0654c8c5ee06bc8187528d4e26ea7fbcb3788fb2dcd0f675535273f3fe0296a0 | Triage

Sharing

General

Target

0654c8c5ee06bc8187528d4e26ea7fbcb3788fb2dcd0f675535273f3fe0296a0
Size

619KB
Sample

241221-r1972a1pfq
MD5

72a24e60641ab3fa454ed31578bacbb6
SHA1

6c326bcedac64cad2f0fed7323048252a3a8f34f
SHA256

0654c8c5ee06bc8187528d4e26ea7fbcb3788fb2dcd0f675535273f3fe0296a0
SHA512

75207f0f56c704b09167df570496959086e2e834c208a5838f1f21645c4de96bb6da81fc626901ae5e35edac7a5468c2d33e1da874a3a6cf68e0a3bfdfc9ad44
SSDEEP

12288:cHadWlPupjraOkuqzgLk9jGBMLx22cryAgm1JXoMxRvMlNkPRzV6:4adWl2jkuqzXR6MLx2ZvzrRvMnkPRzQ

Score

3^/10

discovery execution

Malware Config

Targets

- Target
  
  0654c8c5ee06bc8187528d4e26ea7fbcb3788fb2dcd0f675535273f3fe0296a0
- Size
  
  619KB
- MD5
  
  72a24e60641ab3fa454ed31578bacbb6
- SHA1
  
  6c326bcedac64cad2f0fed7323048252a3a8f34f
- SHA256
  
  0654c8c5ee06bc8187528d4e26ea7fbcb3788fb2dcd0f675535273f3fe0296a0
- SHA512
  
  75207f0f56c704b09167df570496959086e2e834c208a5838f1f21645c4de96bb6da81fc626901ae5e35edac7a5468c2d33e1da874a3a6cf68e0a3bfdfc9ad44
- SSDEEP
  
  12288:cHadWlPupjraOkuqzgLk9jGBMLx22cryAgm1JXoMxRvMlNkPRzV6:4adWl2jkuqzXR6MLx2ZvzrRvMnkPRzQ
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  15KB
- MD5
  
  d1eefb07abc2577dfb92eb2e95a975e4
- SHA1
  
  0584c2b1807bc3bd10d4b60d2d23eeb0e6832ca2
- SHA256
  
  89dd7d646278d8bfc41d5446bdc348b9a9afaa832abf02c1396272bb7ac7262a
- SHA512
  
  eaffd9940b1df59e95e2adb79b3b6415fff5bf196ebea5fe625a6c52e552a00b44d985a36a8dd9eb33eba2425ffea4244ed07a75d87284ff51ec9f9a5e1ac65e
- SSDEEP
  
  192:E6GQtZkTktEQUrJaZfuyCnSmUsv3sY7L7cW8Y6Q86QvoT311929WtshLAzgSrX8:E6Nt+4t7uJalUnGesY7Lt8nC3/Yosa
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/OBSInstallerUtils.dll
- Size
  
  426KB
- MD5
  
  e1f825260e7224ef0526514754f7d0e8
- SHA1
  
  553d67289b039ffea5d8b59f509b9265dca2ba19
- SHA256
  
  1d84aa191fbbd842d5eeed302195579de1256a9acb980308bf31a631ac01e530
- SHA512
  
  b9453eb4ae6edbfd86e438ed0825725ab91100b8403a933bb0e359703be462f6d3d37f8bfb32eeae375a46512c619370f9802925ae0d8898f540f933b05b281f
- SSDEEP
  
  6144:+fxKVpKLECSq5oMIMOfv6yZsA1eetlFnnI8+dATAxe97TGYKh:GxgpKLEBq5oMnOfv6yWaeetlxnpgh
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  192639861e3dc2dc5c08bb8f8c7260d5
- SHA1
  
  58d30e460609e22fa0098bc27d928b689ef9af78
- SHA256
  
  23d618a0293c78ce00f7c6e6dd8b8923621da7dd1f63a070163ef4c0ec3033d6
- SHA512
  
  6e573d8b2ef6ed719e271fd0b2fd9cd451f61fc9a9459330108d6d7a65a0f64016303318cad787aa1d5334ba670d8f1c7c13074e1be550b4a316963ecc465cdc
- SSDEEP
  
  192:ljHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZqE0QPi:R/Qlt7wiij/lMRv/9V4bfr
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  data/obs-plugins/frontend-tools/scripts/clock-source.lua
- Size
  
  3KB
- MD5
  
  232c5e68892dae2a4218dc12c8de9314
- SHA1
  
  4b7c7435fda897b1afdb11dff825505799858f02
- SHA256
  
  573569d9449c38c232eb18334e9f2a6605ff34a6dc8d4820cdc26749f274339b
- SHA512
  
  2d6ee806ce5e6aa4f95ed914e703520c817bd96d88bf3406452b262e02dab22221312947131b3526b6933f7038031883747a1b867c602dc000eb99ad59deed5c
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  data/obs-plugins/frontend-tools/scripts/url-text.py
- Size
  
  2KB
- MD5
  
  5820b5ea1bca3926e4ab2ad78d441a48
- SHA1
  
  33fd263ebfaa5523e51414cd259a665ece96429b
- SHA256
  
  1e899b99e392b3779830f048466e70b0faca1d8bf541937eebb38bc1384f48a4
- SHA512
  
  6d234623d25cf8a90df779eb931d60acfb6e22e9e0ecdb18383543fc3253c4acf8f3db6d8b08a805a9fb614bfd6f4c2a845e863a2e494a26ae9c29b858d2ba56
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  data/obs-plugins/obs-browser/error.html
- Size
  
  10KB
- MD5
  
  e5aa6e510cdb841066028388b6b54889
- SHA1
  
  1a322f8c86f492fe4f28daf04600255624fe5a9e
- SHA256
  
  8cec2d1f80254bdb62b59fc1ef08cae89061ca33cf62b6f107515e2f30f2d00b
- SHA512
  
  7505c1604a06e2254a7385cf9f0b451f21391b47c3094fd70e4d0dfd0905972a2e4c2eff52a1342e0dfa55fd678b1d7c92af2ba61719b5df1e6867e122ce3d75
- SSDEEP
  
  192:CpAePKndtlJwIDi5JK868vKx9Fv7bRrjYn+PTjDMJiI9:e4QIDi5JK8gdbRrk+3I
Score

3^/10

discovery
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14