eed863237fd9622789deaaaf4dd8f072bf4a6c3ddb27bf1e7a30370d8a7c22c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eed863237fd9622789deaaaf4dd8f072bf4a6c3ddb27bf1e7a30370d8a7c22c1
Size

577KB
Sample

221125-zdkmvsgc9v
MD5

e378225a4343acd431b7b7d6b3cf949c
SHA1

a33a9adf0fc61ef83d776aaf21cbd2077030a012
SHA256

eed863237fd9622789deaaaf4dd8f072bf4a6c3ddb27bf1e7a30370d8a7c22c1
SHA512

54070599e31be21e5d24eee19b722c1e314003b801b7ac02c54b5b1897cfcf604167d50898be023b2b39fc8c5c3af72ed69e229708407265fc784ac87e4fab26
SSDEEP

12288:74Cb3lw54n0f+nLUY1RJqe343gLW3vHJvZ/oRCNzRMsg4Qb+vsYGzV+2Qfqha5v6:74Cb+U00wYqeoL/HJvh5NNu4joRZQKO6

Score

8^/10

Malware Config

Targets

- Target
  
  ppaa1014sp1/西西游戏网-www.uuuwg.com.url
- Size
  
  110B
- MD5
  
  9112fe2ad02dd25540f81d4a893ebdf4
- SHA1
  
  02ae245ca9aaeb618b5ae6f86d1ca8b4a696693e
- SHA256
  
  87115ae6cdc715a19c912c6825fbff8d6f0ba2c55ec31f202c14a69ec6a6c5c6
- SHA512
  
  ec7fb303d21d562a842863a4eb9c4865b0947aaf76d06b8cf61f5e3909fef334fc2f6b2e464fde7083806d530fdef1dd809e4f434c6bbafcddbdc50fcb834733
Score

1^/10
behavioral1 behavioral2
- Target
  
  ppaa1014sp1/跑跑艾艾1014sp1.exe
- Size
  
  2.3MB
- MD5
  
  c86e2b0ef9c20c71a0f6c9613398aca3
- SHA1
  
  e3c3fdea0b66351c1cf15e38a518060cb27ed8e2
- SHA256
  
  cbdd87aa4fcebe526e7596b43d263883549e505aa83f6955094963e34f0a3c38
- SHA512
  
  5579b8a1439d0c619003bf495820d91215edcfe318ea7e453a930a2f95a5f43e810c15215336520fbd8f764136476fc951db4499c4102ab635dfee2711b55033
- SSDEEP
  
  24576:MQs7/tU1/YbzG+ZakAAMVY6d83fElEjLzEeE9usDr+ClG82Zkw3BOTPx:MQsCVVQsl6YeauqlG6VTPx
Score

8^/10
- Executes dropped EXE
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4