Overview

overview

6

Static

static

稀饭辅�...-7.exe

windows7-x64

3

稀饭辅�...-7.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83c57af3c89d8fc5d6e1efbe5f7ef59dd64edcb9e59d9e2803874b43b60bc271

  • Size

    2.3MB

  • Sample

    221124-p7k6dahg7y

  • MD5

    46d48f64e76623e140ca5b5f06edbaac

  • SHA1

    e5b6bb2d88e7caa920979d07c27b30b11024a08f

  • SHA256

    83c57af3c89d8fc5d6e1efbe5f7ef59dd64edcb9e59d9e2803874b43b60bc271

  • SHA512

    9262ef0b8b7cf22d3eefec8767f3b8a98371150c83baff0bf708038d7719d52872d50c9652269316c691525a7fc7574e2e191194e357a6abdd25644b7479b54a

  • SSDEEP

    49152:64LK8xnMPQCqPtvxy5vNkjXnl0ApCzPsyIuOVxBIe6tWxq0LA39ZXIqHb8:64LKoMPQCytc5F+eApCzPshuOVLRwOAi

Score
6/10
persistence

Malware Config

Targets

    • Target

      稀饭辅助_去广告11-7.exe

    • Size

      2.3MB

    • MD5

      680fad43e9c2df802bcbdb3e790bc3b6

    • SHA1

      f3b1c55e89002d8fb9c8ee70a869eef3202bb7de

    • SHA256

      60dfe1b896737ae3afd404377b9b455572f60c67412f7603d539c8d84d30d038

    • SHA512

      9fc3e773e22e7e79f247b15445820b8e74c4c1b30d113b455d9883f4897faed63bf24741d6496b90c0f3acd76dc49f425eb486e9b8ea9251bd9d521991370312

    • SSDEEP

      49152:pDR0XoyeJ/VvRSNkcA5+nQuavP+V6fnyj6M4xmxMPBDpCbJHWH:p2oNV5SNkcPnmvXvX9xi+pCNH

    Score
    6/10
    persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks