66a412980ebb6bb2153663442db68cb37756acf7a91f7a201750a9a222678b8f

Resubmissions

04/10/2024, 11:40

241004-ns52kawdpf 6

04/10/2024, 11:35

241004-nqcx1awcmh 3

Sharing

Copy URL

Twitter E-mail

General

Target

Psyhco-Hatcher-main.zip
Size

18.7MB
Sample

241004-ns52kawdpf
MD5

fdfc392a405612a6d661b788d6971784
SHA1

4527667bec47ecb86f28235a1cecf57c06f9e00f
SHA256

66a412980ebb6bb2153663442db68cb37756acf7a91f7a201750a9a222678b8f
SHA512

643e73857df43e5b59d7e0b02bda7bbe6e49737780da8ef0b99317788b62b67d701b2855ae8e2a9f1671bad69d2d5e0406ad6d05c27ce0c2aed6d0439891d3cb
SSDEEP

393216:yM3oUVuY06TXKIoeSPQcJ06orq1oPynncd8ZLcJw0mEA3vypKlde1+oJPIznUVZ4:j1ctLcXGvRld58uUVhJZxzcW8Bjv

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  Psyhco-Hatcher-main.zip
- Size
  
  18.7MB
- MD5
  
  fdfc392a405612a6d661b788d6971784
- SHA1
  
  4527667bec47ecb86f28235a1cecf57c06f9e00f
- SHA256
  
  66a412980ebb6bb2153663442db68cb37756acf7a91f7a201750a9a222678b8f
- SHA512
  
  643e73857df43e5b59d7e0b02bda7bbe6e49737780da8ef0b99317788b62b67d701b2855ae8e2a9f1671bad69d2d5e0406ad6d05c27ce0c2aed6d0439891d3cb
- SSDEEP
  
  393216:yM3oUVuY06TXKIoeSPQcJ06orq1oPynncd8ZLcJw0mEA3vypKlde1+oJPIznUVZ4:j1ctLcXGvRld58uUVhJZxzcW8Bjv
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Psyhco-Hatcher-main/README.md
- Size
  
  1KB
- MD5
  
  7127fa0035f67703c81e8474f11c934b
- SHA1
  
  1b4d047c1bfe0cdbbf8400d4559028522ff244b2
- SHA256
  
  50b80b604cf5ebea3c27ceacbeed0b08d9e6ac01ef1f8f48950a3ff767778556
- SHA512
  
  66cb52de265dd5ca2376df5a70abce87a4b1f747285aa5d52006294721f523de88adcf75ffde445da3bfb48c42af66ca7f07720b9da482715570b4cda2ca672d
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Psyhco-Hatcher-main/psychohatcher.zip
- Size
  
  18.8MB
- MD5
  
  4e607c82abba2a30d098a5b10a79b545
- SHA1
  
  e39e28b4bd241cfe89dacff1f439c4c677a3e776
- SHA256
  
  6f0a290aa423792eae15820f1cf9bea6c49b55274c300e5dc73804110587789a
- SHA512
  
  5521e5c7bf8f8245315a9a07d5419d1c548b76f24824998caad6b53f49f5c681361a26ad5e042ea127b6c0325190b43e16a8800e71d518ea718218c40b0f2551
- SSDEEP
  
  393216:JeWso7WsoHWsoFWsoSWsodWsomWsocWsoRWso3rP3c/QxH8TCQ6Cel1uBanjQ1Yz:JSFH8TM1DnjJcq6JvXdxzkw+pdd
Score

1^/10
behavioral5 behavioral6
- Target
  
  Modes/Advanced Digging/Settings.ini
- Size
  
  4KB
- MD5
  
  e2f0e57de9b50629a57aa2466c06f0bf
- SHA1
  
  cd13c79c1f21e1fbd065e6c9e8782bf4917d0399
- SHA256
  
  c6c28b1ad4713aed116b0f778a0ffea171cbb8ff5e55ea4ebc58f7755b443a38
- SHA512
  
  113db4947e6d940f218cb11aff0653063fb40758d0d71567a832bbf74ba62acc75118ac6f5228ac8a11ed31d443a945f3ea1ff3b96738305a5672f280004c794
- SSDEEP
  
  24:b99lVzSF/6cYmGDiskR6/Xewj6kIfnSETih9gggVb3OlKwWf//AvrEvTjFBzjXgz:5/VYsDZwA+dVjx4Q70zAwfC2hw5q
Score

1^/10
behavioral7 behavioral8
- Target
  
  Modes/ChestBox/AutoHotkey32.exe
- Size
  
  955KB
- MD5
  
  de0540d8ff0a102c1967e5f9d1102917
- SHA1
  
  f15a5f0e959ca1d345c408c6145c2b3618da6f34
- SHA256
  
  114deccd1ad6ce6933c2cbf5a5140e63eb22104469418ccbcfab95b254229f52
- SHA512
  
  e77a893a3ce28f4cb8e113d44bc3389ae5a33cc8f5a01d4750da4457011fa8b21a258a0e0198b8dee5761cd1255e62e76431c40d03b883ce1d75a9a8a7597388
- SSDEEP
  
  24576:Yb+IpkhoVUkq/MywEi9407zcOzlasK8BotqAv:ek/MdlasKootqA
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Modes/ChestBox/TChestBox.ahk
- Size
  
  1KB
- MD5
  
  4354e5c638527d8c0eb431162d7d2774
- SHA1
  
  3a094b0112819c26537c5eaec19644fc663ee5b6
- SHA256
  
  9dcfad5bdd69e1b95be996e32e4276f3fa90d4d5f40e5151638263b5667867be
- SHA512
  
  c185de85177b06a03637dc616dd12ca843ec2f0567d1b669948c77eedebb7c159951235eae3bff2ad249f509224ea063d69ece0aa6e51580b0dee8e7a5eb1eb9
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Modes/Clan Quest VIP/Settings.ini
- Size
  
  2KB
- MD5
  
  663d2843456c60e38a30de40b03e3064
- SHA1
  
  05adc0c5cc20c626b6fe903a304c01f8bf39684e
- SHA256
  
  3a499204d380cb633571c273c4c7005f0de249f68c78419a37608e65686750a9
- SHA512
  
  d1873311cf6406cfd26b99736c8149f2fd1743e61ce2cda3583df7706286a6b7ef345614c4c8f365db9ff8a68a2fedbc5ad0c5972789f58d7516d0e717bf802e
Score

1^/10
behavioral13 behavioral14
- Target
  
  Modes/Clan Quest/Lib/ocr.ahk
- Size
  
  54KB
- MD5
  
  7c419be2c7c347b9c586c9246e277c85
- SHA1
  
  f899fb753bd6c74b6da07ac006e9b3eb854f956e
- SHA256
  
  c316d7d9a96a13f737d4b814f8df1c1e253c0d58ed8a7c400d403078ed986fc0
- SHA512
  
  5dfe9f071cbce4ee5d45ed9964bb5e613f3c7e29ec158cf98783563103ad67c55437c53ddcf7aa2c2c3443243e6ae09aef0493b3165b38adaa09c252dbc5d0b8
- SSDEEP
  
  768:Z/wAipSkQrjgz1OLsSZKLLZZjfmtlCKYnKVIOTpnnD:ZmpSkQrxZQZlmZYnKVtpnnD
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral15 behavioral16
- Target
  
  Modes/Clan Quest/Quest/AutoHotkey32.exe
- Size
  
  955KB
- MD5
  
  de0540d8ff0a102c1967e5f9d1102917
- SHA1
  
  f15a5f0e959ca1d345c408c6145c2b3618da6f34
- SHA256
  
  114deccd1ad6ce6933c2cbf5a5140e63eb22104469418ccbcfab95b254229f52
- SHA512
  
  e77a893a3ce28f4cb8e113d44bc3389ae5a33cc8f5a01d4750da4457011fa8b21a258a0e0198b8dee5761cd1255e62e76431c40d03b883ce1d75a9a8a7597388
- SSDEEP
  
  24576:Yb+IpkhoVUkq/MywEi9407zcOzlasK8BotqAv:ek/MdlasKootqA
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Modes/Clan Quest/Quest/ClanQuest.ahk
- Size
  
  7KB
- MD5
  
  1f560189741746c16e6370c13dd08902
- SHA1
  
  965362de3188b009a9178ff5d53fe898f5bd496f
- SHA256
  
  95517d3fa838dcde947b552665a081ce6a1e67c92f349643fa6dcd3f26e791e1
- SHA512
  
  558952fd7ae0fefb188aa889b0048c2accfeec4f1025004dcef505365112744bca0433045b8b8f6d63da85b1bdf18e5bf10d63dcc380ee61051c27e5058504a3
- SSDEEP
  
  192:wzRKyM/RhMkRIMNRcMnRgMFkdfdaLdEHT0ExORjgtRfdzB8:REMWnm
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Modes/FarmingHatching/Assets/Tray.ico
- Size
  
  4KB
- MD5
  
  8681ce04266644af7daa3f3948e9301b
- SHA1
  
  cf521df57e157050e7a2744bb2b5a4a6b9c354a9
- SHA256
  
  9ac00d6ac913cc51ddd1d333185387dc04859b25217503ed84611f30040e7a7c
- SHA512
  
  24816d2ce911cee780ee91d5cc594ec404b5998290fc4c2f0c5b7b33a422fac68e379c7e1f59cc0431a8c32acb67c0f2959387d98de3958d9b4f62a3ccf705a4
- SSDEEP
  
  96:dsVxxTBjWTqujImWT1wEMO8fHpTTy/8HYEZJUzssVCNsFDK2iCtj7QKKBqE6m/Bn:dsBJWTljtmWEdmHRfHYEIY4TlfKBqQ
Score

3^/10
behavioral21 behavioral22
- Target
  
  Modes/FarmingHatching/AutoHotkey32.exe
- Size
  
  955KB
- MD5
  
  de0540d8ff0a102c1967e5f9d1102917
- SHA1
  
  f15a5f0e959ca1d345c408c6145c2b3618da6f34
- SHA256
  
  114deccd1ad6ce6933c2cbf5a5140e63eb22104469418ccbcfab95b254229f52
- SHA512
  
  e77a893a3ce28f4cb8e113d44bc3389ae5a33cc8f5a01d4750da4457011fa8b21a258a0e0198b8dee5761cd1255e62e76431c40d03b883ce1d75a9a8a7597388
- SSDEEP
  
  24576:Yb+IpkhoVUkq/MywEi9407zcOzlasK8BotqAv:ek/MdlasKootqA
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Modes/FarmingHatching/HatchFarm.ahk
- Size
  
  84KB
- MD5
  
  747ca692c44f5c7a58c0611e586327c2
- SHA1
  
  77f38d61ec09c90ab65a7c54a1d057fe44a09f40
- SHA256
  
  47d7e1cbde1b2891bfaa99c98a01ef24471cd125d7ee7243178d1ec13563fb68
- SHA512
  
  25614c8ab6bab734649e8ae82c99ab8b19d669a5dd799e460dfbdb32879717a87102be6b157b21281636606ff4e3eff9d09d5e6a79cde78159325e2ee5f2591d
- SSDEEP
  
  768:YjHaaUtKB8VNOPnmP3lY9FKnPBYaewhuTqsEypEgcFjTb2Ps0N:Ij1piysy
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  Modes/FarmingHatching/LICENSE
- Size
  
  34KB
- MD5
  
  1ebbd3e34237af26da5dc08a4e440464
- SHA1
  
  31a3d460bb3c7d98845187c716a30db81c44b615
- SHA256
  
  3972dc9744f6499f0f9b2dbf76696f2ae7ad8af9b23dde66d6af86c9dfb36986
- SHA512
  
  d361e5e8201481c6346ee6a886592c51265112be550d5224f1a7a6e116255c2f1ab8788df579d9b8372ed7bfd19bac4b6e70e00b472642966ab5b319b99a2686
- SSDEEP
  
  768:Fo1acy3LTB2VsrHG/OfvMmnBCtLmJ9A7J:Fhcycsrfrnoum
Score

1^/10
behavioral27 behavioral28
- Target
  
  Modes/FarmingHatching/Lib/DarkMode.ahk
- Size
  
  11KB
- MD5
  
  bbe5dc4fcfd1fbf5aac380e2dddc378f
- SHA1
  
  b81f821ad35f384b4c8485ac867fab6cd01e04fc
- SHA256
  
  2a96f7be3410ce6bb76a0c0a65532cc258ed915590641b4b61b3e954f7529fc5
- SHA512
  
  4c388cc72911335e04f9fe4836f1afb7c1da46defc397f68719a565a6eb288d72c7430cd01a6212bf4b11da050222747832cc279a3c637baf533cbe8a734b96e
- SSDEEP
  
  192:ZXYsAfCZ5Q7uUpGLAbFz92SoT6+9c4c8qd4ouFviohwaY2C4ImCI62WuN:tYT6tUIAbFASo2UcXT4TNiw6o
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  Modes/FarmingHatching/Lib/JXON.ahk
- Size
  
  7KB
- MD5
  
  b98a85ca74ad66d7ef15cbfeb4471a5c
- SHA1
  
  9bb904e945df033f1ac38947494e7a2d60e325df
- SHA256
  
  0b2c0b5d863ef9165a3c735cf5defeedc66c0a5c7d71faa4fad7afc0c7c1cae9
- SHA512
  
  3e854ef23aa88887688f3730111a2d3652729fe587f2c040b53047a73b059dfe41e6dc50284bdf82221ee9833c640e53ebc7d0d5d1de6bf2a4d4e96ff82cdda2
- SSDEEP
  
  192:ui5NJA40CaKfi4DuYA5EJ6eG7Vn3+vXum4:vNJ3raKDyp5HzIXum4
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32