a44f2bb54122176ed127df624275aa523446d509662da9bb961c664a417cbe9d | Triage

Sharing

General

Target

a44f2bb54122176ed127df624275aa523446d509662da9bb961c664a417cbe9d
Size

619KB
Sample

221124-z5vxxaad85
MD5

eb4e78c37578b48f4fddc27efe545102
SHA1

8b56a5b0ceeaf1a03bedc732d76e21446fd41d4e
SHA256

a44f2bb54122176ed127df624275aa523446d509662da9bb961c664a417cbe9d
SHA512

0996a76e99e9ef2b4a8663f973d5ece5bd080fa3f7b5162fd3b31193c8e7939e91c226c296269780fc6467d63d8755488d9c6234def9c1f16406aad2738ba06c
SSDEEP

12288:Gixhz5XsjPaJ0szrpiplGUBZHVmd3dNIALjBpi0H+54TY5e503PT+8:GWtWPaJ0selGYHIJsWVpiB546r9

Score

8^/10

Malware Config

Targets

- Target
  
  ppaa1101sp1/t6t8游戏网-www.t6t8.com.url
- Size
  
  109B
- MD5
  
  a0744dce0fa33a167376377d579ac825
- SHA1
  
  c1d77728d38240daf588552ccc08716b3f726777
- SHA256
  
  c0d85f6a6a75429dd188fb3222964b5b2d854150453ea2b2db45cd062470b3dd
- SHA512
  
  303723856be434b6476cbfacbe37bfdec18f7356508e24a8a4704c2b0f420cab10141d6026c17c1889216a06044ecb6d658fde01ecfccd930484468c1d38a8d2
Score

1^/10
behavioral1 behavioral2
- Target
  
  ppaa1101sp1/跑跑艾艾1101sp1.exe
- Size
  
  2.4MB
- MD5
  
  998f77aeeafe948afd2332dc3813b0d0
- SHA1
  
  873ca6cb898f720a41315f42c359a5b3755116c5
- SHA256
  
  ade6caef83a8173516177690439852cfdc92e20bbcf741a9f6f851e9c8aacbe2
- SHA512
  
  12fae2c27b87d4e22b965fac8bd75b425fc2d0c803dfd2f006957a30ddb4e20edd6fc5024269cbe076005497e307cc8f7a1a60d0e2a76fc3341db94277c61ec0
- SSDEEP
  
  24576:lMOO6fBzJuMiuaU6hhkX54k5nvVeBeCQiqElvMQKVNsDr+ClG82Zkw3BOTvEeEZx:Cn6xnvVeBKSMnVNqlG6VTceWrQA
Score

8^/10
- Executes dropped EXE
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4