a1d303b353df28ed366a8fc944d93cacf25f328d63e2b95c30b188410a6894df

General

Target

Quest Games Optimizer 9.2.1 -NIF(1).zip
Size

17.7MB
Sample

240112-gactqsgcf6
MD5

3d75fc8cd700fab64697eb8357dedbf8
SHA1

e2f4360f7bc0bf78acdd4e5beb7f8667480be30f
SHA256

a1d303b353df28ed366a8fc944d93cacf25f328d63e2b95c30b188410a6894df
SHA512

f2baecdf7b6cbcec1e40a626a8845bed4994a1994d670fd9acda74ed0bbc3ab8844421b002531c97e34acc3cb938e5e45948869bad93a6fc6a60cac897169371
SSDEEP

393216:gOugtpTm5/sUOaaegtMnYjRtkpkmMbRlV8+sgtvz9BZpuS:zLpTzPhMe8kPlegpBPN

Score

7^/10

upx

Malware Config

Targets

- Target
  
  adb/AdbWinApi.dll
- Size
  
  95KB
- MD5
  
  ed5a809dc0024d83cbab4fb9933d598d
- SHA1
  
  0bc5a82327f8641d9287101e4cc7041af20bad57
- SHA256
  
  d60103a5e99bc9888f786ee916f5d6e45493c3247972cb053833803de7e95cf9
- SHA512
  
  1fdb74ee5912fbdd2c0cba501e998349fecfbef5f4f743c7978c38996aa7e1f38e8ac750f2dc8f84b8094de3dd6fa3f983a29f290b3fa2cdbdaed691748baf17
- SSDEEP
  
  1536:Jwqdq+3pvspmLh8SCykrpTG7kfGHuNezq02XJqo+iFi1yCP:JwqD3L8Tezq0et+ui1y
Score

3^/10
behavioral1
- Target
  
  adb/AdbWinUsbApi.dll
- Size
  
  61KB
- MD5
  
  0e24119daf1909e398fa1850b6112077
- SHA1
  
  293eedadb3172e756a421790d551e407457e0a8c
- SHA256
  
  25207c506d29c4e8dceb61b4bd50e8669ba26012988a43fbf26a890b1e60fc97
- SHA512
  
  9cbb26e555ab40b019a446337db58770b9a0c9c08316ff1e1909c4b6d99c00bd33522d05890870a91b4b581e20c7dce87488ab0d22fc3c4bbdd7e9b38f164b43
- SSDEEP
  
  1536:l72doFmOiHizFbPlspcsbj5ZsP+YeTs1p:lSSfN9+YeTs1p
Score

3^/10
behavioral2
- Target
  
  adb/adb.exe
- Size
  
  5.6MB
- MD5
  
  fc771d349c0082c83eab0c77aae86dd0
- SHA1
  
  42e8db4ef25e6c029ce4f356136b75d05487a49e
- SHA256
  
  4339ec38f8698df6f7497e346640d715353fc2278787529bcda67dc6ea49141e
- SHA512
  
  10b930c159806e3ae013628bac8385b2d422f7d311ef8aba4895036db68e9aac0fc63de2a0272784dc955746623beaeb8a182815e2fe3dcbccc13a2826941a96
- SSDEEP
  
  49152:N1bbBWmqcEr5DV0uLC5sakvVgieBn5BzPZjdZYvM+ojzJLF+vW6Daa55pXxNh9Vq:dgV5mkvt6NzZYU+iWz5iXGTailRRQ
Score

1^/10
behavioral3
- Target
  
  com.anagan.qgp.apk
- Size
  
  17.3MB
- MD5
  
  9bd6dc3173305669b2ae19d6ca3968a3
- SHA1
  
  1086a907795041650abc8efc9b9659a5f59aadf8
- SHA256
  
  db8ae9227e6d86dcf02b2c27f8a813ed34ccc4a3ee520d14447973132bf1fd01
- SHA512
  
  7e4320204fe1e6cecdcec191eb78d9878cf20d28da05f8a696430370fb30c18d0561d9e09a4105f5d4881fe9c5686f85794816a5bf85fe260ecfff1136f4ccc6
- SSDEEP
  
  393216:an70S7PO21bKIFu6Lvpl6d4OTDGGicUaFNkrEbEDLnLBJRyg0i8o3:jSDOihbp8n3GGhgEaXU8x3
Score

3^/10
behavioral4
- Target
  
  huiziyuan.net.url
- Size
  
  125B
- MD5
  
  c5c2781c90eb13703b02246f554e4467
- SHA1
  
  e36784119e6555bf3c9bb8794fdeb1d2de2a2963
- SHA256
  
  e20696365d2876ba2aa7abdca6e0830c5e183121105a8b68cf412c4ec427ad77
- SHA512
  
  7fd1703843c9fd55ab08b681ad8e9ee8d6796eee54438ce7a8b16f042b11822032f9e2d69f658a043792f41436366542d0c08d31e802299385647abf862fe716
Score

3^/10
behavioral5
- Target
  
  全自动安装.exe
- Size
  
  72KB
- MD5
  
  e3a56ba7e5a9da5a9644e4b541737821
- SHA1
  
  e952e90438855ef0608f99ad4b91d1323e7b0008
- SHA256
  
  df2bb321578bd2a30fa4e6e6aec4f3da278fd8c7f9858da5f49fd8cb8a4f5e31
- SHA512
  
  63a6e042c77a053cec7b92df8f6fd602c826ceedb88798b84e80eb10a72661b0fb3996fdc3a5559e741fba889de7968b4ee765cb0e0cf9f3eaa5408b6e990611
- SSDEEP
  
  1536:LrPJVKjbcknWSOYvTfkWkFM79yQVEzET5Xy27YzlL2WRFc:LLJMjbcHDdMwQ4s7YxLjR
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6