Overview

overview

10

Static

static

10

liarsbar/l...dme.js

windows7-x64

3

liarsbar/l...eam.js

windows7-x64

3

liarsbar/l...DME.js

windows7-x64

3

liarsbar/l...ser.js

windows7-x64

3

liarsbar/l...dex.js

windows7-x64

3

liarsbar/l...til.js

windows7-x64

3

liarsbar/l...nts.js

windows7-x64

3

liarsbar/l...get.js

windows7-x64

3

liarsbar/l...ion.js

windows7-x64

3

liarsbar/l...ter.js

windows7-x64

3

liarsbar/l...ate.js

windows7-x64

3

liarsbar/l...ver.js

windows7-x64

3

liarsbar/l...der.js

windows7-x64

3

liarsbar/l...eam.js

windows7-x64

3

liarsbar/l...col.js

windows7-x64

3

liarsbar/l...ion.js

windows7-x64

3

liarsbar/l...ver.js

windows7-x64

3

liarsbar/l...ket.js

windows7-x64

3

liarsbar/l...ar.exe

windows7-x64

7

liarsbar/l...rst.py

windows7-x64

3

liarsbar/l...DME.js

windows7-x64

3

liarsbar/l...dex.js

windows7-x64

3

liarsbar/l...6.html

windows7-x64

3

liarsbar/l...es6.js

windows7-x64

3

liarsbar/l...es6.js

windows7-x64

3

liarsbar/l...b.html

windows7-x64

3

liarsbar/l...lib.js

windows7-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    liarsbar.rar

  • Size

    8.2MB

  • Sample

    241216-c7e8xa1qgr

  • MD5

    6531481f0ba1aaf1523f10c6d437b77e

  • SHA1

    ac476ce70c2b6699f2f9f573c22471190f2c7de4

  • SHA256

    0a066e9d3adf9fb2c8fe85358a8544c9a2828d8775a9d9fb54ea455c17941102

  • SHA512

    24103c5c2f678dff9dbcb16f562043c63a6b30578b9edb14a2c2e46d187ca66920a162462baf5dfff9cdf88f01d8d89e87df02226fc933a149154441c86ce1e8

  • SSDEEP

    98304:1vZkEEsn4hv/WkcfzqpldHn1I1uCt5RdwG6Viic7xn+LrbLfOqTQrpJM0xnuLr6u:xZFE9SmGtfn6VRcZ+DLfOwmxuL+EXfVf

Score
10/10
empyreandiscoveryexecutionpyinstaller

Malware Config

Targets

    • Target

      liarsbar/liarsbar/LBM menu/combined-stream/Readme.md

    • Size

      4KB

    • MD5

      e9a68fc87c40dd4aecf43ac474172437

    • SHA1

      0e4384a6edea7b3a580ffa5b32236b7f8b251834

    • SHA256

      f4409df97c1568d7dd74307e2bbfb9afb3c3cb9b95f0c67272d44a305f30724a

    • SHA512

      00c497bf0e46ba69f12b50bb5d7cfa98e64a5d3d0a559919f5ecdc0d4fb1060e75e9bd469f9c2ec29d9c479d9764af82ff04a779baa849feb75a0fb2b6cd81ea

    • SSDEEP

      96:JRe32JvPZCrvPgNboMP5KkZMxp8uWlsqmx:vxJvPQrvPgNboMPYkZsprWlI

    Score
    3/10
    execution
    behavioral1

    • Target

      liarsbar/liarsbar/LBM menu/combined-stream/lib/combined_stream.js

    • Size

      4KB

    • MD5

      3c61efa65d157bdd549e80b01996bf98

    • SHA1

      952620a43b9cbcb4134a3b8282dfdee87bdc5812

    • SHA256

      f3ef1f988ac4292df828cead080b96a2a97bdce1ab8f44f76345820c58ce7b59

    • SHA512

      34b2491b80fddb57e830c0ad52a9b6da9efc75655490b117a1fd8bb464959d54ac2585ddd6726975fb60a4017d33af50f844c4311f1570c09c413559b4a0699a

    • SSDEEP

      96:tDtjUqnbMpClJbWvm75q5vUh2m/OeW5v3N5n5vdRFOYhbV:tD1UqnbMpCl1Wvm70uh2m0lNxf/O+V

    Score
    3/10
    execution
    behavioral2

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/README.md

    • Size

      14KB

    • MD5

      168ede11b1f68a104b4020cbb1461e1c

    • SHA1

      d5b7d599825dab3d24ff0bb822ac62845c079321

    • SHA256

      bb979132f3cbff08ce47f36d041e18071f8f534d01f591c0b129ba7abf1e480e

    • SHA512

      6dd42ff13b0d5af47a896ef44c6a383d70ea84d8962c3806321c99ccc757aa4c7f59f0574f371229e49f9906bc5a1bdbaa269e8fdcd363982e352d088fcfbef0

    • SSDEEP

      192:bOtbYN/opUU5zvfCGyO2GCORhoJ52wO5oUe0uIQH6KY2QI+X2QA+kZwfdsbe0WTw:bIbYFE5LfClI7n0WVBE3L

    Score
    3/10
    execution
    behavioral3

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/browser.js

    • Size

      176B

    • MD5

      a5360357c30602199353294a98721d7d

    • SHA1

      44121b2e0b4e671c60d14a5e0c0bf56d2e73d72c

    • SHA256

      010da44addea1d88b2b732540c3f1fd0cbcb28926b96623d4c64222e0ead2d0e

    • SHA512

      f7cb84738fd31d4a47080ec043004a2c71e6c55ea57b21a63e40c0619b280628a0c6328bf3ffd321bfe850a0d424b73eb3fa7074603d2d1d05f5eee76477d751

    Score
    3/10
    execution
    behavioral4

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/index.js

    • Size

      376B

    • MD5

      9ecc636aa286191226b73557fa9dc210

    • SHA1

      9016498dbf20fde310ad9218ee7504585d0df28f

    • SHA256

      70a117e957f85622a6fe2be39afb9597489965fe3fe6ebefd84adb8f0d9d114a

    • SHA512

      bad5ef6a294e4ed6180b3b16506a1a7ee43d7c383840c4f3b48d6f8a444354e226c3295e1f3013360f256396f07fe1661f4aa2423f322857e67df2900a121bec

    Score
    3/10
    execution
    behavioral5

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/buffer-util.js

    • Size

      2KB

    • MD5

      8c25c9dd9f6e3773f89b9e32b7105c3d

    • SHA1

      f7118209aa3e4032abdb8180519a3cad15f0de05

    • SHA256

      8b0a45739132f82e25ea13163780abf547ccfe989267f3eb7abb475beec92da3

    • SHA512

      bc2e6d02069d7841150e43cbfafc5992e3003906363ff38dbb2ad9c8d39af99fa47e1343ababad1f72d27e3e09e022b9cafa978a57539ab3da27eda4168596de

    Score
    3/10
    execution
    behavioral6

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/constants.js

    • Size

      479B

    • MD5

      2113fd0925450023e5763dec4310a5e7

    • SHA1

      8c109e425a14dd06def4b95d0c7c2a8e8a0e9e2b

    • SHA256

      7efe5c0b888e4fde8bd9076c65b81bfd0df0963810b977d890df126929bb9190

    • SHA512

      d9a773e7e9b4bea7eb34698d2060bf515c5cd010e55960cf8df719279a5b8f7ca364f14103be7c9068930ceb83f05f4f8781b2029c919ce8601f88092708e2cd

    Score
    3/10
    execution
    behavioral7

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/event-target.js

    • Size

      7KB

    • MD5

      d02492ef6fdb35d8ad8af33f90c91fdb

    • SHA1

      923aff1a440b1bb30658a2a3f9e3a9da6ceb0eb7

    • SHA256

      c45d3c6e12d170c860c0c3f1a050aa0f864d9806632b609a1e607d675aba128c

    • SHA512

      47d8c788b7b57851e6967f9ee5a0d183800040e77f540720982e91cd992a03543f9014cbed590cdbf1c6c6a17f83e88aa3d797102db5aa6ae756e6bf4e0cdc53

    • SSDEEP

      192:vcQQOMbplFo81yEPHNjAZvIAqishOoS6n/6LCcGxFa0cnrVSL:dMDtyEKvgiUPHi4

    Score
    3/10
    execution
    behavioral8

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/extension.js

    • Size

      6KB

    • MD5

      379b482fc8622cbf8731096e70734b3d

    • SHA1

      af02e218b64fac9b65b54732ff593d62ae6bee5d

    • SHA256

      852564f0f6b460287043803eae732666fb5610f676874354fc89f06aa4e986ed

    • SHA512

      6c991272627c0a452bd536c9e3604a9601d42f0f17aece0bd712df5c0fd5a2f3abc2bd70f025fa099092b7cf3946e2ade4c21e537720b8ac266196f8c813cbe8

    • SSDEEP

      96:sKoor/fSpwCljhsZhk+FsqNB0GtPH+9xalu:sKC5BeZhkAxNyoPH+b4u

    Score
    3/10
    execution
    behavioral9

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/limiter.js

    • Size

      1KB

    • MD5

      7b8a8dc5be27a1bd1a39544cc28ae73e

    • SHA1

      d56ca70e1a496b15e1cc90ac740679d7a6c37eab

    • SHA256

      e0469d4b83f6ba764b15f80e1766b75c136fbff68f048f4c050f0b1c7f065f69

    • SHA512

      1c1731373a93c3d7f27dde4b6e06565d013ec7fdf6714ec3e1f5844752059a0790e4bc571f20301f45dc63a55e9129e304ecf3551791370c40152942caecd574

    Score
    3/10
    execution
    behavioral10

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/permessage-deflate.js

    • Size

      13KB

    • MD5

      43902a471ef6d487a55cabcf40f800a3

    • SHA1

      1399d89d25dbd6ccd295881ef50797010b8dc82c

    • SHA256

      5937e85b8fc9cfec9bf14035eea735cd3ec53b0592de74bcb354d77a5e812cf8

    • SHA512

      698e92a7877c802f5a953086b67841c776cb088efcd91c179dcc18350ae1c4ae8e38abb63b4e4f16da1fbdc21bd92894aab2060ccc9f01545442b6f2a9aa82d1

    • SSDEEP

      384:CxmZmmNBDZSD/OMiSOsbOk7OadYO7oFJn9:oiZ7ZSyZSOIOmOxOM

    Score
    3/10
    execution
    behavioral11

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/receiver.js

    • Size

      16KB

    • MD5

      40f144c1d78529b9c77f4a4e2e5af22b

    • SHA1

      2a0eb7f794219d21ed3e1d72fe80325befdd8743

    • SHA256

      7b9f6afc1fffb5c98d768d7d3d6fc1b709f28b45c6ae2682ff255075394323d9

    • SHA512

      0e4323cbd5043c1b3ce0b1852a3066f3d26b035b3ff1fbed7b5f1cedd9d7d8b1fc18cd3760def6ed7bdb76626b2ea613d7e46eda9fa32604ee028d2ecbe030e3

    • SSDEEP

      384:/M9ei81yJZgf8xBnDXehQhjgRl09Mwn9T9ovb:/M9eOZgf8xBnDXehQhjgRl0hI

    Score
    3/10
    execution
    behavioral12

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/sender.js

    • Size

      16KB

    • MD5

      ad85c61f262224f47faac6a7e9300534

    • SHA1

      c58e7492f7870905dfbdfaa825bf22685300edfd

    • SHA256

      bded1aa554dc099a1b5dd71f3dcec1d3e46abd66d4f4031ddb5c6c5ce6f19483

    • SHA512

      b36d7d50be9d097d54b95ce8653d44e383b9c3f2da9f30a095cf0e430b86f957479b5b75dc0aa5bb7967136cf654867f0c5b2a7d0292f77f0527f1b8634c10bf

    • SSDEEP

      384:KDt8gyVX1U/cV7If/WbiwKLCibvlYf5fKm/JtBkvVX1U/mBmNJ8VX1U/Y8rL2VN9:KDt8NVX1URCiblYf5fKm/JtBkvVX1U/A

    Score
    3/10
    execution
    behavioral13

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/stream.js

    • Size

      3KB

    • MD5

      d5183330212dc763bfaf1aad86ebe68a

    • SHA1

      9f7b4f39d3b7d9ee51feee4698a1eeb24000e0ae

    • SHA256

      8e666495837902abbf53713008b76e57c2c1f94eefd097f5aac7fb67723fa028

    • SHA512

      68782fa884697bb7390b5ec736cb98e1321a2e317beee64f280e888c87bba5af0b286f01178159122b56bfa9cc384116c67999adf2d4ac2246ca6af73ef316bb

    Score
    3/10
    execution
    behavioral14

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/subprotocol.js

    • Size

      1KB

    • MD5

      942d99c9806b3423d8849530687d3d37

    • SHA1

      45de2302a00451a68fb123f28faa3af105ce019f

    • SHA256

      be3f6323d6f549568577dcba9004c1479d95c65a7abb0fe0c582875b9fac0b7c

    • SHA512

      bbfa0495207e0222d726b45beff0189f8aa6351fe6068423213cbb6ee6661f2c869019a250ce81bfd13372a2d5ecd599b78f16e7950deacab78c5cec78291083

    Score
    3/10
    execution
    behavioral15

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/validation.js

    • Size

      3KB

    • MD5

      fb87bfd1186d149f39b3a1d7948b9852

    • SHA1

      2fb0c708af35d05a8206dd098d7b2d2515212333

    • SHA256

      41ce8e83d0d434132e1704895fedb91f6703a701b42d91c80954ab29b2845593

    • SHA512

      c0b96e19724df2d454bd1b21e8436b117429c03635f766fcaa561e0b76afbf681bb40e7e931ca954dfa0cff9108f52c8466cb702be88d1d424e7341219121e88

    Score
    3/10
    execution
    behavioral16

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/websocket-server.js

    • Size

      15KB

    • MD5

      e84e5e5a9bd45dfbebb127894c936fa9

    • SHA1

      c5b0c124599958540dacc2cd7358439f5c801f9e

    • SHA256

      5d0e592eb6e8b7628cbf6e2e6c703a3d6bda17139842b3a870ee9d67e336a77c

    • SHA512

      aac3558467fdc00cd3edd08ccdb97b9d5a2131c4948e144c06aebe92e51d4c8a267f270c7390495776be2829b27129b474b27e1fb1fd8b16dc5b8cb58f25fc8d

    • SSDEEP

      384:aDp3XNHX5NMpia3JUrVGdQT0qnbPEgQLDabWgD1KSZp:aDp3XV6p3J7dQTjEDL+fd

    Score
    3/10
    execution
    behavioral17

    • Target

      liarsbar/liarsbar/LBM menu/crash-stream/lib/websocket.js

    • Size

      35KB

    • MD5

      b7916a199b051b2408e26618cc443d7b

    • SHA1

      24224866ba09ed864a92b37e98347c3d1bc81087

    • SHA256

      54d9109c61ed004733718717d8cc9ffa02ec92c73f6852677a8814e847df6bfc

    • SHA512

      25a8dd43db52c5d18774e1b548fd555ecf4fcb00ebae82f45d597cd74c77e774642951461e4fe310b402d7f9e57fbae6f5f0b1a722e8b19f582d5498a840fcef

    • SSDEEP

      768:hQ4TrgTtkckOy1chyT+220GXNsdjg6N9GwMginO6xkT8YwZknerc2pd:hATkT+220GXNsdjgNgsO6xkT8YwOqz

    Score
    3/10
    execution
    behavioral18

    • Target

      liarsbar/liarsbar/LBM menu/liarsbar.exe

    • Size

      8.5MB

    • MD5

      5836f099f60cb240e246889d2ef83276

    • SHA1

      e5ced89c7af9e148e1e7fff41b2a975b95eb8be3

    • SHA256

      8ca3bb4c2a4a906094f8d17303464c3deba88f7aa2d1e8ffc82053f2332f10eb

    • SHA512

      8137565b6c77ea05d64f9be5fba291a3bb7f8aaaf07779a7e7da576c6044515ac72b25c931d9d2bbebf98f17bf63bae3c7aa6139e752138ddb67f87c4b17171c

    • SSDEEP

      196608:GREbGXVnICteEroXxCzlxZV3Gu5D4S267ygEGPt2CS3sj8kg7UKvD:+EmInEroX414S2D7qcb7pb

    Score
    7/10

    • Loads dropped DLL

    behavioral19

    • Target

      liarsbar/liarsbar/LBM menu/runfirst.py

    • Size

      17KB

    • MD5

      1108c0f4ef8fe94586896c90345075d5

    • SHA1

      39a1b426a115c91d475df75d13e83e6c72ba6294

    • SHA256

      7790481409657d5e7a22795a30ac5e0390795441aaf5fb078254c2173edf3e07

    • SHA512

      9dd561b1c45aeaf8940f7920fee4bcad8353803a25a4535d6641f4be5570194beccc6ef689fcfdee820340a73c03d8e88b66188ea5cda83cb2e169616ea419bc

    • SSDEEP

      384:GqPkuyDvGSMlWU7ps/zQJRqYfcPU3FCUQvduQGXrrrZZVOi2XeUYn7Rc5KqI:PcuyDOVlWSps/qAYfQU3YYQGXt52XebT

    Score
    3/10
    discovery
    behavioral20

    • Target

      liarsbar/liarsbar/LBM menu/tslib/README.md

    • Size

      3KB

    • MD5

      6feaf98c04772fbd0cb4ab500ad3c703

    • SHA1

      7aa5c6a6ed7ccb4fd3e22e6f5aa6636e6c91af0a

    • SHA256

      d2e199aa7eafd807ba6c3c31edaf06cc06712f30ef965687e22d315b9e8f0543

    • SHA512

      9021f610d623865c7023b69ef3dca63083f6b5978d70924e72a9df89f9e61d088778ae265a719ce30f328288942291b5ab26aead99114ab62dc0708420c3616c

    Score
    3/10
    execution
    behavioral21

    • Target

      liarsbar/liarsbar/LBM menu/tslib/modules/index.js

    • Size

      1KB

    • MD5

      2724089b42100e9a6d5782b26b9cd43a

    • SHA1

      f6a1d51250df1267da67e163469d33580e62cb93

    • SHA256

      b3a4765da2bc019c79f2c2c12b36f860e946119d976897f1ce945caf227d0468

    • SHA512

      0ea593b41b7f438ec99b8cfc57308b4a21bfd91f8cc2acbcb81eb48ad8415b2a1f0d86a61790b889c61da9babf34fd8813f4de7c24ffd37b80c00e66ba3cd1ec

    Score
    3/10
    execution
    behavioral22

    • Target

      liarsbar/liarsbar/LBM menu/tslib/tslib.es6.html

    • Size

      36B

    • MD5

      5b9030beaa547926ac803bc3e7626b63

    • SHA1

      2fbd8d667ac4b49b23033f82a32dc7b6708c1d9b

    • SHA256

      759c26504a9ccbbfcd730269c9c5ef15512cf16ba617e61a92212365e57c9f5d

    • SHA512

      6a8011db36b113d52d7173b8904f456cf06021911593bbb767e9c43e60e8eabc1c62d874ecac6b5597a3544772d9798abe491c6fc3bf5ccf542b76cf73588c3f

    Score
    3/10
    discovery
    behavioral23

    • Target

      liarsbar/liarsbar/LBM menu/tslib/tslib.es6.js

    • Size

      18KB

    • MD5

      664c230caec36a8131e92083f5090e6f

    • SHA1

      d377353ad1ef752624c661222a4b318b064f98a1

    • SHA256

      480042d65f5abdacdcf9d9ade38f9d484455be82aa34bd472bf6ab87ea0e3620

    • SHA512

      16e83275381f22395a42b6c7f60688879f625f0f24796db7d7520bcf71415a7d481cbc0f7265ad7be644f147975c64d045cd84f0d850482cd803aff35f7ebeef

    • SSDEEP

      384:baX6lL5racxNWXroXpbHcy53GgocuXsED2i1d2gJ:bU6lL5rxNWXroXyy53kXFDLdX

    Score
    3/10
    execution
    behavioral24

    • Target

      liarsbar/liarsbar/LBM menu/tslib/tslib.es6.mjs

    • Size

      17KB

    • MD5

      af49088d758bd258e129a6c36b74fd01

    • SHA1

      16f2c088b828b2cfb8d1a42707122a2f8e68d07b

    • SHA256

      0929993220938091ede542d688b0fdb87dad99a7e77678e1983c32d18a503339

    • SHA512

      abc5615cf4e39a7e8a0e1de3e84c27d15dec898d7335dbd7bc850d377ea594952d3b970369f95d7f5636cf34e80406e039d876a63164b3b9450d1cd9fcb6670f

    • SSDEEP

      384:i9Jk71FIDPZX41DVp06axJzhoZV4/muac11z0cCi7xU9:i7k71FgZX41DVpWJzhY4avcTU9

    Score
    3/10
    execution
    behavioral25

    • Target

      liarsbar/liarsbar/LBM menu/tslib/tslib.html

    • Size

      32B

    • MD5

      442aa09e10281318cdf6be9e026232b0

    • SHA1

      d1cfb0e2db3f8d42decab1311d104b923b4ad384

    • SHA256

      e14179f388a9690437165289d45ff7747f0f839538b5abec63d2dcfe21c2a5f4

    • SHA512

      e1d0af67959826971b20963844f5213816c5b9dd75e7a46bed1a61b91d76ffe997294788a42c68976fee58be160c534d9521fdd3d336018e1f88b589a3cf9f4f

    Score
    3/10
    discovery
    behavioral26

    • Target

      liarsbar/liarsbar/LBM menu/tslib/tslib.js

    • Size

      22KB

    • MD5

      2cca5871214c882cf30da3181a7d5927

    • SHA1

      55e3584ab90ffc463a8e76d8a11b89c23b11b6a5

    • SHA256

      8855865a058bc0a6df8f5db45347be041a2d6bbe1654216c51a805648c1b6e8a

    • SHA512

      ec68ffdef95975b6bd8991f61f6ba9df8a4193951f375b56425dff4e3b07cf0dce8a9c3fb2d97a9e4a3c9388e4f8c78378b3c9137acacf7568406e579a0c129a

    • SSDEEP

      384:baX62ZtQzn7dmXMTh5rtMdxHqaLXWoq572igyXIp2g4:bU6Bz7dmXMThwdxHGoM7+pi

    Score
    3/10
    execution
    behavioral27

MITRE ATT&CK Enterprise v15

Tasks

static1

pyinstallerempyrean
Score
10/10

behavioral1

execution
Score
3/10

behavioral2

execution
Score
3/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

execution
Score
3/10

behavioral6

execution
Score
3/10

behavioral7

execution
Score
3/10

behavioral8

execution
Score
3/10

behavioral9

execution
Score
3/10

behavioral10

execution
Score
3/10

behavioral11

execution
Score
3/10

behavioral12

execution
Score
3/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

execution
Score
3/10

behavioral16

execution
Score
3/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

Score
7/10

behavioral20

discovery
Score
3/10

behavioral21

execution
Score
3/10

behavioral22

execution
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

execution
Score
3/10

behavioral25

execution
Score
3/10

behavioral26

discovery
Score
3/10

behavioral27

execution
Score
3/10