Overview

overview

7

Static

static

3

TikTok Bot...oM.zip

windows10-ltsc 2021-x64

1

For More C...re.url

windows10-ltsc 2021-x64

1

Password.txt

windows10-ltsc 2021-x64

1

Setup/For ...re.url

windows10-ltsc 2021-x64

1

Setup/TikT...ed.exe

windows10-ltsc 2021-x64

7

inFo/Dr.Fa...ok.url

windows10-ltsc 2021-x64

1

inFo/Dr.Fa...er.url

windows10-ltsc 2021-x64

1

inFo/Dr.Fa...te.url

windows10-ltsc 2021-x64

1

inFo/For M...re.url

windows10-ltsc 2021-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TikTok Bot Pro v3.5.6 Full Activated - WwW.Dr-FarFar.CoM.zip

  • Size

    52.2MB

  • Sample

    241101-vqcess1pdx

  • MD5

    3b1e34cf212d8e9540053eeb7cbffbff

  • SHA1

    00a1a674575d03e755d0e83b091baf90c064528b

  • SHA256

    7c4eb19ef6d2891576f88723e4d0a59f694a9c6a814f0761aa41d7e50473d8a2

  • SHA512

    44f1f8a9aaa62eeb4aba032c84121ba6dedd1cbf261b4056b516ec9c65cef928e31a22fc0425494c50c8dc1583fed37ef2d3a1682632a729ed1a9f7974de50c0

  • SSDEEP

    1572864:OlAPWnSW4/RcaAfpMcNlibRZn0W7Ovvk3GHc3u8H3pQOWg5:ZPKSW45sScL+n0WIskc3BHvWK

Score
7/10
discovery

Malware Config

Targets

    • Target

      TikTok Bot Pro v3.5.6 Full Activated - WwW.Dr-FarFar.CoM.zip

    • Size

      52.2MB

    • MD5

      3b1e34cf212d8e9540053eeb7cbffbff

    • SHA1

      00a1a674575d03e755d0e83b091baf90c064528b

    • SHA256

      7c4eb19ef6d2891576f88723e4d0a59f694a9c6a814f0761aa41d7e50473d8a2

    • SHA512

      44f1f8a9aaa62eeb4aba032c84121ba6dedd1cbf261b4056b516ec9c65cef928e31a22fc0425494c50c8dc1583fed37ef2d3a1682632a729ed1a9f7974de50c0

    • SSDEEP

      1572864:OlAPWnSW4/RcaAfpMcNlibRZn0W7Ovvk3GHc3u8H3pQOWg5:ZPKSW45sScL+n0WIskc3BHvWK

    Score
    1/10
    behavioral1

    • Target

      For More Cracked Software.url

    • Size

      52B

    • MD5

      e050b7240d330f8b25d0cee8c99475a2

    • SHA1

      bb930b01c5a04e26ba62fc5171fb6321c54e692a

    • SHA256

      8e124a3b43c2f662805c1ef3502ac0ac052b7a616add1327827c56c521342139

    • SHA512

      fc21ba25bb351b79d8510448ad9383466ea62e5e7a7bd52cb9906b4be22be58cf6d88ec5093948a9900cfdcc7faa4ec6473054f51a95dec85cfed24fe9b6cb8f

    Score
    1/10
    behavioral2

    • Target

      Password.txt

    • Size

      230B

    • MD5

      fb38bade2b5768c5af0e6baded905bb1

    • SHA1

      bf4d0757b56d45b9182effc8db892a4c0522d751

    • SHA256

      60f8c65a4f6138bf972d06b444e86e973cb054c0dbbb1aece35cf95dba28734e

    • SHA512

      7aa6f712d8a82f7a99de760d007bc0e5f40ce13f8ba2394933c0370a8bdcc59dfd1527be014607a053652f6845ed4f1f04e129c8a0c499e7901446447da28ed9

    Score
    1/10
    behavioral3

    • Target

      Setup/For More Cracked Software.url

    • Size

      52B

    • MD5

      e050b7240d330f8b25d0cee8c99475a2

    • SHA1

      bb930b01c5a04e26ba62fc5171fb6321c54e692a

    • SHA256

      8e124a3b43c2f662805c1ef3502ac0ac052b7a616add1327827c56c521342139

    • SHA512

      fc21ba25bb351b79d8510448ad9383466ea62e5e7a7bd52cb9906b4be22be58cf6d88ec5093948a9900cfdcc7faa4ec6473054f51a95dec85cfed24fe9b6cb8f

    Score
    1/10
    behavioral4

    • Target

      Setup/TikTok Bot Pro Full Activated.exe

    • Size

      52.7MB

    • MD5

      c12d150f1d87b6bbe73fc029922eb151

    • SHA1

      eb84d92ae7f8660f477b50d130698e57d81eb326

    • SHA256

      3ad55b25d45e323f5d657ae07127852f4c3e0323bb75eed181078550545044c1

    • SHA512

      0657c2b7c3ee91b7e49f06eb80e022bd74c5dc8e8887a5e8e1c15181e2c1dabf5102f26f356ac11b245656be880a5d9c625f9b7ccf7f2ba8a20ccb19ee5123ec

    • SSDEEP

      1572864:l4dYZe6OV+O8sd9ci3/GnLtDYa1KNF2fkHADpibJHUi2Yw:adge6OkWiiv+DYa2MsADQbl2/

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral5

    • Target

      inFo/Dr.FarFar - Facebook.url

    • Size

      134B

    • MD5

      c0244bec9dd8d623f0508d09f8004349

    • SHA1

      08a68ecd39802b754ecd8afdb9f967f6804e84a6

    • SHA256

      a89b9f4684617280c8bbf7574f0ae44ca3c52ecb7b33b2b0266ee5b169fe27ac

    • SHA512

      3a4c75d0ab45192e2ba9686b8dbd613a568ff747d465f1d500661ce324b25edf59e6a81662754ce28626d5b4cbdd7f626bf14bfb19b5f0d22365710f750e7072

    Score
    1/10
    behavioral6

    • Target

      inFo/Dr.FarFar - Twitter.url

    • Size

      128B

    • MD5

      ddfa6f021ac7e0756c02ea182e8fc8ca

    • SHA1

      495802e4ef162b8e251437581c03b29d5f9a1303

    • SHA256

      26b06c326a968aa5546eacf8b0269027234a439a4e321b79c4cb8199de18eeb4

    • SHA512

      c8ef3bad4e5d226dc0bfa0ce89fcb1e68bbcf658c2d12489b64b99a38e9feb86eaafa0c0bf8267fbdb2fe61da07850195f1219d967908b92aadaf16c1dd06e99

    Score
    1/10
    behavioral7

    • Target

      inFo/Dr.FarFar - WebSite.url

    • Size

      51B

    • MD5

      7ad190beb0fb993470789038786cb669

    • SHA1

      8cac00290b8385ca77346339ed654f4256182132

    • SHA256

      4eed151d3585128533fcbb75800345713723dea77797106387305e01899d8e6c

    • SHA512

      d00068cb2b6257564e4fe55b1ba11f84333ab0562147db61b07c65625ef335bef753ce62fc3fa10135967a891ec535b5f680ebf3fa6e94d05517158f4951642d

    Score
    1/10
    behavioral8

    • Target

      inFo/For More Cracked Software.url

    • Size

      52B

    • MD5

      e050b7240d330f8b25d0cee8c99475a2

    • SHA1

      bb930b01c5a04e26ba62fc5171fb6321c54e692a

    • SHA256

      8e124a3b43c2f662805c1ef3502ac0ac052b7a616add1327827c56c521342139

    • SHA512

      fc21ba25bb351b79d8510448ad9383466ea62e5e7a7bd52cb9906b4be22be58cf6d88ec5093948a9900cfdcc7faa4ec6473054f51a95dec85cfed24fe9b6cb8f

    Score
    1/10
    behavioral9

MITRE ATT&CK Enterprise v15

Tasks