General

  • Target

    MMLive_user.apk

  • Size

    31.7MB

  • Sample

    230609-vggcdscf88

  • MD5

    b3b50a44ee9755876cc541af0b0a7b00

  • SHA1

    04385a88b832f9fe7efeb2121b3de07ec78e7447

  • SHA256

    e7276f577838d4b2fdd873d36614055230b08ffeb4c6ba4eec314e786e5d78f4

  • SHA512

    56164da0feceaf878051aa5fbe1dafa20ba31d0ad870eb6ddc08e102dc305329a155f4a90d62687157d2935efa4527ed1bbb049060ea534716c58d460435025d

  • SSDEEP

    786432:6Yn/HVNbru2qN2I7VtFn/GYVNbfq2QrPQj75xpejJQFd4h+JRs:6YnvVNbru2qN2I7jFnOYVNbf1QLQj7V+

Score
6/10

Malware Config

Targets

    • Target

      MMLive_user.apk

    • Size

      31.7MB

    • MD5

      b3b50a44ee9755876cc541af0b0a7b00

    • SHA1

      04385a88b832f9fe7efeb2121b3de07ec78e7447

    • SHA256

      e7276f577838d4b2fdd873d36614055230b08ffeb4c6ba4eec314e786e5d78f4

    • SHA512

      56164da0feceaf878051aa5fbe1dafa20ba31d0ad870eb6ddc08e102dc305329a155f4a90d62687157d2935efa4527ed1bbb049060ea534716c58d460435025d

    • SSDEEP

      786432:6Yn/HVNbru2qN2I7VtFn/GYVNbfq2QrPQj75xpejJQFd4h+JRs:6YnvVNbru2qN2I7jFnOYVNbf1QLQj7V+

    Score
    1/10
    • Target

      alibaba_version

    • Size

      6B

    • MD5

      260e5e3642600f8c4c65ca3f2520dabc

    • SHA1

      635f106f3d804ce532995f25a36b9bcc12d5fd50

    • SHA256

      37b4b684b9a4c16c917be942c6eca5edc2e83c6ada0f9cea9ff474b499173e5f

    • SHA512

      825c9046943368c7bbfbcc375d695954b318851999e23c539bf175ae9d1e2f676a958ff3323ffe2899bcb4722df2573ed63180fc84d32a2c4d6b81cd6c42de43

    Score
    1/10
    • Target

      data.jar

    • Size

      6.6MB

    • MD5

      fb442c46e260875bc20d1b95ea289a8a

    • SHA1

      195010e210c9e7115deae408d16a328194dd3848

    • SHA256

      0f038e898e387ccfd6feff39ffbade9b6f87f20e9119c6d2b8962877a6f6ef73

    • SHA512

      0d834c0fa760d2af0dece99f5098ee2b74b533d93b6d56d92eb7af06bc429a02d38466a7b57751199514c1e8f8c184183ffb05e6371a0789c9bbffb82f196999

    • SSDEEP

      196608:ZfMq2DbVVFWzKkR20hajWTchxqOnUothff+B8w4:xM7vzgzK82aIWwhQYf+2F

    Score
    1/10
    • Target

      ding.mp3

    • Size

      20KB

    • MD5

      70f0d00c65cf903bc8c2618d25f1ef96

    • SHA1

      061e0bdec4483338777173ffc69ceadd3ee4c0e8

    • SHA256

      cd1a4dabfc1e972463fcd2bd3f05833f2cbc24b95018c1866568b8bebe195fcc

    • SHA512

      6a51432b04b4435903becdedf65d32b4f735024f31567dd237ac8c76469fb4100408371b4fe95a75ec329fbef7d7aeb38e86eb44c918c854bc135092c4e6a4cb

    • SSDEEP

      384:vPt/JlgbCo4nmaNfgJXlUYCROAEk1XsO5nEGXasaIpYUCWUGCKg4hx:VQXKIEJhEk1XsO5EGojU9UZ4b

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      fennen.png

    • Size

      2KB

    • MD5

      d4fafa3050c0cdc476d282c417a65cf1

    • SHA1

      109f9504466ba8e11b840c7490ad3039cd61c403

    • SHA256

      5a5f3c0231a9b4b287bca071b8a884617f581344c16f88ad354b313cc0d8b827

    • SHA512

      210cbd75af6bc2ce3c19c805de03101c7b1f517ccb25b16a5614cd6c448af18c33c2c326b1184b0017b6263224af56c14e1f45a95286d53afa245111f837e4bf

    Score
    3/10
    • Target

      gold_in.mp3

    • Size

      38KB

    • MD5

      cf88ffc1de20ded964f1d85c488ef0a2

    • SHA1

      04bcac2b8c1585eb1ae4f1d51c8ffa4b2301c7df

    • SHA256

      45622baf48efd9ec94d57836f6d994fd658d082af8a6dfdaff3669027e14cb20

    • SHA512

      609c52cf65d5ea2c497de4ef04e5a4e74f72677a42791fc34abeace054ae25cccdd7ed7f37ed588829948c9a5cc74fc363f6cd98a254683c849aaa5b5c29fc7d

    • SSDEEP

      768:vo2S9cYReQCOjgTerqRYhAXmfYUZn8IN+6Sz:vo2SpeegTkXhTYU3N6

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      huaijiu.png

    • Size

      3KB

    • MD5

      1e721134ca050b076c9eee97d7d7c5e6

    • SHA1

      989844a4bde8baeed6baec9b96e214202858d6a9

    • SHA256

      614e6b4ce9c0ac5b4d5b0905b1035c0bb7b8b2a981aaa295d9389ceca2b0e75f

    • SHA512

      ce45f62484bb1c5580baf10292aaffdb2ea102e8eeb326a8657733d8a41ff435795caae389b1c559d1fb3d11e367d4a69579f39360c14ef0f8b6314a14becac2

    Score
    3/10
    • Target

      landiao.png

    • Size

      3KB

    • MD5

      f6fdf2dad6b5f0ce179ce917eba1bef8

    • SHA1

      3b6afca51e523108efbff938790fa247a7e0c676

    • SHA256

      65217da6beb1a19a3dccbd999656a33c844ec614c67f524c7a975123791bf1ae

    • SHA512

      2848a714b37e8126c0a22ffca59c8c48f33c77dbca910cb4bf61b56779a24cc52d26715c751519a11958a2e065958c22e1cbf3ff5672a908fe21a90f026f5c17

    Score
    3/10
    • Target

      langman.png

    • Size

      3KB

    • MD5

      c21110036f1257309e0042437bcd1dd5

    • SHA1

      ac36555e339248e069e3d1d4fa29a84f5fcce1ed

    • SHA256

      b519b9a799d92fa39dc1d58f641c938010b0cb594bce6ef71e6484b072c98131

    • SHA512

      e626d9ac07528cdd9d752a9eef8cf30d3a15347af4306ca37467366e1aeee2659585b2bbb9c1b7db6889071c83fa9d80f03800d407e4bb57b9919aaecee1c80c

    Score
    3/10
    • Target

      link_cn.html

    • Size

      22KB

    • MD5

      8cce338e37fb4cb5e377f5e5ca7e634a

    • SHA1

      ca8cf56bc5d54c9741ff8beb3caa855e903c9284

    • SHA256

      924ff27a93e7e031232fb4112ec7fac47d8587bebb5a4ecccdc981b95d56d7ba

    • SHA512

      c61208c0b159b314700e23af77545ca17c7b939ddef26153c0c618a1dfe7faa7b60b29dbdf8b0660d7e11d825841370a6859ee020f5cd76c62ab88c5d189e080

    • SSDEEP

      384:DQbkoXRjVEKEImNcL+AGxsipdfAYaLuuqwKIX1CY4p6pT:DDoX1VgIvKADipdfAYa3LK0AY48h

    Score
    1/10
    • Target

      link_thi.html

    • Size

      55KB

    • MD5

      2f15af9145908ce8305b9796ba950304

    • SHA1

      969b70d9e867cd2bb4c2a9b2cd77fa4bc2dba06a

    • SHA256

      ffca5a09e5057d294a6d6b2ad67bd496ed36b8b69250c037a4258e319932babe

    • SHA512

      e39ab5a4356a88f70b50e08adbf60f1f85640aed5fe056a4650b91dbb24a87bc027b2fc81a84718bfc777582ff0917d9361b43a1f869215c136b1de8812b173f

    • SSDEEP

      768:5Tb+5FyYGPxIf0+2snkVGyh7ODTB9aUmZTzpOQHvhQ/ZkPhGclszQ/2kUdES3WnP:NwUXLMK83vIz3D7XbJ

    Score
    1/10
    • Target

      link_vi.html

    • Size

      33KB

    • MD5

      fb6e820c47bcb04c149e6d76e0f735e6

    • SHA1

      e7510ee53ae386528aab5fa340193a1146fe4b72

    • SHA256

      9c3e60fa3c652a02f4a619c15c380bda8af2b17ba1e0f939e4a1a8e0c25d9c91

    • SHA512

      b34fb83f6a24ccd6f38154358bd35b59a28697a8a4963ccf57d8d21351a26b8d8f4f5f56e546548242e6b07790e0c5f5c16c3c15dbe28766a8b0068da41cb611

    • SSDEEP

      768:SXGw7aiXjwzNbT6e6aqknubkSZZgvoBsoEngDgwgUg63ZeUmmCHN/:SXGw7aiXjwzNbT6e6aqknEkSZavoBsoM

    Score
    1/10
    • Target

      lose.svga

    • Size

      458KB

    • MD5

      43559008cdccb136e65853226c96f7dd

    • SHA1

      139c5550e950437cdd58cac9613fc523adc7ffc0

    • SHA256

      e02e1a9a9b4064fa0481ea935950b5897ffa34ef91af04949b2703496e0237a9

    • SHA512

      61c1205829ef9e5ea5e2e46869977df0085c41e18969bcaa65f20f58cce959b4719490221ff40dbb69ac9e7bbd5d0e6c5ec53b55f6439fa985e5853fad92cbde

    • SSDEEP

      12288:sAIl2JGvcLGgPlDLigBYIMIlAhh//Y8h0nIulXQoDRGBC9NRR:s92AkGgdD7RaZh0Bl9R28

    Score
    3/10
    • Target

      mini_data.cfg

    • Size

      64B

    • MD5

      1e50d550cd1ca85a2d4a3fc4aebe77a7

    • SHA1

      98484b69a8641b4162499ae525d3a6bcda584ecd

    • SHA256

      d0d12a2b59752c2c0e0afacc0243e46226757b147957cc232eeaa5075af33252

    • SHA512

      87a36780e469bbd81c6122e2a5759905233e7caee739f9546b5934ef7da032aa691b097a879cc8ddd34fa0893af53950a502744fab35408b2fadf2079719869b

    Score
    3/10
    • Target

      mpass_msa_v1_shell.data

    • Size

      7B

    • MD5

      4eab92ba2a00cc1d7d55438a1a8466cb

    • SHA1

      ac3f69c47954de9cea3d6e3a95d1587c8759f548

    • SHA256

      0ac5676d2add935bf2f6c4b2f23913ce41b257c7322dd1ff741df6f2915a6ad9

    • SHA512

      2f99950007e46369f8c384d70188c469aa2591335d3ac1561eddb549c2ede99bbc667ba22e070be6938dfea8b266a044fa25397c12fe29b5c5ab2543ca8c4845

    Score
    3/10
    • Target

      pk_progress_blue.svga

    • Size

      5KB

    • MD5

      201f40772fa22ed5488c4de551c8fd2c

    • SHA1

      46597d500cd6d796b98955c494301cf7b9a9ef73

    • SHA256

      22f56d40043da63b964aa194c9cd38558d68a0de870d94b039cb73bee43381d8

    • SHA512

      d753b5d92314e767ee00ebcaa6fa6bca272cb9cb7ac0605456dc8458db8615c0e871915a022591769d3df5b3e2fcd5158e841f39295a52ae5a7ee86711d9512e

    • SSDEEP

      96:f8TL8941Ydw0PFBAul4Am/0aO7pjLqTRU96tfHVy2h8o2gKmgH+ZKsc:m894N0jAul4c7pqT9/vutzmK+i

    Score
    3/10
    • Target

      pk_progress_red.svga

    • Size

      5KB

    • MD5

      9684460d1e17d7dae34c8e1eae5ae3ad

    • SHA1

      6e0079449763ad1b9012979280951008a0cd5e17

    • SHA256

      6051584f1caf4eb94e21fb821aa73911548acc680bc68a1bbb66b2b79d00556d

    • SHA512

      f66f155717136f31ed41a4f9f758e720d0e649a07a93eb6980e1b881631884d02eada2d539f1406dda8c5f6e985cba44a7272b3b114e6403e29e55d1d0e4c7d0

    • SSDEEP

      96:GobZ3+DnWOnkH3hdYBNF2re8CvtSdD7TnY8/Q3I6Oy3kum5vUx3QMydI:ZBIncRdYx+C1CXTY8/Q5x3is3mI

    Score
    3/10

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

3
T1112

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

2
T1120

System Information Discovery

11
T1082

Tasks