3ab51907d0c011d214b12e680e4bf1abda940d0c067336764fb5e09aa3ce0256 | Triage

Sharing

General

Target

Boost Bot [ v1.9.1 ].zip
Size

49.0MB
Sample

250201-31rlgayjal
MD5

96d0342478c18f18194325ccff5cbb40
SHA1

0fd9c0a84abfdc033b39224f9a7ad8c82cc61d2b
SHA256

3ab51907d0c011d214b12e680e4bf1abda940d0c067336764fb5e09aa3ce0256
SHA512

46084ad9b70c6b5c9d2aa59feede45fb42d40cc5a05572b051b458457f4fb65c66df96ac14193d15578452b8d95b7e050beec77eff71533c99b4097d4cf5553a
SSDEEP

786432:fV9zSlYaCm6qgYGEJcLqNq/ZjaQjMUzCUFbqzTwxzfZlxZ455JEBlRyXSCs7:SlQm6qgOoTZZMfYbqfwblx46nUlW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Boost Bot [ v1.9.1 ].zip
- Size
  
  49.0MB
- MD5
  
  96d0342478c18f18194325ccff5cbb40
- SHA1
  
  0fd9c0a84abfdc033b39224f9a7ad8c82cc61d2b
- SHA256
  
  3ab51907d0c011d214b12e680e4bf1abda940d0c067336764fb5e09aa3ce0256
- SHA512
  
  46084ad9b70c6b5c9d2aa59feede45fb42d40cc5a05572b051b458457f4fb65c66df96ac14193d15578452b8d95b7e050beec77eff71533c99b4097d4cf5553a
- SSDEEP
  
  786432:fV9zSlYaCm6qgYGEJcLqNq/ZjaQjMUzCUFbqzTwxzfZlxZ455JEBlRyXSCs7:SlQm6qgOoTZZMfYbqfwblx46nUlW
Score

1^/10
behavioral1 behavioral2
- Target
  
  Boost Bot.exe
- Size
  
  51.1MB
- MD5
  
  ba184db9a540813620391efb86f75156
- SHA1
  
  9c4350e428ccd42f355e1a6a0448205268165948
- SHA256
  
  17524eb734c8d78c07dc3ddfe6146234aeace53205517bfd01c715a3ca9abfb2
- SHA512
  
  cfb6bd95c314cbb3690f45bd620a2e511fd347257eadb7b767be4dc79cfe55ce51dd5a7517da60be85881db1dd5b6fc176d0900e8e412bfcf4bc752059efa3a6
- SSDEEP
  
  786432:/vMPYoaShVVaxycwhWTC/25TzkkDEMvcuLpdGoR81Z9EbFRB97XYxgHY9dY:sBaaVaxoCbTtEfGpwo69EJ5I6C
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4
- Target
  
  boosts.json
- Size
  
  271B
- MD5
  
  f76f308adde34c2e64e7c14229d172f9
- SHA1
  
  ac88ddc795ba59c0dffe940e96d8fe6388f96ba9
- SHA256
  
  79adb2c61925f588714262fd5df6198389a5cf730ee7b76a7592e6d97246510a
- SHA512
  
  ba1367651fc3e2dbc2bc6ddefa4a76c9951bd5f1c5f56fd3de4b58571e7be5e0d36f29b18d21c4efc11c517491453bc31c3254bd730634228eccfa7145809460
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  config.yaml
- Size
  
  3KB
- MD5
  
  35e9ba6ba05d63fa3cf23f9dd218712c
- SHA1
  
  ab22b8cd23c175bee212f9a766f197a2738e6a72
- SHA256
  
  068a59d20fec3dc3b0d5bedf7f6a2c686d505dec16b8988198c9d5c47f5e3718
- SHA512
  
  298618a2933ccd381cfee84637c51b976d0a18507a06c7fe278f1a5da50c9235f870216f3f150bcf49c89c9afa7485ddb83a68273ff15cd7a6abbbf2dc7c9fd0
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  data/failed_tokens.json
- Size
  
  2B
- MD5
  
  99914b932bd37a50b983c5e7c90ae93b
- SHA1
  
  bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
- SHA256
  
  44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
- SHA512
  
  27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  run.bat
- Size
  
  192B
- MD5
  
  180b822f774459ee5a6a74abf7e81e4a
- SHA1
  
  0e535886d713371bd62c3e9d48b57268f2dfabf0
- SHA256
  
  7c68d4e748350d7c1738dbec8bf1d7823e075168022283f1447799374fb969c0
- SHA512
  
  e78a5b64b33fdf425d921b0ac7809a3e0c3617630c50336e544ccaebb76aed91a936f306c7c40e29dda7420dd27e581b2a1b2e70c78ad5ce0ccc54bf3fb0c580
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral11 behavioral12
- Target
  
  setup_guide.md
- Size
  
  51B
- MD5
  
  636f41527b7a3568c38b77092729fc8e
- SHA1
  
  0c94d5aa7614e302b7de6fdc29c8b9c55bc13586
- SHA256
  
  2c3e53a2260f4752eb6e2a5fe4fe5c07f38f1700a9e9b4d7f453288036ff3cc2
- SHA512
  
  d2de3a0f2f3a3736b334ee11af327ae1e20305c0074626ba99798ba17ddaf4b9a7af1d318c36f4672aff94d5725b8a90c673fcdc3a08177c6b61097301749748
Score

3^/10

discovery
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14