observer | ebea0eac27e2e912b1d7143acf8d8b48bee4ebdfa4924a9f85d7516d5b405f34 | Triage

Sharing

General

Target

MeetUS-main.zip
Size

3.7MB
Sample

250307-r4zkpssmv4
MD5

619988aeef5fac2571f4682bc8141296
SHA1

0c3c15d239810511c0f0b9fc5baaaaa74dae760d
SHA256

ebea0eac27e2e912b1d7143acf8d8b48bee4ebdfa4924a9f85d7516d5b405f34
SHA512

530e7a56dacd65f6ecf7ee7a0253d36629da01639b52b0d6916ab94b1b9dedcabbe43bcb293c9d74aebcb0c19d595e89b2cdd85874b775adac9e0fcd7c668042
SSDEEP

98304:X68ozMQIUEGOjFlreaNkcrckNk5LZh6rcXEyhH0L4cp:X6LzpIUK7DNkcrcQwXxULxp

Score

10^/10

observer discovery

Malware Config

Extracted

Family

observer

C2

http://91.103.252.17:8912

Targets

- Target
  
  MeetUS-main/5e4bd44e47f14.exe
- Size
  
  278KB
- MD5
  
  f700c7059dcb4db8b23e7f31ec135b7b
- SHA1
  
  5f396e6e296ad01765c0e090dbb0130698531b91
- SHA256
  
  b5e6dde637ff9dbc4dc8602c2340a4697009e2e4f1d876b9aaa6d7d0608cfcc6
- SHA512
  
  93f98687c55f6d1d6e58a42b8fe8de9ef8e5a7b0d9cefc9987d3d94b5332f1ea3672aefb97ae8aaf37a8b078a4206d83c4550f7fc2a0e58105d55f9fd3afc256
- SSDEEP
  
  6144:DOfB5WbIkhMXcZhRbW5mZceS2mlAOYE/u:K5cMsZXVAlqE2
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  MeetUS-main/ChromeSetup.exe
- Size
  
  2.1MB
- MD5
  
  24deecad6a55363b13dbbe0a92daf613
- SHA1
  
  684b30ade11fa81ec2cc7401208275299dd82370
- SHA256
  
  aaad21ddefbf9dde9b94bf5b8edca67700bc77bfa620fefe6d1f200a1e9e7903
- SHA512
  
  56f082e3dc559041a354810e0ec3a832a2f6569faff88ad8fa552da09bdbf7e545c668a3563b320a9d2cab1700545ef4d2d7b59068d8ed56d895b16914b7d5b6
- SSDEEP
  
  49152:Nh4QJ9Kr96rwHshRrPFPV8uXkBsLGj8xcZM:9TEOiD0fxJ
Score

1^/10
behavioral3 behavioral4
- Target
  
  MeetUS-main/PluginRequiments.exe
- Size
  
  2.1MB
- MD5
  
  3dadab41987ce43aeca0c09430f0a38a
- SHA1
  
  f24f29afd8de6381017a422ae332022dbd2312b4
- SHA256
  
  0b44a1854f9dc2eab5625dffc1ceb17b1e89773c9ee04802a2f40dfd834dec2c
- SHA512
  
  0fa71624e9acca7ebe0da860033bef634d51e418d4bfb2a6be5671d92130c1e52dd5decd5ac66f3fcafc1f72c6fc208b451ba4576bca9e94ceb078985867802c
- SSDEEP
  
  24576:7M7eJvXPazi4Rq+FDgPLpdH+vxLzyJq7PgPYSc4JBo1FqQn652nBsewy:78ehXPazi4RrvxLuJIPgwSc4no1FRwS
Score

1^/10
behavioral5 behavioral6
- Target
  
  MeetUS-main/PluginRequirements.exe
- Size
  
  2.1MB
- MD5
  
  84c58be6112011e6860c706301d83871
- SHA1
  
  2b6e53925abae1aa97a8942089a83cef50164bf0
- SHA256
  
  624549cb8753f6b430a101eae87f6c5d1d06feab7faa904e89783aae4cc2144a
- SHA512
  
  2738661041ab45308c84ba750e1144c030992ce14c0e83735ebcfab6e49244fb99a74398f33c217cc58047cc45858d75ec9096dd3ce911412e3cf3b330ca8a63
- SSDEEP
  
  49152:EMSESjawGl5KwBPmeX6Pdu87Druno10It5:EEjhc0Kv13t5
Score

5^/10

discovery
- Enumerates processes with tasklist
  discovery
behavioral7 behavioral8
- Target
  
  MeetUS-main/guard.exe
- Size
  
  2.1MB
- MD5
  
  a19f8dec0d45c7dcb325ad3396ddf040
- SHA1
  
  593ef8a7fab2ddd88ccb90297d94ecdc13fdaf99
- SHA256
  
  cda79e9cbec822f8de383d4b9da702def1e3e51ba6a71889a6199bf0f8903660
- SHA512
  
  23dffccc104dd7232a914cf9c4cb36e51a3fa194abbf7913088f2453025de9f59917a9711467d61a54be693fa17662a8c249c4311031833945a890753c053202
- SSDEEP
  
  49152:WC79ESQ5p5VA4qD3RKOZ5ls9QRsqJDjNM:d4KxCeNhN
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10