cryptbot | c297513faa34104fe812a1e59d0f98fb6fe741d2ddb2fc424dce33ee175a8c7e | Triage

Sharing

General

Target

zk1b090h.exe
Size

6.6MB
Sample

241218-mjdehswngk
MD5

55fa72355adcbb75223ac046d578fa56
SHA1

3019ea8f26578b819d855db05feabb4f5b4dd87e
SHA256

c297513faa34104fe812a1e59d0f98fb6fe741d2ddb2fc424dce33ee175a8c7e
SHA512

31c87d2bbf585c5b382670c66c604e59016cc913a4fdba6bc8347a85ab4c88fc16ad67aa8762d681280dbccb26cd0ef3397cbd8f5e383d8a33b656a1bce48ede
SSDEEP

49152:hA9riiU/Tg653E9eb2DX44sFbjPClxfqLqJi1mxYt37re0hSZkF1KXCbxlNEsgGn:hA0065EDotFbjPyxCL80m63MqKG

Score

10^/10

cryptbot discovery spyware stealer

Malware Config

Extracted

Family

cryptbot

C2

http://home.tventjo20vs.top/lwRwtEGztSQcWvXoArFS90

Targets

- Target
  
  zk1b090h.exe
- Size
  
  6.6MB
- MD5
  
  55fa72355adcbb75223ac046d578fa56
- SHA1
  
  3019ea8f26578b819d855db05feabb4f5b4dd87e
- SHA256
  
  c297513faa34104fe812a1e59d0f98fb6fe741d2ddb2fc424dce33ee175a8c7e
- SHA512
  
  31c87d2bbf585c5b382670c66c604e59016cc913a4fdba6bc8347a85ab4c88fc16ad67aa8762d681280dbccb26cd0ef3397cbd8f5e383d8a33b656a1bce48ede
- SSDEEP
  
  49152:hA9riiU/Tg653E9eb2DX44sFbjPClxfqLqJi1mxYt37re0hSZkF1KXCbxlNEsgGn:hA0065EDotFbjPyxCL80m63MqKG
Score

10^/10

cryptbot discovery spyware stealer
- CryptBot
  CryptBot is a C++ stealer distributed widely in bundle with other software.
  spyware stealer cryptbot
- Cryptbot family
  cryptbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

spywarestealercryptbot

behavioral1

cryptbotdiscoveryspywarestealer

behavioral2

cryptbotdiscoveryspywarestealer