9a6113a66e0af2be3955ec88f8a752d9d80be82d6122de7f263049feedadc814 | Triage

Sharing

General

Target

Astra-image-logger-main.zip
Size

15.9MB
Sample

241120-qec5qsxale
MD5

a49707923e0cc07c89979a60b28ed56c
SHA1

111fbb9d40422af300a26e35536e3328f4f39d7c
SHA256

9a6113a66e0af2be3955ec88f8a752d9d80be82d6122de7f263049feedadc814
SHA512

a9326de9d1d253574b95ed8253bc5c470287ae558f8b0e2dd4ec03b6d480e2bb3c5c2cc644e061a5eee28bf3b08812e602d14c8673fb3f4c2c7673d9dd99d028
SSDEEP

393216:d6pTOKxYbATd5+Ts9KT5lut30cKwVxBSFP9FiqoJAr1:d+TP2bATv+TCWItEsBcPPpoJAZ

Score

7^/10

execution pyinstaller

Malware Config

Targets

- Target
  
  Astra-image-logger-main/Astra.exe
- Size
  
  16.3MB
- MD5
  
  20c2f6afd2d1c8d46c0744e2ed602754
- SHA1
  
  ceed279e60088267b95b3ea0c34a385cc3a91b73
- SHA256
  
  2f3132fd67bf355cfa3313fa6928e7f5186022502db32ba9d4f1f5d7f74c6f53
- SHA512
  
  d689eab9d035787ce209aa165f7f74d97918b27f7258cb8cb0400b3c40687efed53f72d49be37c5e0ce5f49a6f31a6bda91e4f034ff172694f8a1578c82f7be8
- SSDEEP
  
  393216:SxdyJhoonb3pVL2Vmd6ml/m3pmMBkqQCwY9BJHdJzHfSF:SzyJ+UjpVyVmdXKmkhZN13z/SF
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  Astra-image-logger-main/c# src/QRCodeAuthFlow.cs
- Size
  
  8KB
- MD5
  
  ecf948d146b48a27e3fce3ced097c50d
- SHA1
  
  56a2ede1242be3846069796b42b3945eee846436
- SHA256
  
  348eb940a0393290d710c0a63632118d832c24786ee2bafdcc5e2f81a2845f7f
- SHA512
  
  791c967c3470b3f3b84a65409a8a59e028d1a05a595c1b3c5a1d1aad5dacf09839081a22fe4334780c55a1cf21d429e05d5f2887f895a7cab9786a3aa9983e63
- SSDEEP
  
  192:9UFEad43DWB9lm3tXcQg0+NHi/fzR6XbJudnn2:98Ead43Y9lm3pcQgq/fFmEnn2
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  Astra-image-logger-main/c# src/Structs/UserObject.cs
- Size
  
  8KB
- MD5
  
  3227e7ac7ddc1210d269199b55aa3665
- SHA1
  
  8136fda0853cd6b07444cf8e2caeb115f71b9af8
- SHA256
  
  48fe96541a6601ec29f3584ec8ebffef8d9f1fdbe52e4be4a171ea53961af6e7
- SHA512
  
  56c8c34a40766be699459793a8d491d4e88639f4a61903f81699ed059b9cd4935cd7e30dd5fadf4d191fd8f84762f5245292f00db2a4679406d43b155e7f632e
- SSDEEP
  
  192:9KaardaUWpVQCdyv+I+quVS6z71Ziw1+Z1c1vzKD5O9DX1XWF7:9KaGdhCdyv+I4SGpMjcuKch
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  Astra-image-logger-main/c# src/UserDataCollector.cs
- Size
  
  9KB
- MD5
  
  b0ccc56651c70051e3b69f921848ad71
- SHA1
  
  5b46c679bfd43466bc2b4e00d2a93b74bdca9b39
- SHA256
  
  aa70974ecb01f8b0422f3740a902c96644b8f5e8aea8a1760e2b9a3ff04f64ad
- SHA512
  
  20a21f5158fd41b01710218f203e6d305c1f3e690dd212a4dae9784ab1fa30f610cf70ad4a66dd600b56bc37fcaa5719c4e18e80530b82d76e5a17e6c79a2891
- SSDEEP
  
  96:Jo4h2nXVgz0zYUV0nvtYk5mNUmskB0+H1KFGhczNQBkGpN1DKtKI1/aS:9UFOilut5NkjH1KFGhczmgw1S
Score

3^/10

execution
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8