Overview

overview

10

Static

static

10

Qu1cksc0pe...per.py

windows10-2004-x64

3

Qu1cksc0pe...t__.py

windows10-2004-x64

3

Qu1cksc0pe...ect.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...eck.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...ers.py

windows10-2004-x64

3

Qu1cksc0pe...ole.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...her.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...tor.py

windows10-2004-x64

3

Qu1cksc0pe...ser.py

windows10-2004-x64

3

Qu1cksc0pe...ner.py

windows10-2004-x64

3

Qu1cksc0pe...ler.sh

windows10-2004-x64

3

Qu1cksc0pe...ect.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...tre.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...zer.py

windows10-2004-x64

3

Qu1cksc0pe...mic.js

windows10-2004-x64

3

Qu1cksc0pe...mic.js

windows10-2004-x64

3

Qu1cksc0pe...ion.js

windows10-2004-x64

3

Qu1cksc0pe...to.ps1

windows10-2004-x64

3

Qu1cksc0pe...ib.dll

windows10-2004-x64

1

Qu1cksc0pe...0pe.py

windows10-2004-x64

3

Qu1cksc0pe...up.ps1

windows10-2004-x64

6

Qu1cksc0pe...tup.sh

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Qu1cksc0pe-master.zip

  • Size

    14.8MB

  • Sample

    250122-x68jaasmdp

  • MD5

    44390763f5efc1870be2a5515c69520b

  • SHA1

    603dedc87cc34de86ccad1e120b08f82d8d1b930

  • SHA256

    94cf07c8355ae5bf81fcb8e064b1423af657c216318b25c2938bfa03832c45c9

  • SHA512

    97ae8329393355b69d1db5ed4c1f54a0019b2b6c8f42ad547a75fc79f49648527e4b7c4a43e0c44e02e70887133fcdf1d6fb7267299295ce5c9d4fdc8485c15a

  • SSDEEP

    393216:Mmr5sPWUQS+eFgGGH10dsUl9Y8rfgvm+OY7Yyvvu/aDxu9Vcq:Mmr5sWSRUKdsb8rxsbvYDT

Score
10/10
massloggermountlockerxmrigzeppelinexecutionminer

Malware Config

Targets

    • Target

      Qu1cksc0pe-master/Modules/VTwrapper.py

    • Size

      10KB

    • MD5

      2f78f14bc8e1f0146f00dd24204ef50c

    • SHA1

      815999f6b30a4100ee1c41d7fdc186dc6f18a8f6

    • SHA256

      f8e73b18bb48bc3e97dfeb6b516ca43b727c3ee9d83da2b5d129a33c7fc38217

    • SHA512

      2aa6ddf6b8e46db512dfc3089419b4392d21bc6fe0f94dee266f26f3aa5283736592155f7ddb2a5cfff4b2700a27809dcd0e62579c7a536686fb1388d8fcb324

    • SSDEEP

      96:2lhlvTV/2RGJsV4OoOCmRFNu+zxYW4a5Vl3vdMMJpVJJwxbrB3l+DVDaFgWPlmfA:23lF2iUPhRO+zxYW/5hnVw0iu1tdc

    Score
    3/10
    behavioral1

    • Target

      Qu1cksc0pe-master/Modules/__init__.py

    • Size

      36B

    • MD5

      e07a9bf75234faf42f7b5c0853d0eba3

    • SHA1

      7c219db23460e1d6e9351f31d76b4409ff5d479f

    • SHA256

      079153fc461559e83c37d3d81f6ef4eaf32e292bf92093c539f7c6080c9a4dc7

    • SHA512

      42fa3903fa9d334e24d962df657de3d806319bd58600a3cb5801a683db1786d78258f91e858cdb3afb5e8ab05b59fffa7e58216a1e6dae18e011fd41706f5032

    Score
    3/10
    behavioral2

    • Target

      Qu1cksc0pe-master/Modules/andro_familydetect.py

    • Size

      7KB

    • MD5

      24b746fdd74d74be278f1567acef03dc

    • SHA1

      ac08f7043906cfd2edede767c393cbef47fac88a

    • SHA256

      ac764d63c418cd4cf24234f36ac7d02eea2b93adb2ce756a1ff0105538f6d701

    • SHA512

      da46635f8cb8365ddd973a5b278f15097128dd2307926f0bebf1a9fc4e9b87fea710bad5d329627293fb6a48d5d469e703248691a35416e8841305aa6bb5853f

    • SSDEEP

      192:g9pym4WJFol3Xl7Ay/Gw/VUkaxkmz3D3bPfBvGecZ+Az8KSsWTLTO:g9r4HRXdDGx9rWoMW/C

    Score
    3/10
    behavioral3

    • Target

      Qu1cksc0pe-master/Modules/android_dynamic_analyzer.py

    • Size

      34KB

    • MD5

      4b80276d78eb6e0d62517adf4f20cfc3

    • SHA1

      5bcb14c3bc1141682bc0b499d850cfe289d4e8dc

    • SHA256

      e837925f2c0478cb9b74468e550743bb22498f754eb541223539b6d0f32d86cc

    • SHA512

      0e1dd5955d2358113a1d8b16c2402b90c7d629619925732b5ce672634e8a51bf7542b3a156e44e7c1b64c86e815e927fdcb304612045aaf7a0414d2d4ed78401

    • SSDEEP

      768:g2N+GULt5N6ElxtCMoqWojlGAdCVSC99Tod3Ip:g2MTtj6ElxsLF

    Score
    3/10
    behavioral4

    • Target

      Qu1cksc0pe-master/Modules/apkAnalyzer.py

    • Size

      29KB

    • MD5

      16a26c106853a9588e2dd17a561ac5fa

    • SHA1

      a7ea343f70ee3e10daae2df5784442b783594f48

    • SHA256

      c669d6601e774d026dda2b39eb1ad3b82511a7d28cb6565234686515d65a5a86

    • SHA512

      08b9b37fe6c707c19e0c30b48b40ef339e7383a3580eb7bfe662e367f4ca15d081d677ae82bdd473b7825539f7cbd766c66d86f2c42e1811dc74f560200d865e

    • SSDEEP

      384:5lU4AuGXue2rpbOISAiyBd95CRrdGpvdWfEdW7U653/ajXDT4TIID3O7djM+r:5lcxp2rJOISA3954jTIi3O7djM4

    Score
    3/10
    behavioral5

    • Target

      Qu1cksc0pe-master/Modules/apkSecCheck.py

    • Size

      6KB

    • MD5

      939687e2fddcb723bc4082b2747b44c2

    • SHA1

      510b8a301e43050cc3eb3af1149d3d8ca1250ad3

    • SHA256

      f484eb406b5ecb3ef66f3ed53da02180cdf29d0b9105362897897447ba854741

    • SHA512

      6eef44c9a87b5664bc9b0094316f206956d34e59ea3f1a48aa052c2b08e0012db95597a77adfcd1b1215fcd71a2962f82fcd6ba53ee4ca3685e8ccc9b2acd7a0

    • SSDEEP

      96:3ESFI7A3KA2KA8TKACUACkQDGiG0GM+GaZm86lCALgWyuvd+chbNo1u30ByEyD09:3VCDenmjQqRHmqy1gl

    Score
    3/10
    behavioral6

    • Target

      Qu1cksc0pe-master/Modules/apple_analyzer.py

    • Size

      6KB

    • MD5

      d035007d0a1b1922ffb56f58bf6e6d45

    • SHA1

      519df85cc3d333f16573d09171f2aef0c8da7afb

    • SHA256

      af5b560978e39ba6ebf6b35aca006d8973c6cebd946e81a1217499046b6a071e

    • SHA512

      c8b23e6422babcdfc869ecf8fa7fed83898fb98145f0b1e1fe7ca773cf9cae68f79ac2c54df74188233b34b091e36aa6900aa3f4ad09666cf63d0c1d5fbfe37a

    • SSDEEP

      96:Dn7eerz4hCOfiW4PvVHM/nbJQLgSnB/yq6eLTktwA0vYjVGgft6vSO+EQPVjd9/0:D7/rz4halrRQq464rTA3F

    Score
    3/10
    behavioral7

    • Target

      Qu1cksc0pe-master/Modules/archiveAnalyzer.py

    • Size

      8KB

    • MD5

      cfaf3a0b7ee58cd8f33aa354c7bbb0a4

    • SHA1

      5c0df17dd51fc069cf73f125c93b32a7475a3f23

    • SHA256

      54f5e540a5041052f142298ae892c718977c8a80ba7b41b3cf5fc8832237e10c

    • SHA512

      072683ae10aa2c49c75add18a04553f3344d8f784fcb3f9e284900e3b6aab7fb00ff1d8d891b1f871971cf3a691ca349a0aad9f60f6880a0e8bc6aca12124327

    • SSDEEP

      192:yI1C4//32GEf8bZbU4ZMJw667UozzIzzizz0:yIw4//3VtY4ZUToew0

    Score
    3/10
    behavioral8

    • Target

      Qu1cksc0pe-master/Modules/banners.py

    • Size

      7KB

    • MD5

      c5ea301c66ea2acc27629ccbc0912046

    • SHA1

      2b405f0dfbf8f6cfa3823366cd8f150497b4e5b9

    • SHA256

      272a6977b7d9765d4681bf4b749ce4b1f099ad5fe6aa40c3d27f55ce80ae916a

    • SHA512

      a27b385dc2c16636bdfea3e383dafb7a9ca2ce04e61dcc9e2c7e0b24f478aefa4cfa520d7775cba311d7a2b8dac4dab3aecf64e549ce00bee2ebde5d47507c81

    • SSDEEP

      192:3qD8002YHh/V9hSB+gxeRhRGQAdDbMav2Hg0Q:3Y8002YHh/JSMgxI2QAdP9Og0Q

    Score
    3/10
    behavioral9

    • Target

      Qu1cksc0pe-master/Modules/console.py

    • Size

      15KB

    • MD5

      6806c3cfe8163fdeb70535df3f4c730d

    • SHA1

      9a156b287b97ca5ec1cf57fa7298dfd33e602cb6

    • SHA256

      dde12e200566154fe60c27a28929607931e2e31242724b18b9025b8b2bca0d1c

    • SHA512

      2296e001c23757cd05bec4b43dfebbc42620093f4a9a577f8d9a5e506eefefe5cb7a0dfcb139dec92c64bf6804f13c716878148f3ccc2f2e2f946a618f1507d1

    • SSDEEP

      384:1V52ayRkl+6O2OcqEUqIHq1AqEvEwITNlQhhgWup:1URw1O4g6AKTNlQhiRp

    Score
    3/10
    behavioral10

    • Target

      Qu1cksc0pe-master/Modules/document_analyzer.py

    • Size

      49KB

    • MD5

      2fb2d3b41a99d98e46601fd96ab47b42

    • SHA1

      eeb9f8b95863992e5fb417100d1e3c641a8d76a1

    • SHA256

      61b06e24c677eafe4e8759c0f0beed34be388bd3ccc19476dd2550486a46343f

    • SHA512

      8f2cf44d4f8b9f87171f1d86b82db724607308f6ee443ea0c29b7bb155f96686625571d833bb3dcec667e503500e253af9c067d465ac3a4e8962c666619f19af

    • SSDEEP

      768:yqoX2Eb3hkJSE9S7iQYlrVBZwPQs6b7PDXTiTD/2FEYat97fcpYuuld2ettw+ikG:yPk/TbdnfcD/KEYat97f+

    Score
    3/10
    behavioral11

    • Target

      Qu1cksc0pe-master/Modules/domainCatcher.py

    • Size

      3KB

    • MD5

      a90e77d5da4ff6eeda583b320e7799a9

    • SHA1

      2d124b69dceb6f1c5750f3af11334a8774230cbf

    • SHA256

      b7639abed8ed2ec49df633f2176e1c0be371149dc5a960c2159540745982b327

    • SHA512

      52d861e5abbb56632ff7d10b3e2027b5fb11aee26e02d9de74f59acb353966045cbe3eb43ff8cc4a46503dd3f4f19892981e628510164c769d5f6470da640175

    Score
    3/10
    behavioral12

    • Target

      Qu1cksc0pe-master/Modules/email_analyzer.py

    • Size

      7KB

    • MD5

      7efe2705c1615ee1e645e57828db6850

    • SHA1

      e38135a01cc83576412d8c71052cb3a08319b40b

    • SHA256

      bf6626a30d35d8d3146ca199c19c88e8ec4c2319e19fbc4d90dd47b1923804ce

    • SHA512

      557f0360d495d39dd099fcde4b651d9d953a2af76bdef98514d52d4767fb1e83de34f631cadef9631f0b76b1b6ecff61282118d8d315c35690607b80962a5e26

    • SSDEEP

      192:gAz5P546AmEeZzks7DhkRzF5Y6mgQDU8DE39:gAlR4iZzJNk75YuQb4

    Score
    3/10
    behavioral13

    • Target

      Qu1cksc0pe-master/Modules/emulator.py

    • Size

      3KB

    • MD5

      ab3e7b2c096b34903363c7caac445d4e

    • SHA1

      f2ec9ec53c07946994419b12a350201fa3ac90aa

    • SHA256

      e927f838deecdc47b76c911adad18fb6e9f3c3734aae22d629893ad1fd7b3911

    • SHA512

      3d98d6e8ba036741f33fc78738257728b18c12955bec0afd0a2fdef4a054c0799a8b1bc38041768c485a5380bdef0d90ceadec94a5ef744e4874aa4325a1dee7

    Score
    3/10
    behavioral14

    • Target

      Qu1cksc0pe-master/Modules/go_binary_parser.py

    • Size

      2KB

    • MD5

      4c3948a83cb159e858b0412a15eb3897

    • SHA1

      415887ee3531492b33cb10c30679027f9d625e5d

    • SHA256

      276078b5459dbbb0356e995487ed8e4e8f0bbb86c5b104d5970e7f80849df93b

    • SHA512

      36ec21714c1dcb284265b46b2fcc2350d7242e4f7cc0f4d4a76d13152648b61daf27d722357ce25a8492082252d2fd4c51d67cef5ff22b5731a959a4dfb7d2c1

    Score
    3/10
    behavioral15

    • Target

      Qu1cksc0pe-master/Modules/hashScanner.py

    • Size

      13KB

    • MD5

      a8be0f038f5f3b5b6886ea256cd9d49b

    • SHA1

      2f9edd13221399b1696a720216d989cbcc7c1766

    • SHA256

      c47516589424f62625dff224677b829688d15cd30798997ea476dae8bdbf9bda

    • SHA512

      e915c47cc6b0e61d639468faef3815ec252bd66826106f1a2828e355aad1cb04293f63f2c86aecb36760943a8e755c0c9a41dd886fd09851fee9b84a3f9c21f9

    • SSDEEP

      192:7y4KyG6Fldb+Yb+VAhPgcFg8HdGEPje+BOtRErrK:7y4P5+YtdgA1Pjfm

    Score
    3/10
    behavioral16

    • Target

      Qu1cksc0pe-master/Modules/installer.sh

    • Size

      3KB

    • MD5

      f9c96510f4fa410d40f512d7fb0ca363

    • SHA1

      34cc7fc455fba4d24f8b0a161bd76794f5bf0f95

    • SHA256

      26bf53a4a3af421cc031ca793c53a10342c17ef60c4ee853e890a93ded72d029

    • SHA512

      5eebedb1e93ee4c5da7778e9915ee82aa5f665936e05d1351824382c896f86f773fe84dfdcf857e44b5adf474aa4c37c9840a11f520d05d8e27a2af7e1653506

    Score
    3/10
    behavioral17

    • Target

      Qu1cksc0pe-master/Modules/languageDetect.py

    • Size

      4KB

    • MD5

      06215f07f72ad12f9e11addd5f94c90e

    • SHA1

      0d14e671bdd632cf4f16ce086ed6c8d998a166f9

    • SHA256

      cfad1a60c6cbf734046cb43f16b5378e1ffdbd62e20482c744e30e7967df9b9e

    • SHA512

      abf4120aa8fcf158e6f12a2a6101ffaffc0ecb84dc57e7955ad199a792ee2cf8a3297182b9bc19e0b24df6457497cdba9dbb5e412809d78cecc15f2cf7523252

    • SSDEEP

      96:2LhvvwLbKpH2lpJHDRnfvDvLadZ9VSE/o42C+/ljL:21voLbK2RDvC9QzC+/ljL

    Score
    3/10
    behavioral18

    • Target

      Qu1cksc0pe-master/Modules/linux_dynamic_analyzer.py

    • Size

      12KB

    • MD5

      1c4db55105f99ab10040196b9610004f

    • SHA1

      97385119ce82c2df2ec79f153b95c29061ff6a7a

    • SHA256

      b92c9df65805850e034f879a044b521852d3a09eb1e6a62c295d834d7330d8d7

    • SHA512

      ad0a3ad28e91fbede14fc766b0d5b225f88119f741f47d01c9ccc5ef5ab85e07d90bfc38efe77c48cd16cfacae4eb64abf381546e070be46df6150fb825a3d98

    • SSDEEP

      192:krQ4Pe+pjFIr+/rfhyV+uZzpZ9GH+iDt31IHIwbpTnoRWg:krQ4W+je+/rfhC+uZzpCNDt31MrNnUt

    Score
    3/10
    behavioral19

    • Target

      Qu1cksc0pe-master/Modules/linux_static_analyzer.py

    • Size

      15KB

    • MD5

      e71c888bfd0f9d1f5ba807437e2e1b8d

    • SHA1

      557398b5bef91b9c195312e454b57ad52844715e

    • SHA256

      e39e1357e59e13352c7552a437caa03ad8707e64b215ddd277759a785c06a75c

    • SHA512

      7e1683267a5397d2c14014e1fc67668a13e24961b556b93d46e1a2b26a8785fa4331b1ef40a388633c0850457a50779642d074f1b67a24dbc75d9d1b9c604465

    • SSDEEP

      192:ARvtesHZ9PtYB7q3TvqLqNzS1XAjGUW1+Rx/g31ihmIoGeJ3n5zJQqyNvjoQktWD:ANUGZ9PtGm7HrI1ikNn5zJ8joQGjqz

    Score
    3/10
    behavioral20

    • Target

      Qu1cksc0pe-master/Modules/mitre.py

    • Size

      5KB

    • MD5

      b56f21f2844deec74cf3efa0f0cccc11

    • SHA1

      817c471e971fd4c930223c75cef890d907ddd643

    • SHA256

      d5618080c0b00820f0bfab361f3af45eaa1525dd1371745d5625a30ced707bdd

    • SHA512

      20b89981e2c9b1ea5b3fafc846886a63e6793a1d22908067982ca38477b193257e3b9667810e2ce168d73ea3c58e020394f9c2d7bfe7ed33c317198955e51aea

    • SSDEEP

      96:2faNC40FMM6k+TsTFJ5J+aGvFhr2FRQOWLaHJ/oj2:2SNC4o/6k+TsTFJmnvF12FRQOWLYxoS

    Score
    3/10
    behavioral21

    • Target

      Qu1cksc0pe-master/Modules/packerAnalyzer.py

    • Size

      5KB

    • MD5

      3479e1f266e16c3e4231875c1f130522

    • SHA1

      14e3132de3d583e7e3e35e67b2c5dc8673593431

    • SHA256

      a68fd756d8fb6650d20999739e35526282ac822c35caae9081a1ac6fbaa952bb

    • SHA512

      eb6b7080ec06c9c14d6f35a5cbf5c538e83fa865a97e5f85bed66fa00f78f85e12f3923d3b179b144886b3371b61ee15b76ca0e71c45a4381131fc144ae8fcb3

    • SSDEEP

      96:1iALfIkGADlz8vJJIYU4/45/Htf4jcYQoDPWupI5oBWUfIDD6Ts:1NbIkpKuV6jfPWupKRUfq6Ts

    Score
    3/10
    behavioral22

    • Target

      Qu1cksc0pe-master/Modules/pcap_analyzer.py

    • Size

      9KB

    • MD5

      f8ed34f3d5d2d2288ec6bb73fe41ed34

    • SHA1

      45dd74259ac5fbeacabea8d2d8eec14953b7a933

    • SHA256

      d97535b8d384047d90b4a0f3ee95a611d25d91b3e2a4c5534b5acc296142678b

    • SHA512

      769721768bc28477762a934946aa2ffd503a8e75f6a10be29029485386b6a55598f39d6602ea6534c7d40adbb096665e7636da3d998bac3258b3783ec4e54ed7

    • SSDEEP

      192:yJpFPC4ZrvUhO/sQN/r3C6iur3xhuT8jNx9NkpLwLX:yJpFa4xUs/ss/r3C6im3DuQjnvT

    Score
    3/10
    behavioral23

    • Target

      Qu1cksc0pe-master/Modules/powershell_analyzer.py

    • Size

      14KB

    • MD5

      cb60f7bfb4607f76a4fdfc660dd94652

    • SHA1

      ddb6544e3bf0c08e6e3cc1919af3d1ad23e01862

    • SHA256

      b480be300a1173be4da59fc363f2b0fa88d0d2d76b1b0df7e21cf328c49f5c3d

    • SHA512

      4181e765588412f2f71c8e6f65dc7091ca405495d51cc891c9c35fa6054b174f038ce8462aa1b5f3c6ec6e32272eccd6dbac3ef179d0903058970adbdeabeb02

    • SSDEEP

      192:I154btSvCQ4cVQir55uSKfw0b/nq7Kodrrq7/KPVq7LckvpV9n1nRVJwbgaOfHaU:I1548Cy+c5Ow0btpf/3C3MEKEl4

    Score
    3/10
    behavioral24

    • Target

      Qu1cksc0pe-master/Systems/Linux/FridaScripts/sc0pe_linux_dynamic.js

    • Size

      609B

    • MD5

      14d0b516d42da5f7871db0733e7c9ce2

    • SHA1

      327478f9abcbafa4e645ba9a81ceac17d986bb0e

    • SHA256

      5b15b5a7b388076dda8d32e645e6d2c606393fb2c34d269975be67fab708bc14

    • SHA512

      d2eef65ce6957e9509d18920537e4957989d15dcbd579a3e99e36b339cffd49f9cb2deb0332e220eedcaa5ddacbdb75117ac979b2a2f6d5a74b1f21ca2860999

    Score
    3/10
    execution
    behavioral25

    • Target

      Qu1cksc0pe-master/Systems/Windows/FridaScripts/sc0pe_windows_dynamic.js

    • Size

      949B

    • MD5

      04fd33c8ab7b32fe6a2a3a4887b95182

    • SHA1

      31dd418c99736e595b588643c3e94da053237ef9

    • SHA256

      0dc12f9d81d48219325a90b7e257de126582182c7aa9c8fba1c4c738ae5e0f72

    • SHA512

      a4b30e5f9dab229eb5052c2d270703bc46ed0e5eb07daa5f998b188215cf3146a79d4f1c49a48e30784ebbf0fc5237188f0ec8f37f7bee2959692642302bae8e

    Score
    3/10
    execution
    behavioral26

    • Target

      Qu1cksc0pe-master/Systems/Windows/YaraRules_Windows/detection.yara

    • Size

      367KB

    • MD5

      3d6a71c9975120fdb1f8632e397186f9

    • SHA1

      28361f3e52980c61f4e9296c5eadb0a14bc16f85

    • SHA256

      cf27646778ca453e35ac51edb43dd53cf17f98752584df13d1a1b47216a10ca9

    • SHA512

      a8575c106bceee82e18d7719327f2c681187ec62e08194de01a76ebd80d0aa47ccb41f680060956d300640a1e26f686e640d6e3c19b1b4c0db57aa956a39f61a

    • SSDEEP

      3072:MtJHg/rntoaLx8RvZ1jO7iTqEoDOYW2HfLcGAoaKTkmB5MjA3tV3edY:bTng/aimtKYBT0SRnUY

    Score
    3/10
    execution
    behavioral27

    • Target

      Qu1cksc0pe-master/Systems/Windows/YaraRules_Windows/win_isfb_auto.yara

    • Size

      88KB

    • MD5

      d60d5eed5fa7c4c6401033042aa2e27a

    • SHA1

      da3671bf7a774884d367b0d2926a5484a8e96f75

    • SHA256

      20624ea59de57ae007c0a46aa311f94eefdb4bf75d2bd2f3f504b1178f71d5a0

    • SHA512

      65edec6fe467e6b3c86564b6c65feae6239a02aed743c7f24f8f428ebc26eae693e80c0645d70f3a8aae273eec21e7317574da4196feda809a1a5fa78baea9f9

    • SSDEEP

      768:JpnRPN+TEDZMNfw5MH6hWnpxai10rwS4G1s9uIw2T6tDv6hk:hN+sSHlnvUw5Ggav/

    Score
    3/10
    execution
    behavioral28

    • Target

      Qu1cksc0pe-master/Systems/Windows/dnlib.dll

    • Size

      1.1MB

    • MD5

      d315b0502ee2e789aa531dac2350e7ca

    • SHA1

      79eab918b8fd49e7e90180c0b27cf300d8809de2

    • SHA256

      da9e56ec676e67dd28cd9c0968eb0d8b0131f9743e251940ef4982802462ebad

    • SHA512

      8edb727c276b4ce806dbef2d7da9bdea4871c66754ef5d3c116ae0892f19f12f666e7f3b66ad1f6c69bb600bb5e03feba3acadf26d263458bed90998906b92ba

    • SSDEEP

      24576:TBo7ub+PrX9LV4BoXxwUpgXI3KDebzvkMkfhAL+ov7f29YH:To1DAIGfaaP

    Score
    1/10
    behavioral29

    • Target

      Qu1cksc0pe-master/qu1cksc0pe.py

    • Size

      16KB

    • MD5

      2fb24b437368da1c1811640a70ca4a52

    • SHA1

      1bba1dedd31958011db6a81c3ef9a9f43fcd7c07

    • SHA256

      f0ee62bd427d3b4b7018b772fdf7e508844e4e3ee7a63fdeaed47ab3da21297d

    • SHA512

      e090348e963d1ff3cc775c56e4773f35711c512809f9e84e530107579c22482edc658d2691611caed644471fd4fdf09770e2e8f3bb2c5c0a53546b2b7a5a771e

    • SSDEEP

      384:lfF9xRYBOu5YPmU33Pr4f6NBZqRSaop00M2Q4PJ:lfFq6NBCx0ky

    Score
    3/10
    behavioral30

    • Target

      Qu1cksc0pe-master/setup.ps1

    • Size

      6KB

    • MD5

      451b73f87eef1b35c29f3e180265ad80

    • SHA1

      71c09f2e7e7f16efdbdcedab5bc399bdc6584521

    • SHA256

      1539d8ddb9517fec80546115a0eee6329f639a703ac2c08225a0934b8c452a6d

    • SHA512

      da9ba3ec5e5ec8e3f78ae9935f97600652d99756fb3818f4b1a3cd965ee33f1b45b2069cad2a624a3fca9151048319be597671cfe06774fdb93b6267a8744e5f

    • SSDEEP

      96:bKexbyjeWtJzVO4aU4iTEusaL0bcPbboEP6nweXaQqkg:bF10vtJzc4ayTEhobP6noeg

    Score
    6/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Using powershell.exe command.

      execution
    behavioral31

    • Target

      Qu1cksc0pe-master/setup.sh

    • Size

      3KB

    • MD5

      175cb3c0d5fe068b73fcbd4977045799

    • SHA1

      cfcb1c971648bbc4b2ae0e321db5f24e8853e7e5

    • SHA256

      282724cbf9ed55161764becb870b0fb8930f1f5b21cdb7dff8eccdc050c5da5e

    • SHA512

      850c723e133289cfd2cb0b46d33b9d1a8bfd7f4039c5bf0d2398cd114aef8681be79035e518392ecd0919b1f38e37be05f3d23ad6aed004bc649cc4aad16b497

    Score
    3/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

minerzeppelinmassloggermountlockerxmrig
Score
10/10

behavioral1

Score
3/10

behavioral2

Score
3/10

behavioral3

Score
3/10

behavioral4

Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

Score
3/10

behavioral8

Score
3/10

behavioral9

Score
3/10

behavioral10

Score
3/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

Score
3/10

behavioral14

Score
3/10

behavioral15

Score
3/10

behavioral16

Score
3/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
3/10

behavioral20

Score
3/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

execution
Score
3/10

behavioral28

execution
Score
3/10

behavioral29

Score
1/10

behavioral30

Score
3/10

behavioral31

execution
Score
6/10

behavioral32

Score
3/10