Overview
overview
8Static
static
8FastVerCode.dll
windows7-x64
1FastVerCode.dll
windows10-2004-x64
3ICSharpCod...ib.dll
windows7-x64
1ICSharpCod...ib.dll
windows10-2004-x64
1Interop.ADODB.dll
windows7-x64
1Interop.ADODB.dll
windows10-2004-x64
1Interop.ADOX.dll
windows7-x64
1Interop.ADOX.dll
windows10-2004-x64
1Interop.ADQX.dll
windows7-x64
8Interop.ADQX.dll
windows10-2004-x64
8Interop.ADQX64.dll
windows7-x64
1Interop.ADQX64.dll
windows10-2004-x64
1Interop.JPO.dll
windows7-x64
1Interop.JPO.dll
windows10-2004-x64
3Interop.JRO.dll
windows7-x64
1Interop.JRO.dll
windows10-2004-x64
1QQռ...��.exe
windows7-x64
8QQռ...��.exe
windows10-2004-x64
8UUWiseHelper.dll
windows7-x64
1UUWiseHelper.dll
windows10-2004-x64
3dl.dll
windows7-x64
1dl.dll
windows10-2004-x64
1edithtm/in...�.html
windows7-x64
1edithtm/in...�.html
windows10-2004-x64
1edithtm/in...x.html
windows7-x64
1edithtm/in...x.html
windows10-2004-x64
1edithtm/js...on.asp
windows7-x64
3edithtm/js...on.asp
windows10-2004-x64
3edithtm/js....1.jar
windows7-x64
1edithtm/js....1.jar
windows10-2004-x64
1edithtm/js....4.jar
windows7-x64
1edithtm/js....4.jar
windows10-2004-x64
1Analysis
-
max time kernel
111s -
max time network
124s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system -
submitted
26-11-2022 18:20
Behavioral task
behavioral1
Sample
FastVerCode.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
FastVerCode.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral3
Sample
ICSharpCode.SharpZipLib.dll
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
ICSharpCode.SharpZipLib.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral5
Sample
Interop.ADODB.dll
Resource
win7-20220812-en
Behavioral task
behavioral6
Sample
Interop.ADODB.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral7
Sample
Interop.ADOX.dll
Resource
win7-20220812-en
Behavioral task
behavioral8
Sample
Interop.ADOX.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral9
Sample
Interop.ADQX.dll
Resource
win7-20221111-en
Behavioral task
behavioral10
Sample
Interop.ADQX.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral11
Sample
Interop.ADQX64.dll
Resource
win7-20220812-en
Behavioral task
behavioral12
Sample
Interop.ADQX64.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral13
Sample
Interop.JPO.dll
Resource
win7-20220812-en
Behavioral task
behavioral14
Sample
Interop.JPO.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral15
Sample
Interop.JRO.dll
Resource
win7-20221111-en
Behavioral task
behavioral16
Sample
Interop.JRO.dll
Resource
win10v2004-20221111-en
Behavioral task
behavioral17
Sample
QQռӪ.exe
Resource
win7-20221111-en
Behavioral task
behavioral18
Sample
QQռӪ.exe
Resource
win10v2004-20221111-en
Behavioral task
behavioral19
Sample
UUWiseHelper.dll
Resource
win7-20220901-en
Behavioral task
behavioral20
Sample
UUWiseHelper.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral21
Sample
dl.dll
Resource
win7-20220812-en
Behavioral task
behavioral22
Sample
dl.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral23
Sample
edithtm/index/index - .html
Resource
win7-20221111-en
Behavioral task
behavioral24
Sample
edithtm/index/index - .html
Resource
win10v2004-20220812-en
Behavioral task
behavioral25
Sample
edithtm/index/index.html
Resource
win7-20220812-en
Behavioral task
behavioral26
Sample
edithtm/index/index.html
Resource
win10v2004-20220901-en
Behavioral task
behavioral27
Sample
edithtm/jsp/file_manager_json.asp
Resource
win7-20220812-en
Behavioral task
behavioral28
Sample
edithtm/jsp/file_manager_json.asp
Resource
win10v2004-20220901-en
Behavioral task
behavioral29
Sample
edithtm/jsp/lib/commons-fileupload-1.2.1.jar
Resource
win7-20220812-en
Behavioral task
behavioral30
Sample
edithtm/jsp/lib/commons-fileupload-1.2.1.jar
Resource
win10v2004-20220812-en
Behavioral task
behavioral31
Sample
edithtm/jsp/lib/commons-io-1.4.jar
Resource
win7-20221111-en
Behavioral task
behavioral32
Sample
edithtm/jsp/lib/commons-io-1.4.jar
Resource
win10v2004-20221111-en
General
-
Target
edithtm/jsp/file_manager_json.asp
-
Size
4KB
-
MD5
bd631547ab8fb1ab0044ae21755e0df4
-
SHA1
7a31655196baec72ac4bdce1f1b8c5cffe213c6a
-
SHA256
7fe4e95368dfcf900b11eed60421b077f42f3d77bf9d6113cc3416b0ed8e9bd0
-
SHA512
d57790523d43630e511fe040aa775630c36bd0dc299c20fde84ec7c767950ac20ee47bb19d74d7e1b9aa28c97b0e18ad014106ed5a53ed7955f286aa4c8e4144
-
SSDEEP
96:KpqmIJtIs4JzTlvUSCCrH9zBxhq6KMw9ToAp/U0jfXaIBE50zn5574zVqz4g74zV:KsvIsElvUSHd9bnKMw2ApM0zaIBE50rW
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.