sliver | 4d9de555c3f229dea590cd656c9b88cc56b19a0eb03b15dcdeba3ec4476ac6fa | Triage

Sharing

General

Target

2025-02-12_bbfb18a4924b328f9f0d5d1bcd110316_frostygoop_poet-rat_sliver_snatch
Size

14.9MB
Sample

250212-ztrfcaxram
MD5

bbfb18a4924b328f9f0d5d1bcd110316
SHA1

9acc82053930f49a760bb30358ed0a836a4ad9ed
SHA256

4d9de555c3f229dea590cd656c9b88cc56b19a0eb03b15dcdeba3ec4476ac6fa
SHA512

e95ded93a77404523a617e3fd82f89c107397b59d4d8c91046619af30abf1f59168bbc4471f6d6e70c30b6c8a782c7c25e1bc4e71a13e746607e3d9b2ef46526
SSDEEP

98304:7yEzeHDUiVoPvSidxAN+xJcdtrQcbHfQXewkKcmRSF+oUfqHxXdz8UqAYSxyunX5:mEPiar6VMcb0hnoXgBAzxRnX5

Score

10^/10

sliver discovery

Malware Config

Targets

- Target
  
  2025-02-12_bbfb18a4924b328f9f0d5d1bcd110316_frostygoop_poet-rat_sliver_snatch
- Size
  
  14.9MB
- MD5
  
  bbfb18a4924b328f9f0d5d1bcd110316
- SHA1
  
  9acc82053930f49a760bb30358ed0a836a4ad9ed
- SHA256
  
  4d9de555c3f229dea590cd656c9b88cc56b19a0eb03b15dcdeba3ec4476ac6fa
- SHA512
  
  e95ded93a77404523a617e3fd82f89c107397b59d4d8c91046619af30abf1f59168bbc4471f6d6e70c30b6c8a782c7c25e1bc4e71a13e746607e3d9b2ef46526
- SSDEEP
  
  98304:7yEzeHDUiVoPvSidxAN+xJcdtrQcbHfQXewkKcmRSF+oUfqHxXdz8UqAYSxyunX5:mEPiar6VMcb0hnoXgBAzxRnX5
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2