360894ac973d68a347aedb4008475a4f54a2c2517f384ce999200595be50b7e1

Sharing

Copy URL

Twitter E-mail

General

Target

2bc8a3f7a2fbe93723628322896b4487
Size

2.4MB
Sample

231231-hahweshfb4
MD5

2bc8a3f7a2fbe93723628322896b4487
SHA1

bf4668b54900daf1d63f888103bb9a76fc5805d5
SHA256

360894ac973d68a347aedb4008475a4f54a2c2517f384ce999200595be50b7e1
SHA512

fdb3dc770f922758b435d291c36cb835b14cf01315d744843accca36346846fcdfb078fc6696ccc7e7f523a8520eef0f62788fef2b65687935b788e89124f2eb
SSDEEP

49152:yYiSXnvCvBrl2cMW3qvu/3Dxfx3ZcDvcWcDWVk4lSqWLmL:7Xn2hl2cM2OaFfxJcDvyDwSqAmL

Score

7^/10

Malware Config

Targets

- Target
  
  2bc8a3f7a2fbe93723628322896b4487
- Size
  
  2.4MB
- MD5
  
  2bc8a3f7a2fbe93723628322896b4487
- SHA1
  
  bf4668b54900daf1d63f888103bb9a76fc5805d5
- SHA256
  
  360894ac973d68a347aedb4008475a4f54a2c2517f384ce999200595be50b7e1
- SHA512
  
  fdb3dc770f922758b435d291c36cb835b14cf01315d744843accca36346846fcdfb078fc6696ccc7e7f523a8520eef0f62788fef2b65687935b788e89124f2eb
- SSDEEP
  
  49152:yYiSXnvCvBrl2cMW3qvu/3Dxfx3ZcDvcWcDWVk4lSqWLmL:7Xn2hl2cM2OaFfxJcDvyDwSqAmL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  北方供求 v3.4 Access版/AboutUs.asp
- Size
  
  5KB
- MD5
  
  58151234ae0d859b1b769d7f34e7b370
- SHA1
  
  54b8abf6daf49a3d8f716f4d0c1d6d5ca775f90a
- SHA256
  
  819add8ef3156e1f52f0953658b650130d1f479ce43f939b62e1b7d5630a854f
- SHA512
  
  8df512d02ea3c9704744ee4c60f92eb006a8b9d2d861686db1efbece55a9192c6e9718e1b0e715b5fff649a5048f4a6d53b69fa6823b3be9380f94100b9a9788
- SSDEEP
  
  96:TCuJMrNVdvy5zfrjsrsK0iS9ygSlv1BInmFqKAOUQaBE/9eARW+SoBW0:I5vkPjsrN0iS9ygSLBInR3QaB09eAQ+b
Score

1^/10
behavioral3 behavioral4
- Target
  
  北方供求 v3.4 Access版/Ad.asp
- Size
  
  20KB
- MD5
  
  c2f3e9c2db68a23f0e91dd069be3726e
- SHA1
  
  04ba89d2b97e70fd45cc0c000b868fc9b2e04034
- SHA256
  
  72d449dd6fe1ba05e13588cf9e9afb8edddb80c7bd0d1a5d13832ceef918dc72
- SHA512
  
  38e76ad7a38bf55742f7f84ca38238234c34577d9284256d6aae5410e8b0d14b99d0f625f35efbbb0bc406e252f346224573da0ca5c5fc414883d378de79fbc7
- SSDEEP
  
  384:sBjsrCT9ygS7BkeBqrfv2IRnCcI8w4UI9MgUI8pf7IDAAcIJ8CpI48rUIDzjBIzz:sBjsSbSN1G2kQ9hDK/Krf0
Score

3^/10
behavioral5 behavioral6
- Target
  
  北方供求 v3.4 Access版/Add.asp
- Size
  
  30KB
- MD5
  
  e520011922addb734db05cc1cf2abbf8
- SHA1
  
  0610fce632641913513603aa2ac24b9977d93afa
- SHA256
  
  053f1616df063ed4c2e99a61d887b4100f4352963774dcd5bff06f2a114bc6fb
- SHA512
  
  da3de21c71fee17f0425793376e80c276d5b0dbc07ffffa6e661cf1b2a0c4dacaa55b3bedc4b74548786365acb709487dfe979eed4480d083db5be4e8998fc57
- SSDEEP
  
  384:QXmkGjsrCT9ygSH5BIAX8YVcWRpqUaxY12fO705Cl3x+SB0:AmkGjsSbSXIzYVcWRpYY12m705Gf0
Score

1^/10
behavioral7 behavioral8
- Target
  
  北方供求 v3.4 Access版/Alipay_Payto.asp
- Size
  
  3KB
- MD5
  
  cea3308af02f60655022d67cd91b837f
- SHA1
  
  7481925685889fc04430a7d8358368e78d3c6151
- SHA256
  
  121158cd4804f303f8fa2f426372613e4de303a8a7153560155e0253f02fb4b0
- SHA512
  
  4b075700fb6ba273edfa90374cc005c6e3353fcd3a7da3030b39c9aa56d09d0a18aa3a5902bf7bab80de0a36f5e40799b839f3622a05214f26231e5bb14efee6
Score

3^/10
behavioral10 behavioral9
- Target
  
  北方供求 v3.4 Access版/Alipay_md5.asp
- Size
  
  10KB
- MD5
  
  a0ceb62a936dc2a32afc5345823479a2
- SHA1
  
  997a6b62b7093fe05c39b6e069a0b410fb06b9aa
- SHA256
  
  fe9115bcd0eabc99c38496f8ad58db9cc1ee896c9687943eddd42f553450aefb
- SHA512
  
  fe8bd084dcabde90b3651dfa8aef2becae66e19b8b91fc37feb03e64bfd224c3a68e21ccff9fff9e7c78a1b2094e74ae3532bc7466b6f47c00bffe66ac086e2c
- SSDEEP
  
  192:QjmnnLQ+zCrA45/zqnlzNnlfMVQFd8UggCLNnyXHYLKOaQmyvQ1Id:zy2ohNLNn+HYLLD3v6U
Score

1^/10
behavioral11 behavioral12
- Target
  
  北方供求 v3.4 Access版/CheckPass.asp
- Size
  
  3KB
- MD5
  
  e5ea4ae54e5f5c642fb8154669e48b3a
- SHA1
  
  75f1a10a26927d04ccbd21fa10d4258af5194cfc
- SHA256
  
  66622e1f42d9b2fa403997a0fb1a54a45a1ca0dd70bf6ab63d1a370e52170548
- SHA512
  
  67d7a686762bf56e1a38a893a58615b8e1be888a455e3a91296a7ca1e7021f7626a3a09af7a5988812f70382cdab67e7093314897601d48b56527f6cabb34fc5
Score

1^/10
behavioral13 behavioral14
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Catalog.asp
- Size
  
  5KB
- MD5
  
  fc5470202bc167c5387b55d0a0d3e29d
- SHA1
  
  8b1e63b0d14e418da20772a54374c6c081079f22
- SHA256
  
  b14c261110fc11940286ecda5434b2dd520984d12e6fa0f254d3d14fe5c07b2f
- SHA512
  
  bc4f99a3c133a597ff5642effb6f35133b4477e297ad79b371e48aa28cd74e45fb45c8b78521daa4d8738533ee2c09f3816e43c3dd6f32c08c3782ab2b7482c0
- SSDEEP
  
  96:CGYCuJMrbCQ6JS9O9CQ68je+lZy898Lv8emL0X4kvhbJzufcA7c:CEL6v68Znb8z8emL0X/vhbic
Score

1^/10
behavioral15 behavioral16
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Code.asp
- Size
  
  11KB
- MD5
  
  abe3a4bf7a9007712b53032225fb1637
- SHA1
  
  c0b323dca573099e88c670b185cc71d09df01bb6
- SHA256
  
  0d16741f4726803c878c2d819ebbddfb976b3264d9721576b59f926f17ffdf62
- SHA512
  
  142e3cba194a1567821bad270423d48a42357bd5938b2434ca3da36c42a2a5c623d0204bb34851e798496cc78c5633fd6f4f53b102f27a23d2f3626f2ed5410b
- SSDEEP
  
  192:y16nWO4LrbEUIcSL0aaHWFaYopX9eKWNtd4v:FWO4L/sCVzXEK0tdQ
Score

1^/10
behavioral17 behavioral18
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Config.asp
- Size
  
  1KB
- MD5
  
  3ac58f280b52f93ea15e788f545a990d
- SHA1
  
  0a35d03a657d120e5bd884895e8b697bc9114823
- SHA256
  
  571b8bbf826e2a50f0ff6419d30e9aad2c6c127a96adacd959c9f12066c3411b
- SHA512
  
  28737de56ca4c0ce14d36d4651ccf817fa4f13a0ae7ecbec15f49ee31d0cdbec4a22820f4999be88d81bb5d607a4a74547aa60ef1c34affcfee5b8a67bfd9ddd
Score

3^/10
behavioral19 behavioral20
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Cooperate.asp
- Size
  
  2KB
- MD5
  
  cf670d03d1e0e853768aef5b2c89ef63
- SHA1
  
  06909ee67f04ea2782ed38d13dc2e4e89dacabc7
- SHA256
  
  090cf83b2932fe97e6cfb14a38fca6ccfd280faf9ea6026e01458cd63313a6ac
- SHA512
  
  3af2eab6e082c14d07badb49fa49f60b8a32abfd41c9926c3ffca6e8830b40c8cac8290eb3dfd7041c2a94dda6ffddb1c5f671fde7e95b9966779bb71e6d430c
Score

1^/10
behavioral21 behavioral22
- Target
  
  北方供求 v3.4 Access版/Common/Inc_DatConn.asp
- Size
  
  3KB
- MD5
  
  2f434c0000f8b517bb2cca944ceb8ec5
- SHA1
  
  30c14a2662a1f48ce3aa7dfd9527052f75d0c342
- SHA256
  
  18e6871991f62a31201302fbc0dc1b2bbb696c1a5ba5af3c7d30f46bcb1b64b4
- SHA512
  
  e854407cb2252d2d054325c03e5475c720d0ee3354d8ab020fd298c39e6d08409caea32574abac38c45a5860b9daa94a40bfd100c577cb81216db7d3a1d4daff
Score

1^/10
behavioral23 behavioral24
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Function.asp
- Size
  
  10KB
- MD5
  
  2de1c1d0153c4fc808543c960fa4ce1b
- SHA1
  
  056a64157af17ac121f1eaea41e3f3039566c17f
- SHA256
  
  d7e01b7fef0a7abb343e526c29ceb937a891dee4b0dbaf3f3f1b946441f8e9a1
- SHA512
  
  ecfd0e487ab888b4196edaa4ecab514b0e20a4317a82a277a6bc88957763082bc8fe6bf10c3b78a5da742882897cdfe308f3e8c9d5c56251522e640888a50aee
- SSDEEP
  
  96:FCuJMrm/VYJTcrqosesjsvfs2dQeQOWfSCF4enLS1fciAC2R9hPpp2XiTtgKmALy:yNF5IvEZDPo2FCSLghiWwa6XEDDag
Score

1^/10
behavioral25 behavioral26
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Link.asp
- Size
  
  2KB
- MD5
  
  a5d61c07d1009692257a4e1aa0e1d789
- SHA1
  
  0008df72e6caec0b6535754c21efafcee0b51452
- SHA256
  
  041f0d58a733e970a90b710d3870b78dcabc98a832335d10c3595198dd47cd6a
- SHA512
  
  99f6274b1f1456b9cf625960c10c73db9477b369d5ecfd5a311d0e6f0aa6c12927aac728c09f97da181575eaf0bb384962d62293d275eeed7a4bd9e9c8a5e993
Score

1^/10
behavioral27 behavioral28
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Login.asp
- Size
  
  5KB
- MD5
  
  c0993b6e3a70bce0e66b4aaa70ac9164
- SHA1
  
  c6f0d2cd67d491a6faf08290074d57bf3f25823e
- SHA256
  
  be4897688cb6b932d8510a570414e243f54adef627c54a0c7f88e257be346053
- SHA512
  
  196cb311b18aff2114d704afcad5aebb761754620bc8be1bd83d51edf4c515903fab960a927f008160844cb5a6c17351c658a5ff6c00092e570f202ec893ba3c
- SSDEEP
  
  96:r4CuJMrN8d1zydL/32wBgYkOdOCEqPwOOOvw7BIjUoJnBXBmzy4ze:rlp8+32RgBAzmpjUoZBXBmWp
Score

1^/10
behavioral29 behavioral30
- Target
  
  北方供求 v3.4 Access版/Common/Inc_Search.asp
- Size
  
  5KB
- MD5
  
  779a04905dc68eaa4d8046f296398d89
- SHA1
  
  502f715e6461883e47f68e77b15d68141546b671
- SHA256
  
  a185c8c1ab5c59613971a57767d7a97be914030ad4e43d3bc87e52e021ef8450
- SHA512
  
  f38beab0d47126656906c6160c4ec7a9c37e846692d11975d19c72888bad0f4a6935e568e89fcfe029ec4fbe6b05ef3c5a4e488a826cadbc4a9eef3825dd89f2
- SSDEEP
  
  96:FCuJMr/SRKJI+Zn6N+rE0+N4UVyAD/gce7wxL:yjSRD+I0o0LWyA/qwh
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32