Overview

overview

10

Static

static

3

Visible An...OW.pdf

windows10-2004-x64

10

Visible An...K).url

windows10-2004-x64

1

Visible An...E).url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Visible Analyst Cracked.zip

  • Size

    35KB

  • Sample

    240925-a5cznaxgmh

  • MD5

    fffea7bcc5c6f8cf453e77df10a48985

  • SHA1

    f6dd3cf8fa2d02bd0bc83911210c1f453ac348e2

  • SHA256

    0f6b8f0f181618b3ae213cf6a916a597e0d9f4cfea364e2ca7713138e22e65cb

  • SHA512

    7ac13cc061cd13a0ab0d256277afa00ad3b73fbb49b172b9d573a33c137decf0f87e5fadc2004b8e1b36b67397849ff388d5cbeb155435f1a15e921a886d18ad

  • SSDEEP

    768:n2fVRrvPDHoSDPlqSUDfhkNaO/wYuSmQYKqINu:naPDHoKk2pwAmWLu

Score
10/10
cryptbotdiscoverylinkpdfspywarestealer

Malware Config

Extracted

Family

cryptbot

C2

twelvevf12vt.top

analforeverlovyu.top
Attributes
  • url_path

    /v1/upload.php

Targets

    • Target

      Visible Analyst Cracked/DOWNLOAD NOW.pdf

    • Size

      36KB

    • MD5

      c83a5606ef6b97810e7bd415e8dade34

    • SHA1

      2e408bf30e8e73caa0191ea7407acef8574a92f0

    • SHA256

      0a6fb9cebe132c69d96cf7f2b4675369d2aed44b329004edcd81409cf2ab62d6

    • SHA512

      5bb6216fa0ee4dae72fd1e5af0160afe7e5eaacc5856014c7df0fa41d77640762c186fcee9c9dd3f594b27853c3c56394518a495aec95da428e614c9f0fd6b95

    • SSDEEP

      768:xqo/tP5ABqQVMfJ0PHK0PIjaBXsOk93pY6tXtvneYrMlGSCahIPxtSrrVZXBdO8e:xqo95bQXHbgKX495Yu13rM5GPirnXBda

    Score
    10/10
    cryptbotdiscoveryspywarestealer

    • CryptBot

      CryptBot is a C++ stealer distributed widely in bundle with other software.

      spywarestealercryptbot

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

    • Target

      Visible Analyst Cracked/DOWNLOAD from here (MAIN LINK).url

    • Size

      126B

    • MD5

      59f5ca52ff8d55ebd06ffbcab5e42862

    • SHA1

      5ff13cace0b3bdaf673d7a13858e2203ee54bb0f

    • SHA256

      b75cd2ad63b6d8b1cef6c48032efcc829f95534fbb1190cc9eaf0f4d97e7d68b

    • SHA512

      b351133a8a3d5d8ed595f53634922d58ce387c55a3ce8bc03b8f3e02b0bae0176e5b007b0ffb63a2da87848fc90b0a98381774800625d72bb998a10dc5e58577

    Score
    1/10
    behavioral2

    • Target

      Visible Analyst Cracked/Download Link (ALTERNATIVE).url

    • Size

      108B

    • MD5

      c72a10e138f50b969c8ae75d932b59bf

    • SHA1

      e1d6827d00eb8188397653877e2198e787d27256

    • SHA256

      be89586fc848060dad05e016d0b8da9353f14da1faf0b57f453c5497f1aca8c3

    • SHA512

      9f3bf7f33644cdc31edc114dc20366d5233b5b37d882872af898b1f44c13ff91200d8f42e65d8b235d60b7d446daa4d0c45e46885321f93db4c87c383a0f81b5

    Score
    1/10
    behavioral3

MITRE ATT&CK Enterprise v15

Tasks