General
-
Target
WPS_Office-Premium-v18.2_build_1466-Mod_ROCKMODS.NET.apk
-
Size
162.9MB
-
Sample
231013-1whfwsce3t
-
MD5
aed926ccee408e1cbf2dd9f69c6e32be
-
SHA1
9a4ab6febd255cced50bdc285575e49a748c2663
-
SHA256
394241ae21314b4ea3ab32052f426a797d3aa1b0c761551921665f50071f2bef
-
SHA512
7493a651fb4a6299a7de28bb082b6699871803d7995669b2fa8258a974384e72b4fcfcc0ea34a2f4b33d4903ba82cfcd8387d3a9ca0ffdc224d9477f73446bef
-
SSDEEP
3145728:mROlwrijanaL+1YrM54DJmfny3nu/On3EPIlifAc97r:I16anaL+1YYuwfny6On0PIsocl
Malware Config
Targets
-
-
Target
WPS_Office-Premium-v18.2_build_1466-Mod_ROCKMODS.NET.apk
-
Size
162.9MB
-
MD5
aed926ccee408e1cbf2dd9f69c6e32be
-
SHA1
9a4ab6febd255cced50bdc285575e49a748c2663
-
SHA256
394241ae21314b4ea3ab32052f426a797d3aa1b0c761551921665f50071f2bef
-
SHA512
7493a651fb4a6299a7de28bb082b6699871803d7995669b2fa8258a974384e72b4fcfcc0ea34a2f4b33d4903ba82cfcd8387d3a9ca0ffdc224d9477f73446bef
-
SSDEEP
3145728:mROlwrijanaL+1YrM54DJmfny3nu/On3EPIlifAc97r:I16anaL+1YYuwfny6On0PIsocl
Score7/10-
Acquires the wake lock.
-
-
-
Target
JPExcel.xlsx
-
Size
88KB
-
MD5
40ae477a3ef5d443269805f814fa2b3f
-
SHA1
8ded6221a9ade3a44a3274681bdee4c8fa7d28be
-
SHA256
76ddfc106be6f9222fecd98169246dca5bdce22e09f896d0399e349c185deb04
-
SHA512
03024e196e100f5f72dd0ab32eabc9c5aa7ae8fe45cfe3a458483e3d278bae019ee584ec5197e34e4172e45ebe2307d3e214bd0e0d6e64678cd23ca88ea83c3f
-
SSDEEP
1536:lv2yNHP9p0zUYkZPa5BDt7nlF4NjAyhwPOkA5bVhP0cE1fgr:V2yNHPM4YMP+DNcNB6Op5J10cSfS
Score1/10 -
-
-
Target
Sudoku.xlsx
-
Size
30KB
-
MD5
65875f9cce812ef4b346c8d7fa84910a
-
SHA1
768ac8b47df5f81148f76d0d0a8779a002a6a87f
-
SHA256
4a71f028070a2312bac13a8b69d62ee11c429ab48b8c54f6dab28760c0a81d26
-
SHA512
7f6e7bb36bbe2d88aa14e231cd3ec3e47ae4bce0ba9a42c33cedb5a146ab18c91ea5f5df9f6166aaad1ffad09e9f4cf556bf111be849248cad03e973195d9b46
-
SSDEEP
768:x2d987371JV9169+RzN8yvMx8wAzjuEjC5o79:kLqhJV7RaVUj1
Score1/10 -
-
-
Target
ThExcel.xlsx
-
Size
93KB
-
MD5
0d4273ff8fdb17eb05dcbaeb165c5368
-
SHA1
e9ee16b89591940f0806a693cbc98728b4d245be
-
SHA256
5d54f33efd64b3e408e77f2d0c53f9d2643040981249dd29145eab75784bfbfd
-
SHA512
ac5c34d0646c182705e25e43133a2df1968827f858c9acdbe6f0ffeb1b1d59e06d2e76781410461ae7dd621eeb930d69524c5daa74194f073c8689058aa9dc19
-
SSDEEP
1536:2y/UyN+eQLYW3ViACisG/jL0pOR9fFQLgwdkywHPke8bfdF/yTq1tY2r6EIn5Z0F:2wUyN+emjiAsq2TgwiPke8blF/ye1tv/
Score1/10 -
-
-
Target
blank.doc
-
Size
14KB
-
MD5
0787cfd4d32effa734e2229cf2a88e4b
-
SHA1
2987172866366c66bf86b4b4bb2c8da2999f3fea
-
SHA256
85477111182d3a44a0a5957413660abfea87b8b8b83b4e6586b343b74ddaa139
-
SHA512
ac5ce8381458d6267917f0c6327905b1dcb30fadcba8681281316a4b66d97cd5103a531c2235e6fb79e33865146f4f0d03a65fb336ca807278a77b8ccbca2bcc
-
SSDEEP
48:r3IHxVyH3t+5S58O1h6YedMMrUk0cUWh77lCa:iy3kM58uedKZc1XAa
Score4/10 -
-
-
Target
blank.docx
-
Size
10KB
-
MD5
005ff78898c3202c7659f48c5257e7bc
-
SHA1
8d905898b4c2beee3b9cfb57dbbc5a2c3d541f20
-
SHA256
cd7284e5d773f38b3932dca6e54e0108708e6c2dfe954988ac4ebf3ef965f49c
-
SHA512
48a8ab184f8425669861549b4b9be52e37b1ce2b5c7b1aa743ea9f8c84f7832df43c34aae062d84160ee346e8e829acc3dc65a6a6d0d3e9582cead4841131e41
-
SSDEEP
192:CtsXgErCDTZca/6Z9HSK9+xNE58thLTtM0uQ0cak8BEG3ZH65GuxWVJjXp:aizyZcQ6Xy++xNE5i6LfF3ZH6sHVJTp
Score4/10 -
-
-
Target
blank.pptx
-
Size
27KB
-
MD5
25cc8f5d90e3b28840198b16a86872e5
-
SHA1
73702910adbfd9d3c3db3bb14b62418df5556310
-
SHA256
e65c349e1fdf770b0bdc67cb50491028763fd86d5fb606ed7c810db2c7496eec
-
SHA512
71f83f2416fc6872f4521f266321554da769d6999e7c4fef2a4e5e63e593bcb1ce262b0c759c61a81b20933507db27522ddfee25e74589c9d0c0a1aa30f624cf
-
SSDEEP
768:lKoQ7fiy9rLc6gFylS+4Vecs2wsrfGjhk1aGkEawwvcRaRDG7GyGBGoGHGuG9GEB:kfr1QJ+vRjRGks/81sl+X4RKzB
Score1/10 -
-
-
Target
blank.xls
-
Size
10KB
-
MD5
4047ddfca0cad3374656db16a69125d2
-
SHA1
6403f7cec28ef73da0fc1d4f6839b2a37469a211
-
SHA256
6c388e45f095539628e8bada62f32023cb27371739734b3b7b97f7d7f3d469a9
-
SHA512
5394279041672579c2a4d98d2eba9c591356d25f8c6861d2894e1dce79b2137db20b6af7d1022b7e6907781bda9fc053f65318206a73ee0ff469fdd3a5d0e5d4
-
SSDEEP
192:D8UeCQQQQLXfibkkS1Q8vePsztvT278hhPPPPPPPPPPVt1t2aZdw1t2awtArmKAn:hnQQQQLXfibkkS1Q8vePsztvT2utb2aJ
Score1/10 -
-
-
Target
blank.xlsx
-
Size
15KB
-
MD5
1d959bf48012e0d94ef91b8d104e5ab6
-
SHA1
609f2bed7f799fb6e95531508cdbc4d87783ca95
-
SHA256
4ecabfadb8a3eea94d218920a5eb6e680dcad59c6111d2856fc9ddb10176913d
-
SHA512
4c097430db9110f3a7fa048b7f757ccfba53e31800d09eadb1e6d411dbcc89ac4d13b4cf9dbbaa630c999902fb67ba919188f3c9fdcea3b753daa076024c2140
-
SSDEEP
384:UtKuTqGfks7SluQnnPvtPnFr3eZZMTIIxyI3o3OlsS:UouqluGPvBFruZZUIIxVzT
Score1/10 -
-
-
Target
default.xls
-
Size
5KB
-
MD5
9560e1dfd5c3945c5719b482a9cd9017
-
SHA1
fcf0358efb9aea22b00e391fc55cb5540d979f8a
-
SHA256
db62bd4a097d1a4dc13f1bc441fad25db94e61ccfd6db99058be869ac513af24
-
SHA512
a46ab5cca4e05ec6f5345c091784a07841afc78567d15b1d1391a06d9f6970e921c67cb05b92a7d2491c9fd00d4d5ace34b0275655713280a08847d8a555ddcb
-
SSDEEP
96:W2X9S5BpwpwpwpwtvT278hhPPPPPPPPPPT2f7c6XB:lU5BpwpwpwpwtvT278hhPPPPPPPPPP3k
Score1/10 -
-
-
Target
guide.pdf
-
Size
2.2MB
-
MD5
cc175e5535991e4b406c2fb024a6f025
-
SHA1
e60a185551e2347c65704d18b47c66f7b2702326
-
SHA256
3e144a9ddcedccf2bb037de7c9f86d8ede2da069526fd56d26f041d9259213eb
-
SHA512
a3ed2d6ee7852c1e1425209a12ba932c1e459272691b020676068fed23ad6ca2afdbcf468f4040fcb67b252c64543ca09d9db18a35b83839353a4c103eee44c6
-
SSDEEP
49152:wtKVY8ikrfyQnaLPf1dyMP8+84aviiebwcQmoSDQMUg1KFQnzE/55ra:wtOnikniXDNNYIwThScMUUpnQq
Score1/10 -
-
-
Target
ksMailTemplate.html
-
Size
4KB
-
MD5
3a652ce3a4ae5cffa3b2baa83fa1197c
-
SHA1
d3ffc491b31fd940a4f6678face381628d5e4b94
-
SHA256
351881f1928ecbbbb9dc9b6b4e722cc9b171f4ecc958bf15684c5db5ac3b1ee3
-
SHA512
980929ef77c4336de691c03f7c1649ccb88659c69be103c8830fcd02f638c8043659f1658b9387143032fa6fc8743bf1469213b09af6e71e596be8fa2d56bd32
-
SSDEEP
48:loQqpF5akye38EqaS5J0a+DzpNAAekVgIXaDsI1mLa+VbYMwWB594EhYMA2vn9Vk:WaHeS5eD3iJwOQ94cYMrLYr
Score1/10 -
-
-
Target
ksMailView_mixed.js
-
Size
18KB
-
MD5
5d3fd36973ea0d1e2d451c9fb0052816
-
SHA1
6d3c0deb13cd622be20143232e11ad1dcd90de3e
-
SHA256
81e56f8e93e5f59cf27b12bbfe7c34f4c04811628cba53294ec3ff97e5c09ed0
-
SHA512
57bc9ce512d28a88a92ff766e4555c8c5cbfdb16585d2a1a926d44ab98e7d7b2b41d775b82849c2c58fb844f71304ee75c3b36b556c9e82296dd35428b98b586
-
SSDEEP
384:oqAQHUZB8FV00K+Q3jA+wDHJMKjkEByHE4TW8NleuNPDrRiveEM67j6L:1XH0B8FV00K9jA+wdkEIVC8NlTfBz67G
Score1/10 -
-
-
Target
login_bridge.html
-
Size
315B
-
MD5
4cdabfed12acc7f9c118336c5652a2d0
-
SHA1
93c9b9cc0c8cf53d944b67bd05fff930d806837b
-
SHA256
9d590b25943efab14361dee200b324b1b168bcc128cb4719d051c775a5442d88
-
SHA512
3168b209c4017200a8f9d1b224b9d75c75f3c08c1522bc11ed779e4ec5e47de332bb57ec29aaf3ded7f2d1f730a2269b91e2fdc23a25c0aa390edf3e0864c414
Score1/10 -
-
-
Target
openplatform_invalid_host.html
-
Size
4KB
-
MD5
308a0de278eddcfb9aad07c2ae684684
-
SHA1
617c5e10cf8dcb60f2aa80bc8c1cbaf360c8fba0
-
SHA256
779def503e2b143d5af1de174d40e976bef8821d0d52c868faae3b3bb52270db
-
SHA512
aba950189da4a679e03502dbc75f05d287d4193072d6950839ea0740c9ea2ca090e72f067ffaf3d99bd2925ec7ad86972eef58c8b606a2c9eca38ac33419021c
-
SSDEEP
96:AKmsRoTdArCgEQd+Ky198Qgr+rJzrg9eZRVpfnz:JmKmG+gN5ywQttqeZ3pfz
Score1/10 -
-
-
Target
secdoctemplate.doc
-
Size
12KB
-
MD5
64def520385ac370f1ebd5ae5a331437
-
SHA1
c88a42da3acf254e0016822454646a9ece2bc554
-
SHA256
bf5b74314821ba40594d071c6c75f1327d539468b3b9e3f94d3508cffd971b14
-
SHA512
a5a800c24a39860a1a5c9bed419f641680abb860f9eaffbfb52be18182f607f73cbf98e13239d45e5a32d6ac8afc7621390f6d597cbb1b4e741e4510d1ac32e8
-
SSDEEP
96:EUXMXrHaTek1+129hlok9/YT97TJh1LnB/QWaT8EoLYjLJ75:EUcXrr7m9/YT97TJh1d/Qlbom5
Score4/10 -
-
-
Target
secdoctemplate.ppt
-
Size
47KB
-
MD5
bf34a905b179a457f781201ce299f5df
-
SHA1
0e9136b6816a47176169e540d8a9f103eb646b1a
-
SHA256
361bd5b5223bf1be8b0a9150f432c422e8f4fb1cd5a615d9654a70e0b870826c
-
SHA512
b80f2a5b4444c9dcea7aad46a29df864b85528ae9008e8db2e02a34218e4be319cf9ee5753589889aceddfe60805496ddde535ccc0d493d8390ac06940d6074c
-
SSDEEP
768:g5OBrXM8332+N1ZhCjndI/1OJnwWQU+Tom24v2ehr/Enocoiv6FxgNv2:goBr8833F1uDdI9mUTom/v26cnocoiCI
Score1/10 -