Overview

overview

8

Static

static

改枪.exe

windows7-x64

8

改枪.exe

windows10-2004-x64

8

最新QQ�...��.url

windows7-x64

1

最新QQ�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    add942f14b76a18189f14125eb78f7b38f4087a7f6cb2ec3c0029d733cbcf9ba

  • Size

    1.3MB

  • Sample

    221125-w5nl2sab5s

  • MD5

    49732af6bace673b41ef98b770c5d140

  • SHA1

    76ab883f5623fc62257aa42f066614b1b5526f78

  • SHA256

    add942f14b76a18189f14125eb78f7b38f4087a7f6cb2ec3c0029d733cbcf9ba

  • SHA512

    c7b16fce45f8d1a71af3f7fa9b11a7b45620e57caa960371d5e217f466c33887ae0366c99c0a066ce0422686c244c93907f47eee80e0671594aece534824c67d

  • SSDEEP

    24576:GRHEcDCASZ+Wx0V4wC7pl8EGLQRKeqJAIngDOJFj1V+irVeUC:G5t2Akx0a78EUQRKvtFpU

Score
8/10
upx

Malware Config

Targets

    • Target

      改枪.exe

    • Size

      1.5MB

    • MD5

      7d2e5610ea5fe795d2d896c4a4ee84ac

    • SHA1

      a49f440a50ab7ed0addcaefd41a0910ab51e10ba

    • SHA256

      3e1b059c68719b90399fde5f11e8e7ddbab76a7e7f9c740edb973756f7592454

    • SHA512

      ae78baf2899e8114f5ceaef58f26f796e5f086e5e6cf7e1d6050b310acc64873d9dd40401a03129436700d7de8207765158f43aa802b74294bcd98405a8c5c10

    • SSDEEP

      24576:tHsmDWASZgUx0tswA7pX8dUCwO3jEOXpaBj6643bamv28Pd3FOa8PKQOutHY6jCm:VZyA6x00p8y++jjwa8F5mR5Y6jCyE9o

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      最新QQ软件下载.url

    • Size

      126B

    • MD5

      9f36733525857a875b9aa9b0dc78da08

    • SHA1

      9b7bf725cc7a90bf159ad1958b043adb16e36a9e

    • SHA256

      97c3de62e4bf28be46b48a65a349d3ab190ebad5602b8c6e92230d0a1c432ad2

    • SHA512

      72cb12cd8257add1e58d436f69c1f9d6cbfe515a172608943f30e46db376be5873a0ba6c58f81a269b6758419a4ea6b56cfd2dc40d86b4ffab47f0e90815ac85

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks