Resubmissions

18-10-2024 19:55

241018-ym7cjsxcqk 10

14-08-2024 14:48

240814-r6xtwsshjm 8

General

  • Target

    https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqa3JPaDQ5cENpZUotVnBnc2E2MlRFd3dId1Utd3xBQ3Jtc0trWXZfX28zOHV0SVdwNTNWcUsxUWNMS1lWLWdNcjI0Um02Vmg1UElVdVgwRHJTUmNSUEdoT0UxVE1YVVlXeGZYdllOdDY1bUlvdDNiV2dkcGNEMzVEYy1zZ0IyS3pydEdJQi0zOEt2SWF0VVFoS016TQ&q=https%3A%2F%2Fwww.velvoxpack.xyz%2F2024%2F07%2Fhow-to-boost-fps-in-valorant-2024.html&v=It2hfVMQ_Q0

  • Sample

    241018-ym7cjsxcqk

Malware Config

Targets

    • Target

      https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqa3JPaDQ5cENpZUotVnBnc2E2MlRFd3dId1Utd3xBQ3Jtc0trWXZfX28zOHV0SVdwNTNWcUsxUWNMS1lWLWdNcjI0Um02Vmg1UElVdVgwRHJTUmNSUEdoT0UxVE1YVVlXeGZYdllOdDY1bUlvdDNiV2dkcGNEMzVEYy1zZ0IyS3pydEdJQi0zOEt2SWF0VVFoS016TQ&q=https%3A%2F%2Fwww.velvoxpack.xyz%2F2024%2F07%2Fhow-to-boost-fps-in-valorant-2024.html&v=It2hfVMQ_Q0

    • CryptBot

      CryptBot is a C++ stealer distributed widely in bundle with other software.

    • Detects CryptBot payload

      CryptBot is a C++ stealer distributed widely in bundle with other software.

    • Downloads MZ/PE file

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks