Overview

overview

4

Static

static

3

include/ht...DME.js

windows11-21h2-x64

3

include/ht...lit.py

windows11-21h2-x64

3

include/ht...est.js

windows11-21h2-x64

3

include/ht...x.html

windows11-21h2-x64

4

include/ht...t.html

windows11-21h2-x64

4

include/ht...x.html

windows11-21h2-x64

4

include/ht...t.html

windows11-21h2-x64

4

include/ht...x.html

windows11-21h2-x64

4

include/ht...t.html

windows11-21h2-x64

4

protection...64.dll

windows11-21h2-x64

1

santo/buil...64.dll

windows11-21h2-x64

1

santo/buil...64.dll

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    santo.zip

  • Size

    15.4MB

  • Sample

    241121-qp1zjsxjcq

  • MD5

    c05cc68c731b8befbe5ece0b170ea04b

  • SHA1

    3fb02a746c6504f5e16a0c0075984e9a649cd2e8

  • SHA256

    b3a27068c87773ab161c3859c1f839edb02ad34738851f3c7977017ba11b5161

  • SHA512

    b30dd758e6cc97a77890b35ccd3f189cd63e4b905593533c8dbb56d6d795fbbbbfe0a2f915049392c14b8fd4993fd56ca6126ec066f3d058fd5dc8bf9a6dad03

  • SSDEEP

    393216:Ae1iZ9EwdWk61Uv9JS23NIBFVqP3PhCxq5nZwhnqL1S:Ae895WKGWP/hCxq5ZF8

Score
4/10
discoveryexecution

Malware Config

Targets

    • Target

      include/httplib/README.md

    • Size

      22KB

    • MD5

      d29f2e563571e191aa6491cc8ed4c1db

    • SHA1

      24a3b118e37bbbd1a985f9484cc285fa0edf7110

    • SHA256

      9de688f48c4be2dd3f7f0f67d33d718a2f154b988099baa0064dd51239d85a9a

    • SHA512

      e5b19ec91e8981adbaae5b94fb30a89d9ba25c650aa9e4f57353be945d1d9be08f06a6fab8f22ec99296539f114e34b22cfd281eb543c933a27447922b20d04e

    • SSDEEP

      384:5WzZNubQeNC0KOSzWBUZN7j5NjEbTaO6+5vLt2AO+fvX4Uw9tC:5WzZNubQ1mBUZN4q2vJ2WoUw9tC

    Score
    3/10
    execution
    behavioral1

    • Target

      include/httplib/split.py

    • Size

      1KB

    • MD5

      27ab5484b713bdbea38e827a719be90c

    • SHA1

      912ca047320cfa917748ce0068dcf4bbadb73898

    • SHA256

      b0809088aab7733e50606ad8250fe851ea12ec9381e896fc12969d0e1d3e124f

    • SHA512

      0091e3a01c3d66f92916e8a7e788b6cb1d628d2fe263092f1cafd67bad2cf91302009c1f132e83d0686a06b819cb3fa9b335148073522eb4090c775432ea28a5

    Score
    3/10
    behavioral2

    • Target

      include/httplib/test/test.cc

    • Size

      208KB

    • MD5

      039faa62b783813dfdad4f312f252a6b

    • SHA1

      064e917e2dc5c52c4535b91e0ae639f886dfb6a1

    • SHA256

      f9f0d804bd773e92813feef8828c816ad9a6d7dfc26101bc0a495f4f72c4cbf6

    • SHA512

      1e2ff9fcf287877fe9fc0e5c9468b7469b10ec6a1bcb68a81f851d877a0bf75539e6064b464d68be924655f32c9e2fe754320fcb32f9a6a698ff4d8f2249fa80

    • SSDEEP

      3072:O/3YpDpcoajq/sTyXONt8F4KbAiTzTI6Iq7RgZlO:O/3YxFXOjaTzTIDkgZo

    Score
    3/10
    execution
    behavioral3

    • Target

      include/httplib/test/www/dir/index.html

    • Size

      104B

    • MD5

      aef30cf746db10a8fd09ab6bf6b701ce

    • SHA1

      208361e1686e97df83bd2a47eddb6339e6c2d0f2

    • SHA256

      c1744dc371ffe1aa631aa917e0e43a7ec53fb6097975778b43dabfe0f2d05bde

    • SHA512

      6dd3469e78d6000e20fc21c158984770fcb134ecb4c47bf0c24b5a54dda138bc8fb54ccec01d16f8eab7d653ab8bc45b7919c8258058e26948c96c2c28712f23

    Score
    4/10
    discovery
    behavioral4

    • Target

      include/httplib/test/www/dir/test.html

    • Size

      9B

    • MD5

      eac0a7ec83537763d3ba7671828d0989

    • SHA1

      5017803b9ee9b00cc52db4a18a64b71cfc076fd7

    • SHA256

      f34a7fb61a9cc01eb48c32a902d2ef73398b12d8baccaa64ae41317c1d2304cb

    • SHA512

      e6aada78bbad1b708aaa109e3d40a9ef8e2f23d27fe6c1ae371067d6792eeefb4a456d8002001eab540b86b103d73ce679a7f622aa90b44058f928a551cc5229

    Score
    4/10
    discovery
    behavioral5

    • Target

      include/httplib/test/www2/dir/index.html

    • Size

      104B

    • MD5

      aef30cf746db10a8fd09ab6bf6b701ce

    • SHA1

      208361e1686e97df83bd2a47eddb6339e6c2d0f2

    • SHA256

      c1744dc371ffe1aa631aa917e0e43a7ec53fb6097975778b43dabfe0f2d05bde

    • SHA512

      6dd3469e78d6000e20fc21c158984770fcb134ecb4c47bf0c24b5a54dda138bc8fb54ccec01d16f8eab7d653ab8bc45b7919c8258058e26948c96c2c28712f23

    Score
    4/10
    discovery
    behavioral6

    • Target

      include/httplib/test/www2/dir/test.html

    • Size

      9B

    • MD5

      eac0a7ec83537763d3ba7671828d0989

    • SHA1

      5017803b9ee9b00cc52db4a18a64b71cfc076fd7

    • SHA256

      f34a7fb61a9cc01eb48c32a902d2ef73398b12d8baccaa64ae41317c1d2304cb

    • SHA512

      e6aada78bbad1b708aaa109e3d40a9ef8e2f23d27fe6c1ae371067d6792eeefb4a456d8002001eab540b86b103d73ce679a7f622aa90b44058f928a551cc5229

    Score
    4/10
    discovery
    behavioral7

    • Target

      include/httplib/test/www3/dir/index.html

    • Size

      104B

    • MD5

      aef30cf746db10a8fd09ab6bf6b701ce

    • SHA1

      208361e1686e97df83bd2a47eddb6339e6c2d0f2

    • SHA256

      c1744dc371ffe1aa631aa917e0e43a7ec53fb6097975778b43dabfe0f2d05bde

    • SHA512

      6dd3469e78d6000e20fc21c158984770fcb134ecb4c47bf0c24b5a54dda138bc8fb54ccec01d16f8eab7d653ab8bc45b7919c8258058e26948c96c2c28712f23

    Score
    4/10
    discovery
    behavioral8

    • Target

      include/httplib/test/www3/dir/test.html

    • Size

      9B

    • MD5

      eac0a7ec83537763d3ba7671828d0989

    • SHA1

      5017803b9ee9b00cc52db4a18a64b71cfc076fd7

    • SHA256

      f34a7fb61a9cc01eb48c32a902d2ef73398b12d8baccaa64ae41317c1d2304cb

    • SHA512

      e6aada78bbad1b708aaa109e3d40a9ef8e2f23d27fe6c1ae371067d6792eeefb4a456d8002001eab540b86b103d73ce679a7f622aa90b44058f928a551cc5229

    Score
    4/10
    discovery
    behavioral9

    • Target

      protection/protect_x/SDK/obsidium64.dll

    • Size

      324KB

    • MD5

      0871abdad28adda93509c0baa346416f

    • SHA1

      fd3ab480335ee1d42cfb939cc95fbcfa3fcd7133

    • SHA256

      90f210b79538e41e21d918208665f1cbe8bd0b5a48a96431a8cf90ad505c75b8

    • SHA512

      14f48806134c1472ea82419a24632ef9de69cc6e80ed2b1c9e54b931735dadad0c4dfd48eceffe260297ecb1f9308e75a4eca01985a4f5d1cb1c6134676c1b8a

    • SSDEEP

      6144:uaaUAfzrrA3Q5svEm81s70OOSL9ZIgv7dIPvrHV6p:uaan3E3hECaSpZbDdi7V6p

    Score
    1/10
    behavioral10

    • Target

      santo/build/libcrypto-3-x64.dll

    • Size

      4.6MB

    • MD5

      2b29fefde1095bad70504c82d37f8323

    • SHA1

      2e2cff1ab2b229cbc0f266bf51a2c08ce06f58e9

    • SHA256

      5527ff18dd749687d886ef7f383463b6ce7bca66c773d6ff94f40190da853ebe

    • SHA512

      c3d52300cad66daa405a4ca44d55708131f15e32a1948018aceae1e6345d56a7c8c130f09e2b035ec8442c4070a040f6f377aea44d9e714c54c673c0d68b7c6a

    • SSDEEP

      49152:EZ18MKT1dSmj2zdfzg5BBa3dETE/9by4L38dsJpzWdJLjijzeZ6+yzJBeMzwPLIN:uuImBBc8RKjuozkueq1CPwDvt3uFFZC

    Score
    1/10
    behavioral11

    • Target

      santo/build/libssl-3-x64.dll

    • Size

      1.2MB

    • MD5

      1c009cea4ad3efac0a43cb3002436480

    • SHA1

      b5e98332c7249104a70b591adc48f6abb76c6922

    • SHA256

      c4116c20be5be6fd7af40543ea18f47ff9bc4cf295e3da0802eaf5b094bd9150

    • SHA512

      4a1255fc3d7826d2d6f3364eee7e27229b247539c2afee599ce5e278969c485573f89fafab9d051a5a5c56c27a8eed7b70afb89b605fa1450efabcb1a8134054

    • SSDEEP

      24576:ESo8NU12JWSoeF/lRDvyBedWmFDs2gLI0lwmdEVB3:Ho8hToeF/lteed8dEVB3

    Score
    1/10
    behavioral12

MITRE ATT&CK Enterprise v15

Tasks