b54da987a3e8feefcf0bab2254bc4cd0bc9472db586983dfa852df5b5f31b246

Sharing

Copy URL

Twitter E-mail

General

Target

b54da987a3e8feefcf0bab2254bc4cd0bc9472db586983dfa852df5b5f31b246
Size

581KB
Sample

221125-x9a27aac99
MD5

54512469f022e236cbc32c41fb5a9d3d
SHA1

05ea990080dbe8565eaab53ee7127977e72f1c8a
SHA256

b54da987a3e8feefcf0bab2254bc4cd0bc9472db586983dfa852df5b5f31b246
SHA512

49278198f3e09beb68d15f0e158e08a5c8963bfcc0164abc5a85957661b817a039ca50b0dbe49326307037e39b7349b4a5e5d130a9a3b8f00b81305a08c11074
SSDEEP

12288:Uz1jXxHXRdEBXqGYYOVOlr23+oh2HbhY5ByldEBHBZnRRwlpKpWY:SBReXsZhcbK5BylwZn/wjil

Score

1^/10

Malware Config

Targets

- Target
  
  盘管计算书/17000风量/17000风量空调成本--2014.8.21.xls
- Size
  
  107KB
- MD5
  
  28a4aff7f0c1a6f4b675c8d36f95796d
- SHA1
  
  af0d2bd6a86915dfa90b421d88a21d598660e30a
- SHA256
  
  4f9460f9b09e51a9595162e424f5d9af9dbcaaec1bb8d8aa46571536bfbd9def
- SHA512
  
  03a87d27f14be1d9c4c1ddc24d5d2d6ef98415795c51220ed15d4c539b502bdab6cc959b2beb86f651ccf1978a51552e62680600b2509c4153f600aeac1fad61
- SSDEEP
  
  1536:0fffwNoOIUeiaLrM7fgAJLD6dA7RhlJAEElS3fd1TDotNuLh/kw7Z95gKOckB/NR:EJyHA+JbfZrnXtK
Score

1^/10
behavioral1 behavioral2
- Target
  
  盘管计算书/17000风量/AHU-4 17000前表冷（调了冷量）.pdf
- Size
  
  22KB
- MD5
  
  21ea2de4d55734f673a8e5d1437f1015
- SHA1
  
  0bb532adc91d2863356b061bcbc881caf5b0a091
- SHA256
  
  84cd854c82a3ecf76c09ad3da38fd7b1f423c3b203d84178451aa03740bfccfc
- SHA512
  
  7b16a206e1391d95a8e6deeaa844ad676dbe72b3f561b758e8059c1ed5dec56beacff8f1caf0b15d292b19597862fabb9240f1da13500e6dea74ba33d67c37a8
- SSDEEP
  
  384:yHIgBU9M7CU2kIeLwcgVJsuySPOUqwanGKAfJeN1OX7KXlcM:mU9M7Cje0cQJsiO+aGKwQiLKXln
Score

1^/10
behavioral3 behavioral4
- Target
  
  盘管计算书/17000风量/AHU-4 17000后表冷.pdf
- Size
  
  22KB
- MD5
  
  c881d5c91be0f29d32d64cc32c90e12e
- SHA1
  
  5354b30b223e132bd5cd073bc8b6fa6b436fb32d
- SHA256
  
  714ed73567673dfa78dac544d0c190a36465951da418838519305c11796ec7f7
- SHA512
  
  75a50f49b28cc0286b74cbde858ee76051a4444efbe65e1ff7fa70e79b184c1c15b0a687df52d7dc82c66d45bad7ee4fc75d949d62140c448d8af15834790e30
- SSDEEP
  
  384:yegJSM7CU2kIeLwcgVJsuySPOUqwanGKAfJedZJcAyRkI0eQycv:oSM7Cje0cQJsiO+aGKwQfJcmLyA
Score

1^/10
behavioral5 behavioral6
- Target
  
  盘管计算书/17000风量/组装间机组参数.pdf
- Size
  
  87KB
- MD5
  
  88204654dd6fef02b0d2e646941d28a2
- SHA1
  
  9c04d4264f6bd3d4d9d24c663269c9482afb0bbf
- SHA256
  
  42be82deb70ab5f78840c9bc861a4523c010adde674be2ae8a684d157a22514b
- SHA512
  
  d7bdd4d1e5d27a90210affe9bf97e00c67e32507e0c6922ff5743747c183b2fd96955be1513a8d19ec7e9557948c0aaedb401c1bf0ff0aaf473dccbe915ad5be
- SSDEEP
  
  1536:8efWSQNAfo7rjg6a/A0I0TlsXaNfyxDVt0kxXmEg0cnjswYFXyFz8rV:dJQmov/a/jT+uAptm3hnjvYFiFz8R
Score

1^/10
behavioral7 behavioral8
- Target
  
  盘管计算书/18650风量/18650风量空调成本--2014.8.21.xls
- Size
  
  108KB
- MD5
  
  c6c0c3000c86b2cbb3712b3c69882b86
- SHA1
  
  3924db436c776984eff177ed036c1e0d5d371cb2
- SHA256
  
  231203abc1e65888d82def4e25ab3796e98bbefd2e7b86806c99825511ef502e
- SHA512
  
  865c68c06ae0a9be13c1a1c206ffe880add0a85c53ab0be665e0e2abffd725e81f2832ce09b14077f59d5cc83e29335d9222cb4955e0c40f46dec4136c5ef842
- SSDEEP
  
  1536:DWWWoM4GNF37DySNiWhB4yajcMiQg04B1g0eWWwEqa9sMHyg2VDrZ95VKOckB/BF:GJfa+obfZpCedm
Score

1^/10
behavioral10 behavioral9
- Target
  
  盘管计算书/18650风量/AHU-3 18650中表冷（调了冷量，管径不够）.pdf
- Size
  
  22KB
- MD5
  
  e68e80020bea640834ae85be0a12351b
- SHA1
  
  110d4612d3763ac6eabe4a729bc0e80a159f472a
- SHA256
  
  0dbbe8b1fab437b5f6018a7fa9ac736f95728e08ded869e4a84ed68bc1c87975
- SHA512
  
  1c1a1a61353ce803a9db257484270fa3d3dfcc67d55df2aade28cf9a9ed3da8fd60b0430e44f508daaa7021d769b06ea0ee0b113c7a6a8567236954f56dfcab5
- SSDEEP
  
  384:y6M7CU2kIeLwcgVJsuySPOUqwanGKAfJeEBuTqpNZXJnP7SMqcT:FM7Cje0cQJsiO+aGKwQsuC7SMqg
Score

1^/10
behavioral11 behavioral12
- Target
  
  盘管计算书/18650风量/AHU-3 18650前表冷.pdf
- Size
  
  22KB
- MD5
  
  70d465803e80cb934d6da27b83165d4b
- SHA1
  
  a0ead57605ff9a4318a538681cf52608ef89ebc9
- SHA256
  
  16b50ccafa5f83f145067d2bbbbcf639d72e72d2f67df45fee9cbbbeff9d9244
- SHA512
  
  3e9aa7f28b232fe6a07d7c3243f479e90a23d4d84a4bbc243b74c8733cf7b945b352261e73fb1647eb1c829bcb9cd9fe182b7adf24d49d0fc1f1a31e3aa1935e
- SSDEEP
  
  384:y6nM7CU2kIeLwcgVJsuySPOUqwanGKAfJeF21OX7KXlcc:RnM7Cje0cQJsiO+aGKwQFHLKXl3
Score

1^/10
behavioral13 behavioral14
- Target
  
  盘管计算书/18650风量/AHU-3 18650后表冷（调了冷量）.pdf
- Size
  
  22KB
- MD5
  
  9d5b3c31ae20f5cde5868f3be80f21fa
- SHA1
  
  8e2d520f0dd28ef48a13cf180acb6249f2c0ee39
- SHA256
  
  7989b2e8461575e2501e9d9db78d03308f422589859fc5fd48dbef2776264629
- SHA512
  
  c5bd28a9f08f5b946beed992eb8a1160186eca5f055b5e4bf9511b4daecf8fe972217e33e157f4b462ceb276f5be7deb4eaad4b38da864ebb7d82701f0bd63fc
- SSDEEP
  
  384:yiJM7CU2kIeLwcgVJsuySPOUqwanGKAfJeV/cCcAyRkI0eQycL:TJM7Cje0cQJsiO+aGKwQdcCcmLyU
Score

1^/10
behavioral15 behavioral16
- Target
  
  盘管计算书/18650风量/注液间机组参数.pdf
- Size
  
  88KB
- MD5
  
  ccaf8b6b9472df2e5c00cd9efaa9dba7
- SHA1
  
  d2552166a5dd397f3aab94b5daa5bb2ccd6ebf03
- SHA256
  
  fdd2c59fba9f973cf47fc9ec3d3b0405b0bacda3428d77baa6e59e4b5ea955b4
- SHA512
  
  ce15bcf301ee5152501caf2c87926021552272588160d3812a2449d1c10482959c9d97e77daac6b3ed88e0d6301745dc2e2f9902cfb4b1a3a11f402cd166cafa
- SSDEEP
  
  1536:SziNLBnZfbLgb5zuEcEjthv6+EFsOJCkvGZUix:CcLBnZ3gb5zuEcEjvPEPwkQU8
Score

1^/10
behavioral17 behavioral18
- Target
  
  盘管计算书/20000风量/20000风量空调成本--2014.8.21.xls
- Size
  
  107KB
- MD5
  
  18bc7100c4523a0923f353e57830cc27
- SHA1
  
  c9a7a34ac3d54a389ad32328961c91c98847ddf1
- SHA256
  
  ad3c160a234a0940dab1ebef0b8f469be29b24b59498b10e9d7e72f5860993b5
- SHA512
  
  8587e9db3f135223861ca328c5185e1a4895d3b1af7c99756a2a0cb0ba56ed829d0cb0aec6a735d9db8ea4c50184dbcb83d00ed786c2433944d702ecc59984b1
- SSDEEP
  
  1536:LWWWoM4GNF37DySNiWhB4yajcMiQg04B1g0eWWwEqa9sMHyg2VD7Z95gKOckB/Bp:VJBQN+JbfZunXtA
Score

1^/10
behavioral19 behavioral20
- Target
  
  盘管计算书/20000风量/AHU-1 20000风量前表冷（调了冷量）.pdf
- Size
  
  22KB
- MD5
  
  eaf89a0c70a0cb4aae74e1d95e8db8d0
- SHA1
  
  f3d715ca9cd20133fd62ee5fe73065a33991dbe1
- SHA256
  
  9beafaf31d2d05b67ee4190437e0ed3375fad472207947c38407ad6fddc38fde
- SHA512
  
  05b678904bc3ba9c7492ca517e4de5b562e1c8ff7cce0ba0c359e02a89baa1af8505ac5dfece3927380ec7e2f48dc7a63b5cda616ae493f471db97125174ea6c
- SSDEEP
  
  384:yfiM7CU2kIeLwcgVJsuySPOUqwanGKAfJes+1OX7KXlcrT:CiM7Cje0cQJsiO+aGKwQCLKXlM
Score

1^/10
behavioral21 behavioral22
- Target
  
  盘管计算书/20000风量/AHU-1 20000风量后表冷.pdf
- Size
  
  22KB
- MD5
  
  5ad96eb5d2e3d8088b37630741d1ec68
- SHA1
  
  f2477794c468cf1da5b6b845cfbecf2068faf631
- SHA256
  
  19b8243fa2b2dc130a8aecced59e8bb770afbcf029bc70a9786b8d4634ed685c
- SHA512
  
  e1b128f9be165ebf676300b625996e00bf974c5fdea4c032f7312c0263d257e9a6b25afd0e92d0c7e752a7ac013b7968abccd28637717d8c4af312562d739b53
- SSDEEP
  
  384:yGalM7CU2kIeLwcgVJsuySPOUqwanGKAfJe3mcAyRkI0eQycP:wlM7Cje0cQJsiO+aGKwQ2cmLyY
Score

1^/10
behavioral23 behavioral24
- Target
  
  盘管计算书/20000风量/负极前机组参数.pdf
- Size
  
  87KB
- MD5
  
  d4d89fad39643b6d8f65210c32d8e343
- SHA1
  
  03114f430cd8c7ca99a8680dad31195f969a394f
- SHA256
  
  1a110b26cb8182f4d2b86346c22a77f9752a93cf09e96185638339c122b84de2
- SHA512
  
  676dc286b0e543fef31eafeb7b977c931ac4aa797a4384428caa55138ba37b543e193dd50653a8660f15a8aaff7836aee3b9dc0891e7979d32ec5825572d0ed1
- SSDEEP
  
  1536:VDfTSQNAfo7rjg6a/A0I0TlsXaNfyxDVt0kxXmEg0cnjswYFXyFz8k:V+Qmov/a/jT+uAptm3hnjvYFiFz8k
Score

1^/10
behavioral25 behavioral26
- Target
  
  盘管计算书/30000风量/30000风量空调成本--2014.8.21.xls
- Size
  
  107KB
- MD5
  
  90e4e28effedc5ac250a0c883e02577b
- SHA1
  
  18763ed9d825416e8c2b2dc06005fae3b5b0178b
- SHA256
  
  f509bbbfaa931adcdb39210f602365d3e1e2aedd3d91eb5977f80956d4dbea9d
- SHA512
  
  dc088b8c20ca132cf543698ee0f958d74eadfb99e5dd9c8c3716c9a9a5b9da9a0e73c84fe19d75512a0d1c5bd245db3e5ebd01f18c8fce9a7c12e0c10871bf0e
- SSDEEP
  
  1536:FtttI/ouaOkQ4hB2RtySDhJYPYR7LHDS+gHyxt3XZJ2f/0hLNem7Z95eKOckB/xs:ZJky+tbfZ/nXFb
Score

1^/10
behavioral27 behavioral28
- Target
  
  盘管计算书/30000风量/AHU-1 30000前表冷（调了冷量）.pdf
- Size
  
  22KB
- MD5
  
  e54b2d8f228732c20e61c7922339f571
- SHA1
  
  d36ecd6239acc0af2cf16a0ded3debaa68eed073
- SHA256
  
  40e49bd329630d43be8e528e83bfd26e3fc425617cb9dcad0b556e4a71a5787d
- SHA512
  
  4e10323691578f99034422d3421e241b7f8269be78774e231e700981ec9b42c0d747df39d81d014703a84a646055bb0f5ca0919ea387a53e74b08259d328c9a8
- SSDEEP
  
  384:y9mokM7CU2kIeLwcgVJsuySPOUqwanGKAfJeC1OX7KXlc5:2mbM7Cje0cQJsiO+aGKwQbLKXl6
Score

1^/10
behavioral29 behavioral30
- Target
  
  盘管计算书/30000风量/AHU-1 30000后表冷.pdf
- Size
  
  22KB
- MD5
  
  b70fd1790fe94d47ab9fba31d283bc98
- SHA1
  
  1a0c3933e55ddda8a425bafcddf2dc4bca522c02
- SHA256
  
  bb4197576a4d72660d28b39bd2d12587e365de6ea25ef1c1bd7b20e0ef27bf97
- SHA512
  
  b9cd0ba58ce94df21e017efe387d4d98b2175754264db9b9ec4c68c9e57c46ed425a6ca940384d9393413a16f179a359c4832c5d7217c97ac852d33809739953
- SSDEEP
  
  384:yFM7CU2kIeLwcgVJsuySPOUqwanGKAfJeZUcAyRkI0eQyc8:EM7Cje0cQJsiO+aGKwQZUcmLy3
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32