5763f5a4cdeae5f7b7a58fe0b43c78b2cfb7dd9cf5dd0e81d58dd832d3a28ec7 | Triage

Sharing

General

Target

Gooat___Proxyless.exe
Size

10.3MB
Sample

240930-p1qsaawcrp
MD5

b0f6c5b9a9f85de55ccb5eb3f367427a
SHA1

d12ab7413c42a5c569f973352f286e2a69f3d121
SHA256

5763f5a4cdeae5f7b7a58fe0b43c78b2cfb7dd9cf5dd0e81d58dd832d3a28ec7
SHA512

24abefbac3746f401a2bd9d80b9ca9b15dafb6e029eb7d32ed8397fae7e8ccf4c9480aa3fc301247e76b3047d0e1f8682c59c316e3c53f748334f9c627a01e17
SSDEEP

196608:xP8UstFS1/wbITLwOjUq5DfyGgrwBdnpkYRM6WyoY0gVlF:x1obI/zDfDgrc66UI

Score

7^/10

discovery pyinstaller

Malware Config

Targets

- Target
  
  Gooat___Proxyless.exe
- Size
  
  10.3MB
- MD5
  
  b0f6c5b9a9f85de55ccb5eb3f367427a
- SHA1
  
  d12ab7413c42a5c569f973352f286e2a69f3d121
- SHA256
  
  5763f5a4cdeae5f7b7a58fe0b43c78b2cfb7dd9cf5dd0e81d58dd832d3a28ec7
- SHA512
  
  24abefbac3746f401a2bd9d80b9ca9b15dafb6e029eb7d32ed8397fae7e8ccf4c9480aa3fc301247e76b3047d0e1f8682c59c316e3c53f748334f9c627a01e17
- SSDEEP
  
  196608:xP8UstFS1/wbITLwOjUq5DfyGgrwBdnpkYRM6WyoY0gVlF:x1obI/zDfDgrc66UI
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  main.pyc
- Size
  
  4KB
- MD5
  
  f16a05f13327614044d1eb167acaa4b5
- SHA1
  
  58c0d115490203f552d335e2146533d83aed5f91
- SHA256
  
  962ff55f50e34df8eb02e8085308323b93c8feec7c02c32ccf0e620b8260acc7
- SHA512
  
  b3d3db2f3de47ac9e04b67ae998e71ea40b994f349f901d94c4faea9e39deeca3387770af75a8f801f721e3d49cf156a1f5bf2ea7d3cdc60c305f949d30031ea
- SSDEEP
  
  96:Ft0ORA5KAwVxFIYFQnsiWhshVPMaFsMaFQHdBoZ4GlnrL:tus9enKhsjMaFXDBo+OnX
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4