General
-
Target
tmp
-
Size
640KB
-
Sample
220818-vj15kshccp
-
MD5
34b63da0fe4a28686f422c6abd730ccb
-
SHA1
b81040dc1cf6a197f321961aa52939943e8ef52a
-
SHA256
560cb82307c00bf3af0243ac024b094c64d01e392aed166ab425d9e4db6135a9
-
SHA512
54809c52ff74c3cfed92cf3a87a3632f22d4d8b156cbc38f5692e6c646388fa60ca0cb02d769897d077dafc5704c1e47534b2634fdd8adf28f76049e586dce6a
-
SSDEEP
12288:96WkD5Ngeu+KvnkDP7GwAW8AY24vHoFN6WtljaElIK4:stZuRv2GwAWevHoFN6WtljaEyK4
Malware Config
Targets
-
-
Target
tmp
-
Size
640KB
-
MD5
34b63da0fe4a28686f422c6abd730ccb
-
SHA1
b81040dc1cf6a197f321961aa52939943e8ef52a
-
SHA256
560cb82307c00bf3af0243ac024b094c64d01e392aed166ab425d9e4db6135a9
-
SHA512
54809c52ff74c3cfed92cf3a87a3632f22d4d8b156cbc38f5692e6c646388fa60ca0cb02d769897d077dafc5704c1e47534b2634fdd8adf28f76049e586dce6a
-
SSDEEP
12288:96WkD5Ngeu+KvnkDP7GwAW8AY24vHoFN6WtljaElIK4:stZuRv2GwAWevHoFN6WtljaEyK4
Score10/10-
Generic Chinese Botnet
A botnet originating from China which is currently unnamed publicly.
-
Chinese Botnet payload
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-