General
-
Target
ae176bef894bea7ba45b12036f2c015b360c3d3abb85150ce6e9448154ff13f4
-
Size
500KB
-
Sample
231021-kdthfade4x
-
MD5
874e3a6e8fe2a608df7582000f03539b
-
SHA1
f4ee78934e8ede611046dc3a1c553d3b76dab7f8
-
SHA256
ae176bef894bea7ba45b12036f2c015b360c3d3abb85150ce6e9448154ff13f4
-
SHA512
26a80313929bcd4286ba9c9a5a4b3d645e3389630bf7657123f27d4f2c6de05efaae5d27bb0bfb45451850bed49700fa77454a10bee3f7eacbcc20b2b82f1c33
-
SSDEEP
3072:d5OsiQ79xzUcbK9LK/fzuaCrutJUy6yQ9ie6kgR2voGXQ9jf4o7Qr7y1P+g:L7hoBO/fzxb26kR8fPkny12
Malware Config
Targets
-
-
Target
ae176bef894bea7ba45b12036f2c015b360c3d3abb85150ce6e9448154ff13f4
-
Size
500KB
-
MD5
874e3a6e8fe2a608df7582000f03539b
-
SHA1
f4ee78934e8ede611046dc3a1c553d3b76dab7f8
-
SHA256
ae176bef894bea7ba45b12036f2c015b360c3d3abb85150ce6e9448154ff13f4
-
SHA512
26a80313929bcd4286ba9c9a5a4b3d645e3389630bf7657123f27d4f2c6de05efaae5d27bb0bfb45451850bed49700fa77454a10bee3f7eacbcc20b2b82f1c33
-
SSDEEP
3072:d5OsiQ79xzUcbK9LK/fzuaCrutJUy6yQ9ie6kgR2voGXQ9jf4o7Qr7y1P+g:L7hoBO/fzxb26kR8fPkny12
Score10/10-
Generic Chinese Botnet
A botnet originating from China which is currently unnamed publicly.
-
Chinese Botnet payload
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-