e56afaf430e63ba2367446ebefb6356f1d04a0c7e10416d3851d8f43efe01a7e | Triage

Sharing

General

Target

791cca1cf69da4ba7e118c2a91eb2d97
Size

967KB
Sample

231226-syhwfaeeg2
MD5

791cca1cf69da4ba7e118c2a91eb2d97
SHA1

82a2f78159b7c15ee61ae5136e444647e3f45902
SHA256

e56afaf430e63ba2367446ebefb6356f1d04a0c7e10416d3851d8f43efe01a7e
SHA512

226f330d9f0923be542be355bda7c7689f5e1889a608ab0fc0c9fc43c619dab0ad2278ecb11c45d9d9d7086d74167adcf84f7e6d0d10d41acb551ddefbf54be9
SSDEEP

24576:6C+eSYlCKkg0PJoeyOucFstqViGiN6ifPznD2/Vw8dE:69f2gRHucFNoGiTfPv2/Vw8dE

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  WebCracker路由密码暴力破解工具 v4.0 绿色特别版下载/WebCrack4.exe
- Size
  
  1.5MB
- MD5
  
  b50b46ab225da8ba7eeb934bfcbe7390
- SHA1
  
  00c68d1b1aa655dfd5bb693c13cdda9dbd34c638
- SHA256
  
  d6672c2d47218c2cabba5ba8a4623d9be16fafa91bd14b7a4dfda38032621cbe
- SHA512
  
  3621ff2716c64e02a21747e0936c297fef35b9c379ec1ac1de22fae814c801dd988032cf9202537bf05ca81b957f0cd1e4ea011e235b88b8a49ec8f13acc774c
- SSDEEP
  
  24576:ftvST6vE3RMlEYPoprnbLVfCHwI/fpN+Qz/n0QZ:FST6vEYPKLVfC/HpkQz/n0Q
Score

1^/10
behavioral1 behavioral2
- Target
  
  WebCracker路由密码暴力破解工具 v4.0 绿色特别版下载/superdic.exe
- Size
  
  348KB
- MD5
  
  2f4108d3d1e68ce59e0e9ca0989ddfd6
- SHA1
  
  dce21ea72c7fd6006b9b84a8596838a694087694
- SHA256
  
  861818020cf3fc19eb03aed895016c39a05b1fbb90d2754866caba2eeb28fe7d
- SHA512
  
  bc68de6fd2506cf405c1853626c3aae9680741ccf9bc488be313d797477d9870c447e11c394eff2f3ad1eb68d521193d3989867e1b91cb0046738e115f77578c
- SSDEEP
  
  6144:JVmRyo4nLJ3eVZRdfty0sf+r6S6z5RmIPLs/9+tkY4CyK:JVmRYLQVZXtyv2r6S6V
Score

1^/10
behavioral3 behavioral4
- Target
  
  readme.url
- Size
  
  328B
- MD5
  
  63ce37659e34f6542d31a4bc64ec19e5
- SHA1
  
  31938110d10a8ebce18ce02d1ebaca0e344a797c
- SHA256
  
  36dcd2cc9ef2a279014b4f85915100f62d36bd0c2cf439638d4ce0e9c18cc2ff
- SHA512
  
  39dc956c870a2bd80786dd215b503e5f22a1259bb858ff37ae601cb11d425afd5304e6472512c99afcb98569f08990e1d03df5e3d392ec484b1a98dd3f7b86e2
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral5 behavioral6
- Target
  
  下载王www.xzking.com.url
- Size
  
  302B
- MD5
  
  f6069f943715d9a180c3d138647cff0f
- SHA1
  
  d11eac1bcc2bd7ec49c3640063c5e378cd3c83fd
- SHA256
  
  5315aa654483ecb41f08131f411397c4c9629c0a01820c1dc1b5fba2ead4eb18
- SHA512
  
  96985ea678c97cff36f6258e0bb08bc1bca10a7f9cc4c6f27941dfed668795caca5bfaacf7939d608f50a234ab2954f98f00a5b1ecdb260adb9851e8cc924b76
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8