9776877a3af4e60d9e797d381148b874226396d43d3b17108d36ac859611bd90 | Triage

Sharing

General

Target

9776877a3af4e60d9e797d381148b874226396d43d3b17108d36ac859611bd90
Size

569KB
Sample

221125-x9pkksad49
MD5

da8180fc6767ab85b530a442d7deb03e
SHA1

d9b85f5a92a38a7c76fc82aad7c9b2820584403b
SHA256

9776877a3af4e60d9e797d381148b874226396d43d3b17108d36ac859611bd90
SHA512

c1db254667a5d98f3af42fe318d8267b7589866761974e6e61b1a47fdd3e47c714e1ae62648a9ba0fe28a5db0b2aaa2272bc49eb3e75fc3c7b957aa1d59490a6
SSDEEP

12288:Oj0d65bV2mZy24R9XNckRGve0+PFmPLHg9SBVRLM9WUk3EI:Rk5ZKNG3atmDZDRLM9WUEEI

Score

1^/10

Malware Config

Targets

- Target
  
  (羊安工业园FTTH(羊纵一线御府门业QLJ.YAJGJ004GW005))补点140915/(羊安工业园FTTH(羊纵一线御府门业QLJ.YAJGJ004GW005))工程设备完工资料集成表补点140915.xls
- Size
  
  142KB
- MD5
  
  836dc6efde2418638aef0321935d763b
- SHA1
  
  d30101432bef8c646d7154e86a20b4de63bc1db6
- SHA256
  
  da939c6579e1771b29f8dc413d7f247effe8e216aed04793e730d6a3db145a6a
- SHA512
  
  2808cbbf8bdd2805d6479b7b56ca3cb2a11da3b216ccd96230795591c4e94705954293989502b7c26c34684ff62e2753538bf25ba298d58e03f3630a67991866
- SSDEEP
  
  1536:9hhhxFLEINtrjgxVMw8TZKlq3xZ+NiaE3tpWj+RYNh4opLRPzR+iirv7d8MmTOKY:034ohRPy2HOZ
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2