5f014a949002a3c1148d42ad91d0f91efd6d7ed508c464140daa542eb4a5db1f | Triage

Sharing

General

Target

5f014a949002a3c1148d42ad91d0f91efd6d7ed508c464140daa542eb4a5db1f
Size

1.8MB
Sample

221127-yzj3saah3w
MD5

7c5280876a6d90bf25c68307052e2ddc
SHA1

d5114b80d461a65ecb77cc01fd8b69b539a4a80c
SHA256

5f014a949002a3c1148d42ad91d0f91efd6d7ed508c464140daa542eb4a5db1f
SHA512

ba25b1144a54909a5d4dfc4a907258b30f7bd7efb7c6d47cccf9c9b4e75517f1709d87e7b7a0171fca835f71720c8d60d83d76f4ac72e6678bfefe1be0730524
SSDEEP

49152:MylalWPy8uKdJtf6nH583X/87ushXsF+ZsBJv:9uWP+KNf6H5tlJ0jJv

Score

8^/10

upx

Malware Config

Targets

- Target
  
  cf乖乖猴刷枪软件【无毒】4.2.exe
- Size
  
  1.9MB
- MD5
  
  0fb59076175388485007a10423461165
- SHA1
  
  f88942f90f27153566571dbe867ff344c0932a36
- SHA256
  
  92b31301fd0d8af3629fd84a69cbae52ac6b180fce568b92680c59553220ec05
- SHA512
  
  6de0dfac2f4ccc0a02fbe78e39b0343fedb126a7ba3f3369b641e0fa86bf9f38f864316d639f4ef686ff7542b9e8f3482f527acd4453ad9edb08f2d324766149
- SSDEEP
  
  49152:BIOfvhG7Bm/Ggkxe/wXAGfadmJubly/TOWbtJo:iO3oBmSI/wfa+li
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  数码资源网.url
- Size
  
  244B
- MD5
  
  305983ae6219bf10d517e168b3ebe5ea
- SHA1
  
  b30177e0d7aa2c46843fa9c728c8a9319f34c6a1
- SHA256
  
  a4a66ca6e527f6b5a344ec48235b21666f44d19f710ea5d75332e6a4263d027f
- SHA512
  
  def75af02cb32b05d19cea6ac978941f93b659fc23a3d8ea29f60874c6875a08274403c125452bd14fc2e878e193eecca70b83f19c22881e3f9a8ab4f6afcb28
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4