Overview

overview

6

Static

static

1001下载乐园.url

windows7-x64

1

1001下载乐园.url

windows10-2004-x64

1

Readme.js

windows7-x64

1

Readme.js

windows10-2004-x64

1

亿诺关机王.exe

windows7-x64

6

亿诺关机王.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    454f9fc270776562d2af13c3ff2a32767fadeb33ff9e66bdc373191d76fd4505

  • Size

    283KB

  • Sample

    221125-14v2ysdf4s

  • MD5

    cce683198ace80bf5d33acff517cda9f

  • SHA1

    fc5d0bf494cd8741c9eee6694f453d0ea22e4922

  • SHA256

    454f9fc270776562d2af13c3ff2a32767fadeb33ff9e66bdc373191d76fd4505

  • SHA512

    74290831b5150344867f20d72bb12ee45d9024ecf94fe3f424db718bd3d96002291962febe47c9db14d8831e5962765aaf1795a8da9bda0558f96a3cc3207e43

  • SSDEEP

    6144:KThGKFziWKWlyPPBbxTfUVL79ZfY9e/qQuu4PSIYwccEJOVZW5A+35:KNlpYPPBbtfU97bA9Gu9qICOVYA4

Score
6/10
persistence

Malware Config

Targets

    • Target

      1001下载乐园.url

    • Size

      119B

    • MD5

      09e7a20e4825dff1b611474f7ce4abf9

    • SHA1

      b4a08663d5db0f162faf261647b13c91cba7dad3

    • SHA256

      3665c1aaeb541fa2e0838533b6fafd7afd4e6efd3b9f5f3cacb3b0ed8cea24d2

    • SHA512

      f8d48c4e44af6088d08eabc139eb14ea34fb1297b76672bfb6f3ca6fa0c03474ec38c74bcdbfcc900440b6c8f301edb699ca6bda1dc673452a8193c27d82e80b

    Score
    1/10
    behavioral1behavioral2

    • Target

      Readme.htm

    • Size

      9KB

    • MD5

      0e6d22bee9d396613449def417ce0b9c

    • SHA1

      0505dc433778bce6a73dccb516b11bd134b50ef1

    • SHA256

      d35623a4acfca72b1a650f44bcbe6453b01fd87a6d80f55d971ca1c1245aa82e

    • SHA512

      ae354caee4d0fd0dd213c2a6a2902356b1f1436031ad260b9f892cc33cdb1d7c5dc73615140e44e55e85a352263a002ab1d79cfe85e63027b7fa42a30cdd9815

    • SSDEEP

      192:tt69ZOAo+W/UPoQlIt5wBmXdunuGu/uLu+uzul1QqrNA0qVACfdsQIQprcS2kLVK:m9ZEtUVuCzIytN5srfdNT52kLg

    Score
    1/10
    behavioral3behavioral4

    • Target

      亿诺关机王.exe

    • Size

      307KB

    • MD5

      7c81c0cffbb14120a5ee59f8c7461240

    • SHA1

      5f4918bee3b5d1b778a0ac0d39151e3f20530dde

    • SHA256

      94c2bd70ddd17356c77cbcce997149986f43d87002642775d796a0c96386c054

    • SHA512

      9e40ce9df3785064a3a27ad603e9c1923d0f7650b4054de93cdaa26e2c49b2c5473a68129d9f5b787f19e7fbe23ca5cf0bcb2ac63184f2d81beb19143c36b525

    • SSDEEP

      6144:uv1uDLX9XFujy0dJWHBtf6GadrdbIdawDqInIW+On7qCr2vFSxLx:ouDLtXsjy0dJW3fAuq5vkxF

    Score
    6/10
    persistence
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks