Overview

overview

5

Static

static

QQõ....3.exe

windows7-x64

5

QQõ....3.exe

windows10-2004-x64

5

ٷվ.url

windows7-x64

1

ٷվ.url

windows10-2004-x64

1

ڼҺ...��.url

windows7-x64

1

ڼҺ...��.url

windows10-2004-x64

1

ڼQQ...te.exe

windows7-x64

1

ڼQQ...te.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d0af1a18fa64f8fc8ed93b285774b9abf78b0ba53cd19ea8db36537d35d71d4

  • Size

    2.5MB

  • Sample

    221124-mpkqsagg89

  • MD5

    e4afa46132ba561fe592cb3dce8d0e9c

  • SHA1

    da3342a683e20522ec169e17c143713abc1bebf7

  • SHA256

    8d0af1a18fa64f8fc8ed93b285774b9abf78b0ba53cd19ea8db36537d35d71d4

  • SHA512

    32a97b92631e444040c45c46bfb8bff45f62bbce99a1bc3c4ac420e05a7da364ccbfa16a172bff2e05a06d9ad862bc88ba4cd709b7c6ba89529e682f78698beb

  • SSDEEP

    49152:rdKljFm0Nu6RqN0BJoJWq7q76QppY0CThqNKTAgh4okRL:hcjFbqeYJhq7fpYFJ4okB

Score
5/10

Malware Config

Targets

    • Target

      QQõСܼҸv21.3.exe

    • Size

      2.0MB

    • MD5

      75aad66b86b68542107ec5c9aa5704eb

    • SHA1

      a9c48fec3ae3f32a97b03754b4973d13b0ad92a8

    • SHA256

      6b51d1f8b2c246dc1320f8541bb4394d627bb165b72a50a0a3425d7878bbe5b2

    • SHA512

      e2a8d5ee59c8b9ba30d0236b88d59abf3519edc65d4e093e2f0c32c78962bcd1a42ac5e7b3eb5ade49978c9ed0444deab8f7bac2760261288e9d54158faff96f

    • SSDEEP

      49152:A6jkHrZmyBsGRa70B9vNhYX8ntZUdHA2Bh/IjiohyGR/0Y/c1:j2rZtUQXvNh+7g2Bhwj9hn/0Mc

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      ٷվ.url

    • Size

      143B

    • MD5

      a27f91b4da2d7979e43c4dc650a3ee57

    • SHA1

      a9204df6266aab8ee3384537e39aaf954ba037a3

    • SHA256

      39dd744fe12efadee8dfa5a01b595a0a753cb6901da9fb00b1c6f6a80e3c1146

    • SHA512

      4a6c845915fe45dc9ed99b0ea3e3aa769f467ca740972cd9bf5406c8063eff7f22f2a1361a27a6552a92f3434719971686265db331a5b5a0c8568557846355ce

    Score
    1/10
    behavioral3behavioral4

    • Target

      ڼҺ-hao123ַ.url

    • Size

      136B

    • MD5

      3672a1006ce0988e658cf49ab3cb4a08

    • SHA1

      ad5ff52895eda00c87b1f02f7f8bebf1706b8328

    • SHA256

      fb78252c5a279bcdd1f74e8b9b4f175c004a9c0fbf7a5b5511bc86b6d181d2ff

    • SHA512

      5012612190236424934013572d1d51d80ee4871b20c99785660087fdbcbd659593a7a6e0c64062d8e2dba5f90739869e4a3c0acb2dd257a298d50c456823b17b

    Score
    1/10
    behavioral5behavioral6

    • Target

      ڼQQܼϵиԶupdate.exe

    • Size

      727KB

    • MD5

      5e04b03bb743af69939ebc0e0ef181ff

    • SHA1

      33d18b1395354c3553bdb3fed86a885e1b8f32de

    • SHA256

      9b73a7df0651120a74d61ab770c6add90c2d7cdc9ec0e260fca2070e83c06a99

    • SHA512

      5e2dbf82149d396e8b982c4281224bb5cf96dc4295d2338568e3e270eb0f375108b8c95c0d77a560af2ac396b3d895a145cd156f8cd7ab578ad03d6b64c82ce1

    • SSDEEP

      12288:bhn7ps1sXXMCj35knZU5r8Z/Ub9V2DGw1NATzSeNpznxo4aQToVc1Yy/:bh7e1sXcCz4CnsGSNATzSeNpDxohq1J/

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Enterprise v6

Tasks