Overview

overview

8

Static

static

8

等待YY�....4.exe

windows7-x64

8

等待YY�....4.exe

windows10-2004-x64

8

软件下载.url

windows7-x64

1

软件下载.url

windows10-2004-x64

1

软件教程.url

windows7-x64

1

软件教程.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    199a9db468c3123419d52a146cce1fd4e383389512eded1d6cda7dff91f326e9

  • Size

    1.3MB

  • Sample

    221126-1z9pjsgh79

  • MD5

    7c76a9687baf04278e9686fbab4cc47c

  • SHA1

    3a64be06fd25121308b6fc86f6a3f7fb561f3be8

  • SHA256

    199a9db468c3123419d52a146cce1fd4e383389512eded1d6cda7dff91f326e9

  • SHA512

    43c03409a9da3d411a3b823f6c3e58959105d5d13d4b71f788c795107502bdd7d9a58f6946e4ac57cc3ab423e5d43ad2902f36b26e4931ef4a56e3371b5448b0

  • SSDEEP

    24576:7kFPUcTGeTkI/mEkBXpfbsUzH8z/blJ2Ep6TpKKC91ZQ3LzFoGu9o90B2:7kFgWUpT9MGEp6Twz9izFoDWeE

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      等待YY帐号全自动注册机v3.4.exe

    • Size

      1.4MB

    • MD5

      9a990a05d06e3bbb67c5cf2652ac8206

    • SHA1

      2cac7cb8943a5d7a8c194d2bc1b8ee1c8c48a354

    • SHA256

      8a1fed3cf0ef659839dc1520df2e78735036652b691c44b07f8ab572cefd7143

    • SHA512

      bc0f9f1c8beba7fef4ba74b698935086ebe139603f2aef48ad19c6c7c6c3f483b39c43cd1e64bde060a95e9235643fad55a2877952a54244dd66b9da923955a3

    • SSDEEP

      24576:My5BswmjxTojBXfKrP4Nbko+QY+PCyZUya+CprkybKvS:MyDh06BP049kP+RK4eP

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

    • Target

      软件下载.url

    • Size

      48B

    • MD5

      67a0b81ae8dd7fff81116bda98646ebc

    • SHA1

      cad7f6566d8e50cdd8a343bbefd93cab99da76d8

    • SHA256

      7bc3e3896f919489ccd212fa753c413bda8c25c43d3251ae1e8c10cf832974e7

    • SHA512

      7619d648f000fdbe274cb6859edd7d2353c2dec1336d12e9cafff0fa36b30dc008d41a5982a64da954840bbdadaf520d66bfe2bc17da327ecf5f878a4c02e0db

    Score
    1/10
    behavioral3behavioral4

    • Target

      软件教程.url

    • Size

      47B

    • MD5

      671d632de6ed05e80cd7a94f6127ae40

    • SHA1

      05de8f40cd4c23d4f824c760b5664fa5dfa427c5

    • SHA256

      403001ed2e6f22a40b64390da07a2ba109117344809d4c21131fe72d5204b25b

    • SHA512

      52487c689dc29a25632a8a1dc55eca59a1fd5c96729508223a83112f1014234ab0d2eef43527a6c01316a477aac306b0214a0d18c752741b22e51694b655993b

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v6

Tasks