4e15af88aac65f1ac73a9ec2d18df57f44d37f19b38cc005f0b9daf4233d57ae | Triage

Sharing

General

Target

ziEkt
Size

1.9MB
Sample

240915-vjeatavakr
MD5

e5dd3815d59587b81d657ffd4c399302
SHA1

c84010329691af98fe4656ceba2951eaaf42c87c
SHA256

4e15af88aac65f1ac73a9ec2d18df57f44d37f19b38cc005f0b9daf4233d57ae
SHA512

9e2043c6aa09370323aadcbb6295442dfbc0df3794d70c109d3f3abe8fffa0e110ef98797853a32f87a0cb771edcabed0454b24fa0cba65058eb1a1fcca02e4e
SSDEEP

49152:d6COqBMdGwyZj1mFizqdzZUHHVl9UQIVAToRRIJSE99:ko0E2JZSlSQI0gRASEv

Score

3^/10

discovery execution link linux pdf

Malware Config

Targets

- Target
  
  epigrass-1.5.1/Epigrass/CustomModel.py
- Size
  
  1KB
- MD5
  
  9a47991508f6ca5d384399f3838c7df8
- SHA1
  
  9d1c419c101802690d6c7d673c560ac97c40ea85
- SHA256
  
  0db74ecfdce1c07ecf8fc0c0ab4f1f48d636ce23c43052b57cfaf281726fd368
- SHA512
  
  4a8005ddf77011c18e65d3a2787252551d1aa2f9c2c78133ab8c5441066d962deed6a48299a265bcfd4503aa3e54f84415260b4ef1c88ffd55540fb9131b09cd
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  epigrass-1.5.1/Epigrass/CustomModel_example.py
- Size
  
  1KB
- MD5
  
  b3b9870245a460a4f16cb38569717432
- SHA1
  
  9dc0946230fa25bb8b1cf7d1f226b01f1c876a95
- SHA256
  
  a42e5b852b851f3e89a5fadb14a9039783c1d5d8370534c831d3ad8152fd49b9
- SHA512
  
  80fa4c0e164bb72d47108c5d781792deeccb86bd85e91ded51ec4e1899e8c83bb133c4137648a112f880be676ea8331357ddc5138942aa241ce7ee7b164605cb
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  epigrass-1.5.1/Epigrass/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  epigrass-1.5.1/Epigrass/about.py
- Size
  
  24KB
- MD5
  
  4879823e8547b73d9de9e36d1ba50745
- SHA1
  
  cf8f0ec2fd17ab65cae081fa1ec6bb86e94c6dc4
- SHA256
  
  32e68ed0165af23fdc767583724162308c3cc543c17bf9e234b8b17e0f01d5d8
- SHA512
  
  7fc23e26133cebd727d51361277a977d6be518535446561ca4508a8a3b23911e3b10633b147c3d9bebfdba675095041513fd927a9ca65600cd5eececa1940acf
- SSDEEP
  
  384:ancpRD8jRm94ZUYAeWjhBb6pMK5UDzRpaRw4Mq3Gm5Drrfoo7:ay942TPEsxAh0m5rfZ
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  epigrass-1.5.1/Epigrass/cpanel.py
- Size
  
  20KB
- MD5
  
  e5e54ce8fe3a728a6e6be0434b17b2ce
- SHA1
  
  09db6829570e8769696328986965eaaa9898efad
- SHA256
  
  86155455b6f5118941bd7c855a1802ed40a883ee0ece3794f8d66c6f0923888d
- SHA512
  
  50ea28ee4ebc7eddb647d2987e056a167f2292eaf6749c72479dfd248389476f070a0eeabeb5c08e0ac001394d3a098b2367a5ba50ec3b6a08890e173444347d
- SSDEEP
  
  384:/nanHx0XMGrJ0p9c+yQ9tEPVwZrv/yaJ/:/1keaB
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  epigrass-1.5.1/Epigrass/dataObject.py
- Size
  
  1KB
- MD5
  
  adc372816c0f3b0e6b5dc42e6fa65eb2
- SHA1
  
  ec921a1a1d71fe77d88dbf9aabe9a574feab513e
- SHA256
  
  af73bccd060d47f990651a5bb2df305b9d444593ed13d4a4c4ac115764444499
- SHA512
  
  f69b86e498d0ccf3eb7abe9e178e7d574cfb7e335c3f2321948b301db996a2873d208178b549c3d98a08c597ff550f16402a3e9209cc8d9bb6063888b7152862
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  epigrass-1.5.1/Epigrass/data_io.py
- Size
  
  6KB
- MD5
  
  a7181a86ec984c808c1bda9c9ad3a365
- SHA1
  
  27537598f96d1563451389f36d5e574d8a5c16b2
- SHA256
  
  f9788549647b1d169bd78848ffae0b1c83fdc7b7f30a10015b86580d89c054b3
- SHA512
  
  bdca099daae8e60bbb3aa66222af290d86de26a8711257fcb5bc9a68feed1174f12986a71f85929bcb8404956f14f5cbb98ecb4308bc89037706931c41425e1f
- SSDEEP
  
  192:kqY1+GF48uQ87stAgHHgIgzaoX4R6RtwHb6kDTYVKzMvvG1:G19qEApBRtw7hDiKzp1
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  epigrass-1.5.1/Epigrass/dgraph.py
- Size
  
  12KB
- MD5
  
  69c7aa71b4a2d76d03ca694504ad6b0e
- SHA1
  
  5375cb7ddcf5652899e9791c1a720326f8bb79b8
- SHA256
  
  c3f1db439d1440e3cd1ddf5bdcb6b8090492bd54765949fcf98773ae47f39837
- SHA512
  
  7962847d46bc5f4442c20acdf6fa8418ff99a4a5f4acb90f6a14672f8f3c5ad5033cdf62637ee311ebf6f72f3f3ca34bdfe69d0097a725331b4e060f29fd081c
- SSDEEP
  
  192:J+4hiqj+X4Wo9em9h17V73zzkQvs4xWNjNim92Jqj9Qk3JT:JlMqj+XD49DV3zQ4cjNim92JVe
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  epigrass-1.5.1/Epigrass/elasticnodes.py
- Size
  
  13KB
- MD5
  
  2badc8bc7a7cb477935daf205a6a9dd4
- SHA1
  
  e52a665f368b41e999c490189ed9091272bf95aa
- SHA256
  
  08417167ae4f0e35f5bd7606bdb551e3dd9bce2e82147fbb8320ca1cf3dfa494
- SHA512
  
  341c62913f5b117f2d2d3b2fc298b5d1584022e0b2f536a4cd07f9cc83ad2fe95d4b6415b6ba231db6ba4cef594d24d409344571c2f034d23fa86d3f606eaf78
- SSDEEP
  
  96:f9zkzU+VntUIQxDLhaTtbl/7ppjZ2g4znOZ0ZQPK/4dJdDz5KHetz3N+IKi/gXP2:fRoSDVMXeoi6/M+NKIDK0N97rtmloJ
Score

3^/10

execution
behavioral17 behavioral18 behavioral19 behavioral20
- Target
  
  epigrass-1.5.1/Epigrass/epigdal.py
- Size
  
  15KB
- MD5
  
  36af9ee46969081937ea08289c8c5519
- SHA1
  
  329eb1e4666a9d739842fbbb36d16937ab350b0b
- SHA256
  
  56590df2fa1472bf4ac9ab2f8ffbd2bc496f0fadb5eb3ab6b0616d5470924e46
- SHA512
  
  8f25ed13316f953fe812137ea53b173a7112b269314367c36eded974701c2b40a6663218b4b0187d19aa08b8697074bae5d6b97b098ea2ecb27c698c342d6178
- SSDEEP
  
  384:Eih35Glc5es47UvAyRt2oaLc1y40G/eLoPbOJd8gls5Mui:Ei15Glc5es4Yvjt9kD4f/4MbOH8glsuL
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  epigrass-1.5.1/Epigrass/epigrass.py
- Size
  
  24KB
- MD5
  
  55cd4c3b084dc50f2a0e6db7183910af
- SHA1
  
  bc1f2c0bb62374932a6f283c1c2274cb0b56be3f
- SHA256
  
  8cb1c6235f4d77b6f638de5661eeeb5004ecada75e17e043335cee761e2c54af
- SHA512
  
  256dbf5eb67c6d0e67e1f62b4d3d7c4a948e349b29666835918e47e214ba582c01c6311f9b61a895c79f6a58aabff2cf47da21f9aec6fcf535f6da8b67dc3e44
- SSDEEP
  
  768:0IPfnskXxHhOGW1tVqMG80V9lJi/VizWi1AU25xK/JBr79pI:0Cvo
Score

3^/10

execution
behavioral23 behavioral24 behavioral25 behavioral26
- Target
  
  epigrass-1.5.1/Epigrass/epiplay.py
- Size
  
  11KB
- MD5
  
  3f84e681962cf1f823c7ed4ec9252705
- SHA1
  
  bbac90547ca5ecb666c69257a2b7f155e1525d79
- SHA256
  
  f8afb9da76d16caa68c53e993e43f4b664792348be39b8b22227a0d45c597e72
- SHA512
  
  10fe0d0b19636a2f7f14d5282d40e0f1fb257bbab5eda3ef5f0b675cad0561cc4ead4895f0036a6f8fc06751709c45ca2ad8fe422d341ea80d573af89a1498eb
- SSDEEP
  
  192:7aENKYOTQcMeGJrg1xuYVa6MNGKI96FELEXBcJUujNHYvu6n/7:7lNKTQqGdgnuYtKIMFEIyJ5HYGUj
Score

3^/10

execution
behavioral27 behavioral28 behavioral29 behavioral30
- Target
  
  epigrass-1.5.1/Epigrass/epiplay2.py
- Size
  
  9KB
- MD5
  
  6d40eed91d48407562921993b3a0b2ec
- SHA1
  
  e1aaedfb628cb5b80234a6c64097c70ad9bf2e8d
- SHA256
  
  3f403af5d14065dabfd705ddcfc6a21b6ab339a70a5acd99889a46e0aa3319f8
- SHA512
  
  e07f8d14c33080b8bbd9a536429ebfb78134705640a03c38cbe70b0b1a50a19a1fe4fc46f9c69a380155e76bb063fb9b2b136d16261c4eda407e0a36101c2fbf
- SSDEEP
  
  192:7lsPNKYOTQmMeGJrg1xuYQvUVJuq7JXBcJUuj07:7sNKTQQGdgnuYQv5q7JyJK
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Python

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32