snakebot | 88a3cc48a8bcef7873b286ecaf3a4e618dd20fd478fd9fae1634bdb5b4b79461 | Triage

Sharing

General

Target

MAMEUI64_251_25122022.7z
Size

81.0MB
Sample

241213-m4c99axrdr
MD5

e94942b018055c04bb10d3c592bd772c
SHA1

1634c40b24b6769b420b58cce21e7db327fe5943
SHA256

88a3cc48a8bcef7873b286ecaf3a4e618dd20fd478fd9fae1634bdb5b4b79461
SHA512

8ce8b116d80d21a953f1d14cce9adb1aeac3c35ae0bc079642050f79124389ed87a7a06a01d08568ed85fdbb88bdc3942ad55e0028b60390ade05f5b04be2224
SSDEEP

1572864:6Xpyy3lFs6S+0riUOvX+krKfNFPzf3PtbiRDUF+vzBjj8QG8B9TSUd+oR:gyy3llJ0ri3l0N7/eg+vz1j8QNTSNoR

Score

10^/10

snakebot discovery execution snakebot

Malware Config

Targets

- Target
  
  artwork/bgfx/chains/crt-geom/add_alpha.py
- Size
  
  737B
- MD5
  
  9bcdfbb00e1588f0c3f9a0edec071b5d
- SHA1
  
  5382d6519eb42b4a2a577f2fd539f22152cf8881
- SHA256
  
  25605c1ab89408fbc9aeb7fdcd0462cedb64532e3918edeadd456b86923318b4
- SHA512
  
  56e934e63baeaba6f95c96757f8b5d3985dbdbbaf7012872074a41e634a022ff32171d871aad64fe11ae098430e7b67eac0923314c721795c461c45de946fcf2
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  docs/release/src/emu/diimage.cpp
- Size
  
  36KB
- MD5
  
  75b271a1661f8a409d01734abf815f6b
- SHA1
  
  5b138a18f7029a7497487def470d46bd318b26b8
- SHA256
  
  f6300ae076fd0aca112ece8d34d182ee228bce5da18993ce57d3b2e196325900
- SHA512
  
  5cd12c048e84561bbc6abd06b4a5a428a87aa0b4f07c49ece5110442f7ff471032b4798904b9d68003e5aa43a605d4ee768199a0cfbb9101c3aa94f6da56463f
- SSDEEP
  
  384:k2XYVW84+5Pg82kg9xrZPS1rKt/nESElbQWIDc6tUrF4Wji5muqf:hy72v9VZPS1rKVnESEXXn8/qf
Score

1^/10
behavioral3 behavioral4
- Target
  
  docs/release/src/emu/ioport.h
- Size
  
  64KB
- MD5
  
  93b68d9fdb8bab61101e30342caedab1
- SHA1
  
  000970b737f0011b7e339a5596c497b15e74a849
- SHA256
  
  f90ffa8b330aeee08fae8111198c42244841439813e31ce907aa352817e48969
- SHA512
  
  ab2566799f359fb8e914a8b33cadde97e5f5b6a1668c59a68cc258f5fa80294aff77accf3f6dee9a387c58b890da715375c0750a7a537ec75e0ab3f304b13541
- SSDEEP
  
  1536:vvzwBdZ4gCk0cb1geX0xbIhiRfvTDuAAKTomJxt:vLuZ4g0cb1geX0xMSvTDuAAK8E
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  docs/release/src/emu/softlist.cpp
- Size
  
  29KB
- MD5
  
  23dfe4a3ad4c66d0228021480ad5ebe4
- SHA1
  
  330b2024e164aef8c69044e89ccad7cb413aa2c6
- SHA256
  
  61e3a3c19123c472a4385bf7b5de269102d9721e295f9a271080f048db755408
- SHA512
  
  c49867613f855340ac1f6914e73b268843dc8de11079e539fcdf4b80932e0b84b7d3014faf0ffe97622ccecebcc6541599391c61a55fabd220d881fca32aff16
- SSDEEP
  
  768:SiOXMvIs6RmN8Tkg4PdqIEaYqXWXqXFUJMBXX:SiOXMvIs6gN8Tkg4PdqIEaYqXWXqXFUM
Score

1^/10
behavioral7 behavioral8
- Target
  
  docs/release/src/frontend/mame/mame.cpp
- Size
  
  13KB
- MD5
  
  65777056bcc1237ac61677ef5425d1ca
- SHA1
  
  1128fd88df89c8fc2feeb6f1d79d4d49af63cc61
- SHA256
  
  213340683c27b900b804aaa4d7210ed66ca2fc9b068286a9e197ed721acd3b43
- SHA512
  
  f210ff7d0b134e9c1428e90ddb865a5f0a89532ab636ecdfcbb4ac6aec74eea70f8544a2b50ce2d985d8d22d5c3272e4cc304c48bfc00f70c4923297dc508d0d
- SSDEEP
  
  192:AYwUZgyDfpxOwje4JPleN4U1UvNyulRPRDvSQem58yXpz1x0:PwGbqE75UDuvN4Qem2Qz1x0
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  docs/release/src/frontend/mame/mameopts.cpp
- Size
  
  8KB
- MD5
  
  1c1978f1ce58b7d2ae3166a6954aecfa
- SHA1
  
  a3d4419a3c40fb55844e9b9056ab6b24897e4d39
- SHA256
  
  8dfb991933baac94be84aecc7d9adf3a32d014a911812adc8339bd19e4bc998d
- SHA512
  
  1dac69c00cf1ec866a5c8b454f3704f1b65d1b201752481baf50eb146bb5eb2bd62a2c123c285a8549057436656178508c81177c016b1a90e9a99ffcdd269e84
- SSDEEP
  
  96:SPqznd9nw3mn3hnhfhNGVvLCdWp80GUsmgOc0mgQ8xoRuLDgIjRZbn5WtbJmgF8d:vOGansmVxmoskjRFaJmjd
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  docs/release/src/lib/util/options.cpp
- Size
  
  38KB
- MD5
  
  28e1ce4d7f403894fe56fb4426617e22
- SHA1
  
  ec5c4f8ea39b2668eb4edaa11d1d6b92d3b546b2
- SHA256
  
  940a8bf505b6cad57dbc87b4be7494599724c1a4829d37b1dd0a6b01620718ec
- SHA512
  
  00a404a1923209a17db7ce9bfc23114a9c6f6cc8b2ad1f5fbed06a55b62ccc94d9352dca4d091d8608d977f3a7b520b30daa0089a32ad1d575c07c102536691e
- SSDEEP
  
  384:ehHRnz3bWeTc4r7BHa1NzffkxzqbYqwW054dq3st5QK6L4W:ehHRnz3bWeTc4r7BH0dkzSVwh8t5I
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  docs/release/src/osd/modules/lib/osdobj_common.cpp
- Size
  
  35KB
- MD5
  
  0c6dca24eed57e059e0a1086cbf62760
- SHA1
  
  4727e98fb1c5c24ee438fe51b7f642c731baecce
- SHA256
  
  4ff30f7b5b66b5ceaf39f529b551ff089499cfc21e3f39e6553203a108ec14ea
- SHA512
  
  b234c369b6a8b07de4414496f9acf7f3edbeaf0f5a9b6cc0ddc71c870ea616183d6d42841a4db8d0015a5b549b21db6506af8879ef3004cbdfa2681d7650bec6
- SSDEEP
  
  384:rPgBK8QK/XQQKRQoG8fzXN3LWxTGMHZ3C7CdCECPYvl7VvZ14AlB3nuYJJ3X+o5X:rYEuWGJ8LXv+e22d81MiYZBC8sbh
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  docs/release/src/osd/modules/render/drawd3d.cpp
- Size
  
  78KB
- MD5
  
  5481370de91102eb166532911c4a0273
- SHA1
  
  f9efb3b5b9645b1510be1663d425cca5886da4e7
- SHA256
  
  495b012144621d0028734ccb091150b50774472a5f8a1329a8903fe4dc36d6a3
- SHA512
  
  6725427b6689ca2d731ac314b8dbde439894555ad6565689a753b39c938ddd317ffa68c00193bc5311c1a3d23d0fdf52f40b307b5154ce043220f5be2daf58e5
- SSDEEP
  
  1536:glT4yGVK3tss82ssnNwh9VaZnIqD9im8uOSB9WgWnWhRsPUgUnUhT0agYqZeGkJH:glT4y64ih9VqIqD9C9WdZUD
Score

1^/10
behavioral17 behavioral18
- Target
  
  docs/release/src/osd/windows/window.cpp
- Size
  
  54KB
- MD5
  
  f65abf8be8551840624a5fa029e68959
- SHA1
  
  f2c4aa904830f85b17105949eb36573226978408
- SHA256
  
  706bee7f17716f0b661b13b2687f550c725fcc0aef7247eaf6eb1c45bf32fcc7
- SHA512
  
  758d30f60e1fc0c695befb99f293895d5660dfb8c7a0606668aaf0956106ea17bcda84a52c6c0544494088c1dbb282dd1194aa6ed64f9c214fd21896d725a4d3
- SSDEEP
  
  768:U2OPaoii04fRTVfYn5TsCMTFwqC6F3qJPTRqoRpIebCSXl:5Qavi04dFYn5TsGqCfppeSXl
Score

1^/10
behavioral19 behavioral20
- Target
  
  docs/release/src/osd/winui/help/docs/Command Line Settings.htm
- Size
  
  57KB
- MD5
  
  2e61a0b1f50d4e5e8b021bf563ff0633
- SHA1
  
  8591074329922b57ca50a9a0d92bcfbc417fa512
- SHA256
  
  f4fdb814bb1e4b9c9b27d23e46029617a07ef46b7f07eb08a6ced7cb2230084a
- SHA512
  
  0545898def25b762de323cd822b9958848d66e9828e87f6788b1550f0870385a1e6dc48c18bc235b881c334a327d20f3881552d7e17fa7c6cc7b4ae5cfa22531
- SSDEEP
  
  768:3B8/pU+TppNmmUi02ODejI7GaRaLJ0J1IJb:S/y+TXCxss7GaRaLJLJb
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  docs/release/src/osd/winui/properties.cpp
- Size
  
  127KB
- MD5
  
  177c0d58d319559901cde150ab4fc353
- SHA1
  
  5ebe460878eb34e0eb8654fcdcc0c94ca10317cf
- SHA256
  
  1336ec320c97bd46932eb51fd42a7da6b2bce16931adfd341f24a183e6a8e97e
- SHA512
  
  0275c649f9817c1bb7173465120044d6e4cf50eeb55d56ff6ac8b30fb2ab5ba2d29488c1216f9b549a1d9e1fbe33d16010f54163dddfc398185ac88d524abb9a
- SSDEEP
  
  3072:BR3fSXXsnDNMq/XbLtoSLKkKpkx2pOluG78hGhPzMKqhq19dNB3SfJJvbxCIkCUW:BRvSXXsnDNMq/XbLtoSLKkKpkx2pOlub
Score

1^/10
behavioral23 behavioral24
- Target
  
  docs/source/_ext/edit_on_github.py
- Size
  
  1KB
- MD5
  
  0f9e50635860b77ac62e43f758daa1cd
- SHA1
  
  90795a0943c192abb7867a7911f26e5c6d3246ee
- SHA256
  
  677bec1d3a5dd1b681b6819596302f162f97ecd058bf68000b0c5788861147ff
- SHA512
  
  44b9af8dc489ec287b49e9d07f7e89aeed468e65212028bdf4b789317f55d43a7e6ec691bc7e1f1a02c174d10aaa673d42561531db7bffbf9dc5298b374548be
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  docs/source/_templates/versions.html
- Size
  
  622B
- MD5
  
  8a89270bc17a6eaaca2bd88062b1cc1f
- SHA1
  
  81cb7635ca7f5a0bd5f2cd1e7c882dfd7576868d
- SHA256
  
  f661f339463c5ac9874fc33224a32e51ed859d4384b67697a09adfd0e75ca4f4
- SHA512
  
  61779b010bbeb1949a0de96518b4ef3d6b39ef84754c48a9f2d87b0715c0c2fed88c9dd541213d0eb6208998a22d6b8a706bea07701ab4191ce8b2959f753b6a
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  docs/source/conf.py
- Size
  
  8KB
- MD5
  
  e3daa910b90f3e3628d461e030728a36
- SHA1
  
  832dcbb92fc0ae4685211b55b512c8b0e2be15f6
- SHA256
  
  3222db72f2a58d22631b9e903ad93f73ca1d11868235461b4451f7d6b2d51894
- SHA512
  
  53ec02ff273ca12f92d8522e1381f83407d268fef0e4ee9845192ca762747573383625ccd8448ef274fe6892192e74979727cb4547dca69ca02e0874c1e6c60c
- SSDEEP
  
  192:Rt2LrEBrLL7trSJhjNHjFPM6iZllPBfqzzhL:RsrEBrLL7tmJhZxl29fqJ
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  plugins/boot.lua
- Size
  
  1019B
- MD5
  
  809a691069c6b8531e5a770dc3b92a69
- SHA1
  
  3732f1aeea740c2e5df51b0b51c6665028314ae6
- SHA256
  
  8466722f2a08bba1ce9a79488e2d71133c6e9364b36e9cbb07be83085b769859
- SHA512
  
  44662c9dc2173473ee96574b1a7ba3de5773706161b5a03ab56f6d2b7ef7ac335c241e4954f29429d173d529b86e1ea46acea72e7dbd351baf625ac72bb1ecfd
Score

3^/10

execution
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

snakebotsnakebot

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32