40d3db4f7a657dd55aff0ddeab025f6d996ae7358c241b6ac5158d35235b90cd

Sharing

Copy URL

Twitter E-mail

General

Target

ReBomb2-main.zip
Size

56.5MB
Sample

250101-2r9j9a1mfq
MD5

94a8cf8e624b984b40752703fd7c7485
SHA1

d2674ea44707ffc861ae64b58a891622653a9b21
SHA256

40d3db4f7a657dd55aff0ddeab025f6d996ae7358c241b6ac5158d35235b90cd
SHA512

516a38304bbbe63ae40d093c9e6a35d57d35dcfeb5b9477351477194c219f5e562fa85ce3e16f7c1dc7aa5fc883664867932897327978255c7749b70065adb07
SSDEEP

1572864:3uvclZGc6bBK+svGRQMeht6kMqkok7fl7JayxF:evCGJbIHvYQM0t6kMJXfdJ/F

Score

7^/10

Malware Config

Targets

- Target
  
  ReBomb2-main/ReBomb2.exe
- Size
  
  8.7MB
- MD5
  
  1ee2da669f0f36a4b84d994a77ed3f38
- SHA1
  
  6262d47dd5764352b48b6117fbc0e2744e4b5336
- SHA256
  
  2b48ca27d73a56ec7884e2e3223315c328f00d177662ff157993544944f0557e
- SHA512
  
  4f523b67e4a4bb3f9f0f28547990775deba430e317ba9a62ea31a0154d130cd9dc4b1d92c69e71b2427223ae5ab0865c9c488d9444211cb51f6e80bbc51d38b0
- SSDEEP
  
  196608:kTDNAQn/RNrlHAjoG+I1qpR1Ix89dyyVWY14DJDA+xmF5RzZ57:QO4ZxlHOF4FIx2cyVfCtM+xS5R
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  ReBomb2-main/ReBomb2.py
- Size
  
  3KB
- MD5
  
  77b20e4be3d6243c6a6db9cc315be59b
- SHA1
  
  66fb3afcda8efb4123f2f44995befe7f591f034a
- SHA256
  
  47dc1c198c6212f1479bfbb9ff3e091a5f2b904528dcc4212d0308808895f7a5
- SHA512
  
  4225d5f5ed95d23a6fdda3a2e06ae196538a01d22991b232466680c479574d2cfab53ba2dd0af29f7cb850bce4f2a6e11256aa817a4a3ac0122e49ba4095e6c8
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  ReBomb2-main/ReBomb2AppAYOP.py
- Size
  
  2KB
- MD5
  
  50dfa5a12f99f858bf82beab8260be62
- SHA1
  
  b65b08afbec07e607009ba034cb4bd609aa8cb7b
- SHA256
  
  1cb14c81c6c2aadcc4f9ae2f1208aca994c9423b82e399d149571355668667b6
- SHA512
  
  863e0d6c2a110bfd953bc66147459f9584f84afb059339fbf03dd91934dce57f3e4e086a080e78ec5f15d998874657782b3b4a8cca91411e4516780673ce0c43
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Rebomb2AYOP/ReBomb2App.py
- Size
  
  2KB
- MD5
  
  50dfa5a12f99f858bf82beab8260be62
- SHA1
  
  b65b08afbec07e607009ba034cb4bd609aa8cb7b
- SHA256
  
  1cb14c81c6c2aadcc4f9ae2f1208aca994c9423b82e399d149571355668667b6
- SHA512
  
  863e0d6c2a110bfd953bc66147459f9584f84afb059339fbf03dd91934dce57f3e4e086a080e78ec5f15d998874657782b3b4a8cca91411e4516780673ce0c43
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Rebomb2AYOP/ReBomb2App/ReBomb2App.exe
- Size
  
  13.1MB
- MD5
  
  8d172fac6ce41d075145a4824d3a562d
- SHA1
  
  6799715beaea5a5654aaf3277b3758b825e90622
- SHA256
  
  2d52a619c25bee331df6e750ff8029622b6de14ef00b2704935b624f0f12fac5
- SHA512
  
  88ecb5fcd939ea507965001a1e560b4dfb054cc35859d9aa5f9cbd8982baca48084ad3f5173164f5ed104cc917021942e5b7bff9c9a6bf852a4dc97a90679c17
- SSDEEP
  
  196608:gay33X6t1u+DwGcsAgeEvev58r6/avRMQtcGfcY3gtAIrPCdOiEAH72o:UHWk3meE08r6avSycGfdEWdMAbZ
Score

7^/10
- Loads dropped DLL
behavioral10 behavioral9
- Target
  
  Rebomb2AYOP/ReBomb2App/ReBomb2App.pkg
- Size
  
  12.8MB
- MD5
  
  ca1bc25150351fdad032322fa8728f00
- SHA1
  
  0af6d175a10ee1677a1a0531460c9c68061675eb
- SHA256
  
  994b12e0e299271b96db0b3611dbc65ffab93a093f4d9284241794b41bde610a
- SHA512
  
  ea64335bae11fc5df801e326192ead2869f77dae4faf30c89bbf702eec36409fc558801bf9987637e25b7a25b698311325ecad814c577203d587c15537751aed
- SSDEEP
  
  196608:P3X6t1u+DwGcsAgeEvev58r6/avRMQtcGfcY3gtAIrPCdOiEAH72o:PHWk3meE08r6avSycGfdEWdMAbZ
Score

1^/10
behavioral11
- Target
  
  Rebomb2AYOP/ReBomb2App/fonts/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10

discovery
behavioral12 behavioral13
- Target
  
  Rebomb2AYOP/ReBomb2App/fonts/__pycache__/__init__.cpython-311.pyc
- Size
  
  274B
- MD5
  
  7d9dc3107b3be1ac327413f258e53d16
- SHA1
  
  70e698df3719ceef8a810f138bacb6308b6a8e89
- SHA256
  
  b0d58ab7331007e4e9d9f0b2a805033d5f7b06f4568822520eae7e750fc7b4fb
- SHA512
  
  39463a1de91addedf5e2c3f636d18fdaebf9bb3d175a34d8b096ee97b4ac82d746274ad60908a10dac7e8e63413aca92a8ad3b6a0c061c6773f5318f127b9322
Score

3^/10

discovery
behavioral14 behavioral15
- Target
  
  Rebomb2AYOP/ReBomb2App/pyfiglet/__main__.py
- Size
  
  88B
- MD5
  
  d2e89bc79127ec20261386b3c74f3d45
- SHA1
  
  95443a2be7a3f97cbb54302bd139320b63485c6c
- SHA256
  
  2556dd011b56a2779b856f1c0c001f82e7c1f3c4a45c5755c3030062533339e9
- SHA512
  
  0c2cba724663739ab039ed59f000bf9b92eafc8a705b0c26c3dd1823a814023083af668fca3770ac2bcc577cc0a767ecd8f58e73a0fdbbaa503058397df62930
Score

3^/10

discovery
behavioral16 behavioral17
- Target
  
  Rebomb2AYOP/ReBomb2App/pyfiglet/__pycache__/__init__.cpython-311.pyc
- Size
  
  46KB
- MD5
  
  cf9a8f358835988d16552ccd944173b9
- SHA1
  
  e0d5abc01df996edd0a94e703f0b0c62331a29a2
- SHA256
  
  35467169be4dbb129dffd1d939900edfb9a822a35f98679481dd2338d343d1fd
- SHA512
  
  f25923055e7debfb0a5e4fbd8b7042559d2c8c8136630fedaecb21c250b9c6803740f7b4cb071dcdf328dcb0d3838c907c6d47f1a61c17fc21002fdc6d9e158d
- SSDEEP
  
  768:ml3uE47I8l1s1zHxEFfr+Md49heax4r94WcJL+Me4Z0p7QS2:m1uEAI812HxEFf/CeaxrM4Ub2
Score

3^/10

discovery
behavioral18 behavioral19
- Target
  
  ReBomb2AppFinal/tcl/auto.tcl
- Size
  
  21KB
- MD5
  
  08edf746b4a088cb4185c165177bd604
- SHA1
  
  395cda114f23e513eef4618da39bb86d034124bf
- SHA256
  
  517204ee436d08efc287abc97433c3bffcaf42ec6592a3009b9fd3b985ad772c
- SHA512
  
  c1727e265a6b0b54773c886a1bce73512e799ba81a4fceeeb84cdc33f5505a5e0984e96326a78c46bf142bc4652a80e213886f60eb54adf92e4dffe953c87f6b
- SSDEEP
  
  384:UqT9XC9VZv9QXCTxsCTHI7672ORgS0mzBvxFRTX7Xvt3wBTnFXhCUvuyqz:LT9XC9VZviXCVsCLI7JlmzBvTxvt3gTW
Score

1^/10
behavioral20 behavioral21
- Target
  
  ReBomb2AppFinal/tcl/clock.tcl
- Size
  
  130KB
- MD5
  
  88bb44a1364147fdd80f9fd78fbcef61
- SHA1
  
  2c3454d2669f0ca83fecf17976d599c85b86e615
- SHA256
  
  1947f8b188ab4ab6aa72ea68a58d2d9add0894fdf320f6b074eae0f198368fb7
- SHA512
  
  010b13e8a2d50521b5d7adcc5f32f7cde3f12e1053961c575d967dc6cfd368640bf45d23832e5e9c3868cdca9fe0505698f949c5557d4169353634c94aa196b5
- SSDEEP
  
  3072:Cbn4IAhYvuCg9epsArAzqpSMpWzP7ejMiIAxBPqGYkPAPaZpHYM8EN4LhVLlarXL:Cbn4IM9epsArSqpSMpWzP7ejM/eBPqG3
Score

1^/10
behavioral22 behavioral23
- Target
  
  ReBomb2AppFinal/tcl/http1.0/http.tcl
- Size
  
  9KB
- MD5
  
  c2092f8ca2d761dfa8c461076d956374
- SHA1
  
  90b4648b3bc81c30465b0be83a5db4127a1392fb
- SHA256
  
  8c474095a3aba7df5b488f3d35240d6de729e57153980c2a898728b8c407a727
- SHA512
  
  09ce408886e2ceaddf70786a15d63af9a930e70cac4286ac9ddd2094c8edcf97a2adc2d3d2659b123f88719340d3b00d9f96e9bc7c8b55192735c290e7d24683
- SSDEEP
  
  192:kipkqA3KsZMAikGJ4kIWPa95KTBoF7dg/8YNkgQ4id:TkqWKsZ8kGJ4kIWPaDFzTd
Score

3^/10

execution
behavioral24 behavioral25
- Target
  
  ReBomb2AppFinal/tcl/init.tcl
- Size
  
  25KB
- MD5
  
  982eae7a49263817d83f744ffcd00c0e
- SHA1
  
  81723dfea5576a0916abeff639debe04ce1d2c83
- SHA256
  
  331bcf0f9f635bd57c3384f2237260d074708b0975c700cfcbdb285f5f59ab1f
- SHA512
  
  31370d8390c4608e7a727eed9ee7f4c568ecb913ae50184b6f105da9c030f3b9f4b5f17968d8975b2f60df1b0c5e278512e74267c935fe4ec28f689ac6a97129
- SSDEEP
  
  768:rXugPHudKlExBG+Xg3Qonlm6ofRRECLSQDjr5vkhzx/i:ygGdKli4eonlm6offLzehNi
Score

1^/10
behavioral26 behavioral27
- Target
  
  ReBomb2AppFinal/tk/listbox.tcl
- Size
  
  14KB
- MD5
  
  804e6dce549b2e541986c0ce9e75e2d1
- SHA1
  
  c44ee09421f127cf7f4070a9508f22709d06d043
- SHA256
  
  47c75f9f8348bf8f2c086c57b97b73741218100ca38d10b8abdf2051c95b9801
- SHA512
  
  029426c4f659848772e6bb1d8182eb03d2b43adf68fcfcc1ea1c2cc7c883685deda3fffda7e071912b9bda616ad7af2e1cb48ce359700c1a22e1e53e81cae34b
- SSDEEP
  
  384:apDYV5Yupn5OcckwBv3HCpg2J8JvJBfWeZhXkz+WkHGowv:aPPkevB2JuvJ9D3XmSc
Score

1^/10
behavioral28 behavioral29
- Target
  
  ReBomb2AppFinal/tk/megawidget.tcl
- Size
  
  9KB
- MD5
  
  d83ed6ac2912900040530528a0237ab3
- SHA1
  
  2d18e42a8b96c3d71c1c6701010fdf75c1e6d5d8
- SHA256
  
  848258b946c002e2696ca3815a1589c8120af5cc41fbc11bbd9a3f5754cc21af
- SHA512
  
  00b4cd0d58029fc37820c163a4ae1dead22fb5c767bdc118659eace26d449c362189611dfb3fab1ac129fabfec2ce853ea2c10d418fae5aeb91ddc9330ff782d
- SSDEEP
  
  192:mvEEVwjVwqOpOLbkVAg/vyKEZ25YbKZbwrmQ:mvEEVwJwpALPgnyx25YGZkr3
Score

1^/10
behavioral30 behavioral31
- Target
  
  ReBomb2AppFinal/tk/menu.tcl
- Size
  
  38KB
- MD5
  
  078782cd05209012a84817ac6ef11450
- SHA1
  
  dba04f7a6cf34c54a961f25e024b6a772c2b751d
- SHA256
  
  d1283f67e435aab0bdbe9fdaa540a162043f8d652c02fe79f3843a451f123d89
- SHA512
  
  79a031f7732aee6e284cd41991049f1bb715233e011562061cd3405e5988197f6a7fb5c2bbddd1fb9b7024047f6003a2bf161fc0ec04876eff5335c3710d9562
- SSDEEP
  
  768:NKJsO5OhIzOQjJwxzire5pKVjriecYyq4Cp5Zn2:NKJsO5LOQizire54lriecYf4V
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

PowerShell

T1059.001

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32