a414cc326daca6def7eaada6cdb8c71be4823b7fba11025d6c81b79bfe65b261 | Triage

Sharing

General

Target

a414cc326daca6def7eaada6cdb8c71be4823b7fba11025d6c81b79bfe65b261
Size

1.2MB
Sample

221124-jtdaqada5z
MD5

110ff0c33e4a49af38f4e1234e6fb692
SHA1

4dbd89b075124547d4fc29f721c06305fabc4243
SHA256

a414cc326daca6def7eaada6cdb8c71be4823b7fba11025d6c81b79bfe65b261
SHA512

5dcad3e4dfc0d5002692a8b8e0d89eaacc0c36410313051159a3bbf4cb9377603b00daf103e949acabda1ee4e0327542e335ddde8a6d94e964b39ead61da4251
SSDEEP

24576:J5B+u1WL46Y+KGhkTqLADXOVmTdyEo1vvgbFADfL:JauA7Y+46yOVkoGxADD

Score

6^/10

Malware Config

Targets

- Target
  
  orochi_z_tc.exe
- Size
  
  1.2MB
- MD5
  
  e23af09fed6f9f9f4ec56745c0efaf8f
- SHA1
  
  d46ee9d475cba5a2fbac953c6cf912ff3ddb92b0
- SHA256
  
  42d20add87d1953f29779cf38bcba3e6f8efe43c8f39668ff6e0de5d88de9e0d
- SHA512
  
  e7ed47575ae7bfe0570e0c3a17b9194fbc10a820647f0c63ed2a92879c76208a5475e142e8d1cbfc5edd4764162b7e92c7665c8d932d1f72ba96a79fd479ef3a
- SSDEEP
  
  24576:2WnjPwxVCwvO6q0yj+pyy0+OGZnOX91hYgGlVc+SWtoRRmW9GBSLur6:2ojIxVTmtxj+AGROnhBS++SWtoRR70Sd
Score

6^/10
- Drops desktop.ini file(s)
behavioral1 behavioral2
- Target
  
  精彩库游戏@jcku.com.url
- Size
  
  269B
- MD5
  
  21c0a516db740ad8811cf68aebc231dc
- SHA1
  
  eee8acb9076da43152f8092a620872ad923e4687
- SHA256
  
  74f1a76321f685e5c317d225a0058936aabe4c2cd023d525388066d45902558b
- SHA512
  
  34e3075bd5d4ed6c231269d808fe6aced2e12733af6a13942073e84df3f728b0f02d42ae1d68bce9e9c77411e430cdc4c9256e7d8fb16e92fefe6c70da1b5b98
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4