample

240915-vd9jrstbpg
MD5

33b81461298d8ab26fc5fb856e4f04ea
SHA1

c8c84e7724b184aaf8730f549237218295f3d083
SHA256

2b0f8f354fca4d967aaef9e1b68cfbf858cd3f299fd2f3cb3b7ae882436cd9dd
SHA512

0ed1ffdc6e42ecd9b12b6844e420c5ffd9c822e089e934a392918c4c1d34d670e0becf8a2cae483d6401e9bc4bcb1fe58a1653e55c00de3270a4015732f7f515
SSDEEP

3072:GXvr1StFE8szxgqVlLH3OsBL138Ji+uvIIjJHLNs:G/QtFE5WAlLXOs8+v5jJRs

Score

3^/10

discovery execution linux

Malware Config

Targets

- Target
  
  epigrass-2.0b1/Epigrass/Ui_about4.py
- Size
  
  27KB
- MD5
  
  c923ac966eb2d2f107e80539b956c8b6
- SHA1
  
  e9eb4e0035eddf4bb8f523c7e3378a7e78f0969a
- SHA256
  
  4b7852f26c1bd6564dc16fe9172fcc160a4b674d78d7e67622be0df0128826d0
- SHA512
  
  404adab2476c876521bfa6cdd85e071935f8b257894484bb9477c7db44278cf4c73ff390ccbb90718ae054cbb9ae8597b87cd8574e06a88bde1fd1d33d23cd85
- SSDEEP
  
  768:6aVR20Rgw1vxJqZ/FO4KIjzsVvFEHG7YrUWptYqd:DrQ9vd
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  epigrass-2.0b1/Epigrass/Ui_cpanel4new.py
- Size
  
  32KB
- MD5
  
  12ef474eb0db6712fa3ab10cdcc00090
- SHA1
  
  9d915c493a88b226615c664ac32bef7703f71671
- SHA256
  
  d468c0b5775b208ede82da5eb98ffac6b8d096fe6c9af0de3b1351597444aa60
- SHA512
  
  c4edf837dff7aec8b580e60e880fe5741d4c177537fc8a31d2751ee9f6df84c7b3270d9b46ea2e280bbf4eb7ac0bb2492f768c65b1cf2c19623a3e129ca9e17c
- SSDEEP
  
  384:q8+UGR6SU/242CT79Prs39vMG3PqRrf3QHrgRpfQqJfQvbLIhVD3Cex3Zgk:q16RQqxDKk
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  epigrass-2.0b1/Epigrass/Ui_display.py
- Size
  
  5KB
- MD5
  
  4934f6bfc1f5fef100352c3b5c05d471
- SHA1
  
  b646d146eebe78341a777935d13c0c4c1f4e96ad
- SHA256
  
  cd08ed78ca81f8555959f84d1c3e40d3df72dc203ba7a463e98d9416f5081de5
- SHA512
  
  a46279997365b58eec1fffbb40951cf08a1b75f7e2a150ed7a1d83700f67d1d28439220125718040598e9a112e041bba2c2fce775701fa8b9852b771e096e61f
- SSDEEP
  
  96:JmA3Qn4PWB2KkVy8IKSr3ALLurTfRYyJm6zGzVoQrnbuoRarMwh:cJ5Kw/zAHuxXFzgus6oRarJh
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  epigrass-2.0b1/Epigrass/Ui_epgeditor.py
- Size
  
  10KB
- MD5
  
  c4197e11a3b0a2f40380be55ce1a8459
- SHA1
  
  46dfbc6efce93e2d7d92e0863a45088062d0577f
- SHA256
  
  23bc55d3063aa685d8cb18c836f2fe31a9cb74cbeeb9be552598520e7b8f8823
- SHA512
  
  f35bf47b64f8af0610765f2d88a8ab9c612f4854a584c734a54f73833bb2b5c39d2a15cf527de548cfa38e2f162d8f94baf82716e6dff88b71d401193373710f
- SSDEEP
  
  192:07c+3GR6/vANj4zLi+qgZfgWouDxktDFkWSFkijhuoPhTQJPgp4rk:ic+3GR63G+qgZfgWouDyZkWakijhTQJs
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  epigrass-2.0b1/Epigrass/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  epigrass-2.0b1/Epigrass/__version__.py
- Size
  
  18B
- MD5
  
  0127eedf06af365b03d618960b9e516c
- SHA1
  
  247add0d66ceef9e2573ccf545ccd303ef559560
- SHA256
  
  a6cc52c7fec0ad3abb6110235cf50e92b3d5c0bd4cb1abf18eac6e9868402877
- SHA512
  
  8044cf0b41c58d37c14155cec3933d6947a5817c7d143beffddbb9ba257e6ba43442c7cead5b133ff67cb531415c63527b1cafd99b4cca36e3263698950e272b
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  epigrass-2.0b1/Epigrass/about.py
- Size
  
  24KB
- MD5
  
  7e82b8ecc0f079f2cad0a44c06657044
- SHA1
  
  fee7c469c370aa8ad7a3f0f53a1fcab29c654e20
- SHA256
  
  49c1f054b40bc64c882e2ff856d8606202cfdc967ce27f174340ff4753797784
- SHA512
  
  870aac38ba8b1ee8f1c82edc4bcb9dcace329db71fe4cf95521f5fdb92f1a2b2939b1ab6a29a6c6cc6bd7726e8715bee84263f63eb3f0083db1f7d0e3e7d17a9
- SSDEEP
  
  384:ancpRD8jRL4lvYAeWjhNb6pMK5UDzRpaRw4Mq3GH5Yrrfoo7:a34tTP0sxAh0HKrfZ
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  epigrass-2.0b1/Epigrass/cpanel.py
- Size
  
  20KB
- MD5
  
  e5e54ce8fe3a728a6e6be0434b17b2ce
- SHA1
  
  09db6829570e8769696328986965eaaa9898efad
- SHA256
  
  86155455b6f5118941bd7c855a1802ed40a883ee0ece3794f8d66c6f0923888d
- SHA512
  
  50ea28ee4ebc7eddb647d2987e056a167f2292eaf6749c72479dfd248389476f070a0eeabeb5c08e0ac001394d3a098b2367a5ba50ec3b6a08890e173444347d
- SSDEEP
  
  384:/nanHx0XMGrJ0p9c+yQ9tEPVwZrv/yaJ/:/1keaB
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  epigrass-2.0b1/Epigrass/dataObject.py
- Size
  
  1KB
- MD5
  
  482a52d7ce3b11ed52f5e46a36c4abae
- SHA1
  
  76030d0fe65a7122be135935aaac0504bd1563d7
- SHA256
  
  1c8f328596277fcd97c4bdef63679465411ffaa47d29a132987d935fb42a174e
- SHA512
  
  16374fec2890e38b8ed52d413d8cb34bc8f82e695eb618c6d6d9fd99b447cdde3de8b6a7f916144b95a92e02a104b6bba8a03df6c2fca1da582d8de9a224d059
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  epigrass-2.0b1/Epigrass/data_io.py
- Size
  
  6KB
- MD5
  
  a7181a86ec984c808c1bda9c9ad3a365
- SHA1
  
  27537598f96d1563451389f36d5e574d8a5c16b2
- SHA256
  
  f9788549647b1d169bd78848ffae0b1c83fdc7b7f30a10015b86580d89c054b3
- SHA512
  
  bdca099daae8e60bbb3aa66222af290d86de26a8711257fcb5bc9a68feed1174f12986a71f85929bcb8404956f14f5cbb98ecb4308bc89037706931c41425e1f
- SSDEEP
  
  192:kqY1+GF48uQ87stAgHHgIgzaoX4R6RtwHb6kDTYVKzMvvG1:G19qEApBRtw7hDiKzp1
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  epigrass-2.0b1/Epigrass/dgraph.py
- Size
  
  35KB
- MD5
  
  f807460aa2866ca65f606747bb2db5a7
- SHA1
  
  d2e57de410e85727de3ae058747e441c089e2e2e
- SHA256
  
  7fe95c4e144f9a98e4c483f96994022de544ddf88b2ab0c9169d3bdfd0ac6c84
- SHA512
  
  e7edc09ef6858f5952800e0332f8339f97f7e4003abefafb6284abc570501a09a8a71b502007c88470d29c7dea42c672eb53712df4f52ae2470fee74aa267cb2
- SSDEEP
  
  384:EW93EjKPRSPfOKtdAkwyi88N85nQMcBZ5/n/lVDVEaI:132KPEPfOKtTVixN85Q3Z5/n/lVLI
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  epigrass-2.0b1/Epigrass/elasticnodes.py
- Size
  
  13KB
- MD5
  
  5d8a1b864d7720eb848ae8e2ac9a0543
- SHA1
  
  e3329157f220a17f2f67d8a836db72292c508a98
- SHA256
  
  373e3f95d29e73a7fccce5ec7c63e47784e9bb93f97478b8f9c54885403ae36b
- SHA512
  
  9b6b48f2df312403087d7393957a126deaabd822194cab9825683bb71dec7cb6ef0f7cee131b54b5e2f896bc55b58b5731d082457edee2bc23f0786981be8349
- SSDEEP
  
  96:f9zkzU+VPtUIQxDLhaTtbl/7ppjZ2g4znOZ0ZQPK/4dJdDz5KHetz3N+IKi/gXP0:fRoCDVMXeoi6/M+NKIDK0N97rtcloJ
Score

3^/10

execution
behavioral23 behavioral24 behavioral25 behavioral26
- Target
  
  epigrass-2.0b1/Epigrass/epgeditor.py
- Size
  
  7KB
- MD5
  
  5584b2d516d9ee1367f784e2c315d327
- SHA1
  
  4bd6e35d64994d3adb09467c690860fc00f8f081
- SHA256
  
  329ed08c9079da2763a90db4622142e8e61b9a5d7be405be54340c6ce6d23b5d
- SHA512
  
  54b1481b394c55b3f98b0cbb26342f53f0f00af369eec53cc3395707aabc719614306179e49654748ca0d31eca2d27a3a17dad536747237ddb3228b3941e1df9
- SSDEEP
  
  96:OTgV/klswiZn18wnXup11kJ3s9mAb3YIIpMtRdVYTNIPBYqlKrWqepvWAO/Ov24H:09m5EDbvIpUR2NIPj6IcL+jCRWAi
Score

3^/10

execution
behavioral27 behavioral28 behavioral29 behavioral30
- Target
  
  epigrass-2.0b1/Epigrass/epiRTplay.py
- Size
  
  3KB
- MD5
  
  93610d7ae96aba37b064e335f62b3a54
- SHA1
  
  079e8c7acdaa93d00908dee90e771814002e6cc1
- SHA256
  
  5fa1e4d81e302c11a22df4daa5936aa4e40872c6a900149966374d33729d2694
- SHA512
  
  91d1c47f3b3e6c087335d92c6b6fe6662adf43952b77d2e0358be5212efefb6b5693f7004e520037e50cbdb01b58eb602ae54f4a71e156e6edf0af279d14d2fa
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Python

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32