Overview

overview

4

Static

static

中医院�...�).xml

windows7-x64

1

中医院�...�).xml

windows10-2004-x64

1

中医院�...��.xls

windows7-x64

1

中医院�...��.xls

windows10-2004-x64

1

中医院�...��.doc

windows7-x64

4

中医院�...��.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae74e3be84ee035f08da8aabb24685b54c3604db036a317db28341c7a267ce6a

  • Size

    12.3MB

  • Sample

    221125-x9gvqsad36

  • MD5

    b1faa8e7d21d860e10f669fe7cef2ea1

  • SHA1

    b4ec4b7f1d7eed2fbb6e51d90d9e333d12038918

  • SHA256

    ae74e3be84ee035f08da8aabb24685b54c3604db036a317db28341c7a267ce6a

  • SHA512

    3adb9f9f0b839755666cd5c2d731f28032c4b49a6646fbda30ea456fb4ba45dcfcdb3116d4191c0c39b2f10e9779e77d5b3df8e1ab743754d7e3c1611134b9b3

  • SSDEEP

    196608:UJJtZ2KrfrixBsJRROdlwxp++PT6nK9SwoN+zPqcSJugBwhov09vDnh:UJJ3FDi0RR+WT6nK9QUScSEuWov0n

Score
4/10

Malware Config

Targets

    • Target

      中医院上网清单/启东中医院门诊大楼装饰工程(经济标).jszbx

    • Size

      18KB

    • MD5

      5aaa87cdd2ba1e426cb676d9878606fe

    • SHA1

      3b4a1583e01bd51db92b63ddd31954fd6eb4bcbd

    • SHA256

      fba33a678b55a93aea76d3f6095daf799456419c984d87f74ba9fe0ee45ca4b9

    • SHA512

      20020bfc78f619729d5a0f440e8f2e981de0899c02deff0ce5c80917c28d61bd4b4b7130e72fc2b8e9866c2857db14434ac2df064fbe5493834c4f6678f0b39f

    • SSDEEP

      192:JfJOYZKWcGkb2cBrBaBxQB2BZB0cBFvbQNNPrEW+EHO2Ek1eTiC:JItNlVQxyM//RiNPrEW+EHd1ed

    Score
    1/10
    behavioral1behavioral2

    • Target

      中医院上网清单/材料暂估价表.xls

    • Size

      16KB

    • MD5

      6cf1fdd8c57ba27139f4a5a3b59a22b5

    • SHA1

      065b8a7bf9f3060f32a048786402af2c64f6bc17

    • SHA256

      e8ad3a26150c0b1d53f327d06e054e92cc0f008dc9aad0fb588a4ab5fa282053

    • SHA512

      a4befc4839b279707dc98eab126bcffec8de206b6943b6e69169633f222dc9256a4e52086590c5d5b6164b3a1fee15591d4b60df11fbac532efd0cdf626b8f32

    • SSDEEP

      192:U4zupPpPpPpP1xB/neE2Rb3tppTkeiYR1e/nQHkP:e55551v/nfCb3tppTkeZRUPQHs

    Score
    1/10
    behavioral3behavioral4

    • Target

      中医院上网清单/编制说明.doc

    • Size

      32KB

    • MD5

      7b5b441435c4d53a1cf1de7cb96d2611

    • SHA1

      d423c8cd3eb3a995d88f450e300e575525dea8da

    • SHA256

      9ec861774c910268d54268a7cf1b6a8c69cc9e5fa1514e1ac6359a3f2c00e0ef

    • SHA512

      e674b443f2aa4badc9c97f23af8c467e663ec0f7518e618104faf2b5d37c72074d2792081d6efdcf684cc90993cfcdfc8902700b43e6007d1901f4ccc17eb9eb

    • SSDEEP

      384:Z7ZheVhSe76+1244NHEMugC9YXo3obe9YfmLYe9YKoZ9:Z7ze6NHylNi

    Score
    4/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Query Registry

4
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks