930db0f31bf429fe4508a3f7e0fbb947226c3abba009b489df6ab98886fd4c4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SlinkyV2.08.rar
Size

14.9MB
Sample

240925-2a487s1djj
MD5

889530995a4e2aa841a19d85222d4f98
SHA1

3a6626c2b1522b7111468ab232e5a6c127cdb595
SHA256

930db0f31bf429fe4508a3f7e0fbb947226c3abba009b489df6ab98886fd4c4f
SHA512

d4c059a1fe4cbf686ea292a52e5e48918bacc013b3ec0c958bfb6d285d40d5d8015ada8e7e96c281efe8978dc9a908fa72a605e7de1105334439fe121d37273f
SSDEEP

393216:Yuv8rCEu0By7tBuKZcp5SWwxoJiaYYBlx1Fn6RRFBE+I:jvicMgtBuSw04iqlxTko

Score

7^/10

discovery pyinstaller

Malware Config

Targets

- Target
  
  SlinkyV2.08.rar
- Size
  
  14.9MB
- MD5
  
  889530995a4e2aa841a19d85222d4f98
- SHA1
  
  3a6626c2b1522b7111468ab232e5a6c127cdb595
- SHA256
  
  930db0f31bf429fe4508a3f7e0fbb947226c3abba009b489df6ab98886fd4c4f
- SHA512
  
  d4c059a1fe4cbf686ea292a52e5e48918bacc013b3ec0c958bfb6d285d40d5d8015ada8e7e96c281efe8978dc9a908fa72a605e7de1105334439fe121d37273f
- SSDEEP
  
  393216:Yuv8rCEu0By7tBuKZcp5SWwxoJiaYYBlx1Fn6RRFBE+I:jvicMgtBuSw04iqlxTko
Score

3^/10
behavioral1 behavioral2
- Target
  
  slinky_loader.exe
- Size
  
  84.0MB
- MD5
  
  296cfc072f4a07c9d199543558f5af0d
- SHA1
  
  c51b8c42d2260b55909e75bc34be778a5dc0a0f1
- SHA256
  
  4a89f6dcece114c5eaac94ecb07f15e1eb7adfdad5bac2ea8b3f7752ff8f104c
- SHA512
  
  d72fa950964c5c26c1021d48ead743a79bf805d21a9e3c7dc64f2f5f2a77932f69e9d24017504679a4f587c093edda2bcbbf35fb9d9a24ec57068799a98cee26
- SSDEEP
  
  393216:EjAPfF3dNPVLCEDLQzH2ciIrHW4H//o3Mdg9R1gPBw6:QAjLCEDLQzkIL7/wUg5gPBw6
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral3 behavioral4
- Target
  
  alansito_file.pyc
- Size
  
  4KB
- MD5
  
  0264281dff5fa25d1cff90d86efc5ddb
- SHA1
  
  fe787c164e5823de064ce678a6b5dc3937e16187
- SHA256
  
  3af66b9ff650d3c33124c622bc78eaf48ff242977968b0290181b63db501a969
- SHA512
  
  b91e9aad92e1cbb58afcb1b68fd8c3beb37ccc5709570052c8be1921bad565ac8c2dc1e2165e5b28c982fa0bdd7185b4606ce326d75ccb90a59f92b7dc293d6c
- SSDEEP
  
  96:0ysQmEyA3Bcba05dR/sNlUec/5wN8uBpbKVD+FMK8xh9:0ysjgxcba+dR/sNlrs5O8qpm9vx/
Score

3^/10

discovery
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6