Overview

overview

7

Static

static

7

vpnclient2/28vpn.exe

windows7-x64

7

vpnclient2/28vpn.exe

windows10-2004-x64

7

vpnclient2....0.exe

windows7-x64

7

vpnclient2....0.exe

windows10-2004-x64

7

vpnclient2....0.exe

windows7-x64

7

vpnclient2....0.exe

windows10-2004-x64

7

vpnclient2...ao.htm

windows7-x64

1

vpnclient2...ao.htm

windows10-2004-x64

1

vpnclient2/top.htm

windows7-x64

1

vpnclient2/top.htm

windows10-2004-x64

1

top.htm

windows7-x64

1

top.htm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1e7a11a8e8b97904fd2579c6fc6fc2dd

  • Size

    1.8MB

  • Sample

    231225-a9m1esfda4

  • MD5

    1e7a11a8e8b97904fd2579c6fc6fc2dd

  • SHA1

    0cc0d5762fc223ba9862bfd4744900f04c3f84e4

  • SHA256

    5d2dc95726a2e11884b320742c853cd10bc41c8be9b37b82fb3e1d95e9aeb0c6

  • SHA512

    f9cff845d870adf50555a6b00123520895ad9daad4fa7dd9686158a6bdc2a1aea55e12ebc68f48374169162e8c60e10705e902203518f1dd0fed5cedbffbccb1

  • SSDEEP

    49152:a3mWCgCYjyVcX7PNNBpjBlqAwRmhEFiPF2hzDNXzO/0ueE:a3mWayTX7lpqAsFiMhnND8

Score
7/10
upx

Malware Config

Targets

    • Target

      vpnclient2/28vpn.exe

    • Size

      503KB

    • MD5

      5f2553dd29553b7765c990bfcaec0117

    • SHA1

      539577c585b5728d708ead08c4255543ae873503

    • SHA256

      5a46384089f4391d23ed6a1016a8447ac59d135bf2c47c532533e5bf895b29e1

    • SHA512

      5c585240cccf40a1ac248734b7f32eabc58d2f4f78ef275c29aa804d87a8a1bf5286c843590844aecbf4db813220a10cb502ee094f69f4736fb60a33ed2ec534

    • SSDEEP

      12288:O4PIqayttu8fqYG4F2dsJ7tEgYT3jDYF616Fx4eZbKS:OJzAEcqL4FistzUE6wH4x

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      vpnclient2/28vpn_en_5.0.exe

    • Size

      660KB

    • MD5

      20aa6fc8a0583239b43866a28f79e45b

    • SHA1

      024b18daf007f1cfc035c19bef7f52022c308f49

    • SHA256

      f343981c8c254b12e7bc1104d72ddc119bb104510db75795f958b01ca8d51a41

    • SHA512

      7ec5484f9a172a94c620fd56f6f7d598e8dd0a118fbf906b6dfa0ac09e79ae8abeaaee90f7dba1b843160e6259c34042dbd74bd04de0eb4e224b1630fc429461

    • SSDEEP

      12288:IltPST4mIn9n/odH1vUr6SLky2W3lX/ZRduH9gxN2SnXSrnZCVm/W5W7N/B:Il8T4nno1crNLT2ClPZRduC+7ZMk/B

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      vpnclient2/28vpn_zh_5.0.exe

    • Size

      660KB

    • MD5

      2fb63631356b72906b35d22a27189eda

    • SHA1

      dd9875906d4e8748c068ba02cfb53133720ca225

    • SHA256

      82673909541b88f4f89de1cef7be87d4a2a79d74acd846322bbe8a14ed4432b8

    • SHA512

      ef1d98a556fa121773dd1eb0196294d94f61d22c8a6975a2be71cb7eb79c26309635040107c6636874af0aae862d3efabc492687d0f2b511cadf9d813f0ca52a

    • SSDEEP

      12288:sltPST4mIn9n/odH1vUr6SLky2W3lX/ZRduH9d7tnaWaNlCmkfqxZVzpSEHLl:sl8T4nno1crNLT2ClPZRduD74NsEZ+Er

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

    • Target

      vpnclient2/gonggao.htm

    • Size

      1KB

    • MD5

      141e20590ae0e47f4921b51dadc3143c

    • SHA1

      91b8a92e95147ba90cca66864b959cc7a0d67ac9

    • SHA256

      09a4ba9dd83c8268063689eaf83a1eb9a667eaa1e2ab80a8676b5957d5cef319

    • SHA512

      2cc063c5f62a4c512a1f2ac3a08a4e090105d70235f841090a1367e3697107883c6d9e675441e7fb692a28f91ebc4308ef546b08f76ad90ae102a97a8f110340

    Score
    1/10
    behavioral7behavioral8

    • Target

      vpnclient2/top.htm

    • Size

      1KB

    • MD5

      fc85605bbdb570ddb2e5c1e93bfc4c3d

    • SHA1

      7c212911305aaa90294ee3e903c420ca03f86760

    • SHA256

      4d9d10a1a63e1b9d053dcdc1dbdb6bcd5b13484f99eab7ce9727c90889ef3b75

    • SHA512

      763d27090455a4118c5a360fc7db0c798ab5f8bad2d0e552bf348eda26d1364e032980801e57d968eea13fe342847118097a14de24e62f0c9e3f894b0e2d4204

    Score
    1/10
    behavioral10behavioral9

    • Target

      top.htm

    • Size

      990B

    • MD5

      72defc966eb83b40d830b3bc66354d94

    • SHA1

      c83173bfd34ab77873c01c76446d939fe22d364e

    • SHA256

      64d69ca7b9efa905812324a8d8ea59bdd7f124624e541a6a4ae0a8490e1e381e

    • SHA512

      137d6ae33ae11091ba863a7590a5b3bc8f15012a3a93654f553a138d3b10820d854831307a8a0ddafeecdd84fd8ea88d4e8a52790e8d97b8c4a27086e8d61e9d

    Score
    1/10
    behavioral11behavioral12

MITRE ATT&CK Enterprise v15

Tasks