ee80d0878f881cc2dfb0f998d5a5e5b96141f280d462bd866a2d4ccaf3fa1fae | Triage

Sharing

General

Target

ee80d0878f881cc2dfb0f998d5a5e5b96141f280d462bd866a2d4ccaf3fa1fae
Size

97KB
Sample

221016-n9sgsshdgp
MD5

9e0313e0d84a552aa5d3f41b3c35695f
SHA1

c4b173db02d226dd5b43f466db31c0ce0bfc2be3
SHA256

ee80d0878f881cc2dfb0f998d5a5e5b96141f280d462bd866a2d4ccaf3fa1fae
SHA512

dec5344fad9242c3ea60ba6ff3993c637f165cfeaae80d0e9d5cfd258f33656764de340e736802c30d5935e9b7fbb00b14e58ef33b9a3c36c566fbd397bbd74c
SSDEEP

1536:1hvlMs4I2g+snoFDypgHmjEzxaqGMBBAe+v8ZPRvuIsi0wvDffEsUokWd+5eY:15sv2noFDUE/G4BAe+vGNDky+5n

Score

4^/10

Malware Config

Targets

- Target
  
  sguard_limit.exe
- Size
  
  162KB
- MD5
  
  ecf4797c1ac737e4c1c1452df9bcddd3
- SHA1
  
  588d586b71d8cce25196d6ee232075cbc4d9db81
- SHA256
  
  4f20a78fde906fda6f349a776cac8c91f4c18d9662181c609b6aa6450888d29d
- SHA512
  
  f419b8064f72cc6077941b336a65d7a0b4492faa388236c56a8f80f4e5caba9b6de736a212eaa8e8d077fcdd010dcbf146f398aa58c1bd3cbda466e13576fe1e
- SSDEEP
  
  3072:qj+xpIaWgm6v1qZ6aCjBiEX4qDxW1AHLZVFu:U+xpIxgm6v1qeBx4eW1AHLZV
Score

1^/10
behavioral1 behavioral2
- Target
  
  sguard_limit.sys
- Size
  
  22KB
- MD5
  
  98a249a8bbf9e9f04fb82891a2821ae0
- SHA1
  
  9f9017bc658a7e3966449a349f21c8118db1f6d1
- SHA256
  
  1e3f1a92b1773bdaa74b06471ad3b0bcccbe9b585fdc738c083f769895bee067
- SHA512
  
  73852472e3b1ec2ce7948b71474c53ade18f19a93a483080030cfca58b9b3de9ce91ce496210ece2278ce6acf02203af9dfb41d7dd92e39f88b499edc5dceb48
- SSDEEP
  
  384:nH+1Xk9W1i1opGbx8xbJuY82FclB5N2qM:nehkW1iLx8xbc2uBj4
Score

1^/10
behavioral3 behavioral4
- Target
  
  常见问题（必看）.docx
- Size
  
  25KB
- MD5
  
  44c4a6946d21c5f0a6c713c36ccd40a2
- SHA1
  
  c04cdb79f033b3778dd7ae483535c537258a5a5a
- SHA256
  
  e9d63ea8b8567298c0fa415f917e2b99a69f885f4a6149f6f2ca0feb7023eec2
- SHA512
  
  36e03d9e802aa97f439f2155017a42cb891aa78fde74aa0eff14d4e6ec76bddf1aa8f285b7ae330adeb8785a77645e61740ed73486eb5f859fe2a8bcea27b9e1
- SSDEEP
  
  768:nPsHk0UCNsE2alEwKjinGcbBVZ8C5PTYuSby9t7n2hRQl:nPsHkTcl7lEt+nPVVZjhUuSG/ARQl
Score

4^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6