General
-
Target
迪拜易彩公司女财务被轮奸致死视频流出.bat
-
Size
1.5MB
-
Sample
210922-zsrdysgdhq
-
MD5
169d4e1aa1dcb3e0ee55127e6134ba5a
-
SHA1
480819041f6d330c34414b8b4f21efef24baf60d
-
SHA256
807d64d7a9a6c61df643d03a7c8750c69e7f76bbb8ad9cb939a1af7c63f1471e
-
SHA512
1fda1a9cff8c912a6239060649f73f3cae7306c82935cb3c3e81537cc3616b6005d6052cfefafcf074a8e8533dde9573db91515b738a0565d6d9f4c52db077ba
Malware Config
Targets
-
-
Target
迪拜易彩公司女财务被轮奸致死视频流出.bat
-
Size
1.5MB
-
MD5
169d4e1aa1dcb3e0ee55127e6134ba5a
-
SHA1
480819041f6d330c34414b8b4f21efef24baf60d
-
SHA256
807d64d7a9a6c61df643d03a7c8750c69e7f76bbb8ad9cb939a1af7c63f1471e
-
SHA512
1fda1a9cff8c912a6239060649f73f3cae7306c82935cb3c3e81537cc3616b6005d6052cfefafcf074a8e8533dde9573db91515b738a0565d6d9f4c52db077ba
Score10/10-
Generic Chinese Botnet
A botnet originating from China which is currently unnamed publicly.
-
Chinese Botnet Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-