7b481ab4b15c7de35525d2f8be1568fa57b032add571c66f476dba9bea41d5f1

Sharing

Copy URL

Twitter E-mail

General

Target

PvZ_Toolkit_v1.20.3.zip
Size

1.2MB
Sample

240219-tf7mhsfh74
MD5

b659e961575c7015aefea4af69b28bde
SHA1

de2af394c0f13969b512183107bc879f5186df5e
SHA256

7b481ab4b15c7de35525d2f8be1568fa57b032add571c66f476dba9bea41d5f1
SHA512

b3ca2fc13ead7094b7cb0ce90171b3e2f3033a81620f038c40fb53bffb4816c4b31a0962bc885743aed077f52da1455eb95f4de651ec3cee8a05097e13b8e0af
SSDEEP

24576:sJwDDecZAtQzWPAg9Uwbdrof3FHul/okSjbZ8CQThZKUcJsQj:BZAtQzWYg9UqrY3FH8Lc9tMvUj

Score

3^/10

Malware Config

Targets

- Target
  
  PvZ_Toolkit_v1.20.3.zip
- Size
  
  1.2MB
- MD5
  
  b659e961575c7015aefea4af69b28bde
- SHA1
  
  de2af394c0f13969b512183107bc879f5186df5e
- SHA256
  
  7b481ab4b15c7de35525d2f8be1568fa57b032add571c66f476dba9bea41d5f1
- SHA512
  
  b3ca2fc13ead7094b7cb0ce90171b3e2f3033a81620f038c40fb53bffb4816c4b31a0962bc885743aed077f52da1455eb95f4de651ec3cee8a05097e13b8e0af
- SSDEEP
  
  24576:sJwDDecZAtQzWPAg9Uwbdrof3FHul/okSjbZ8CQThZKUcJsQj:BZAtQzWYg9UqrY3FH8Lc9tMvUj
Score

1^/10
behavioral1 behavioral2
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3.exe
- Size
  
  1.1MB
- MD5
  
  22fb52696cbd84b054eb5fdbf8fced3d
- SHA1
  
  55b3ca6e9e1730d3e8a61147eb1391f587960ada
- SHA256
  
  434ae4f7c811fb2464877cba0c1697a1dd270e1674a7f1191d722dbd134859a3
- SHA512
  
  710540bc9ab03f06131dcb8e718cc4adcec23e34e7ee9200c4b982d49768aad0874281b5c09f0fc5847e66f70349a7ac8e88203afba9880d20647aebc8b478c7
- SSDEEP
  
  24576:wsWq6FpNUx1UT1I8mYnSvbjh1p7Ehsad7TVSyHrNuWLgT/qOdF:wRpCxqT1Pmdb5whsadt8xTzdF
Score

1^/10
behavioral3 behavioral4
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3.exe.asc
- Size
  
  833B
- MD5
  
  fd2fbf4b0f74fd6563a76e19d5b44a77
- SHA1
  
  06bd5b3f0ec1d37eb8d6557690fc5ec0b6a7d8a1
- SHA256
  
  cf16772d27cfcde10ce8c384dc0b5f860f75abc65a8624ea8b48a038b09e7286
- SHA512
  
  9eb40854b4d25ce8432382def2901bf2c28feb209360def4f1158d4ab56a678da1e7cd5baa532694b6577e4e834585fc5a2a514cd282fb78b7bebb71b3d62a1a
Score

3^/10
behavioral5 behavioral6
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3.exe.hash
- Size
  
  318B
- MD5
  
  126d8ad9e5917f16fe474d1f1d89aefd
- SHA1
  
  0198f98f6cd18cb93b48e4df26894da2fc562c6d
- SHA256
  
  a72e336ed2d8ac7b7fcf5beff5619a2c905b860d574aeeaeea96fb0b46fb2f80
- SHA512
  
  03ac31844d95f64a71938fc51f015556e9acfc9811626d424024d6bbfb89fc8809779d6bbde84428e2653de35083b5ee71eeea180657813972890b68e7e7f272
Score

3^/10
behavioral7 behavioral8
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3_(English).exe
- Size
  
  1.1MB
- MD5
  
  2779a1821bc8aa962c34c888440b2fef
- SHA1
  
  7cca8a2e0764f33763942c6f4eb13c6480b4241e
- SHA256
  
  cf791e1fbd7e985371bc6f82a793ca1d701f454366a37f9c59bd1a8108c889ea
- SHA512
  
  c73f729a309c25e4eb5d355e88c0be4319b1dc629d74f8a9f84b004509f934f58d711d868ea9dec358db1f196d47902f636af401e5c5f93893ff2570d8c71819
- SSDEEP
  
  24576:oMuvrdnJ/x4m/WFE1c93zcOB3ls7kPVAkv/SByLN4TaTI68DLx:oxP/x4mS33Bi7kP+kPLNdT4DLx
Score

1^/10
behavioral10 behavioral9
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3_(English).exe.asc
- Size
  
  833B
- MD5
  
  be9a7c608dd39aa501f826397b28cbda
- SHA1
  
  bcaef537b7f8b22f6813c8a829501b96a5c4c9c2
- SHA256
  
  99ceeb54db2488cafc2a0f4c5d0d72d0b92f04ed23652f900bc5d3f7ff9fd068
- SHA512
  
  b1e72ae03a76e57930d7dadf108855fca89ea7fb6f7f7484fd936f0d0a6477455e8989714e76b094333a4a27c5124c351c99813877d378626dc583ecfde2229c
Score

1^/10
behavioral11 behavioral12
- Target
  
  PvZ_Toolkit_v1.20.3/PvZ_Toolkit_v1.20.3_(English).exe.hash
- Size
  
  328B
- MD5
  
  cc6eeec7db6e05cc8d209a832108567f
- SHA1
  
  5bd2f4d0d03bb71235a662e8ef0d90069d110973
- SHA256
  
  7951fd53512dc92132d9154f8a6d6ce5e8e7ffb69be2bc3903119116853f596e
- SHA512
  
  adc0a3b0fbc545a6d08d852dc631d11d6cc19de0d2b14de28278eb1aa72496468f928967b172ab7d1de64b5f85d7a3ec00508c197c51ca1779bcb5c127cce0b9
Score

1^/10
behavioral13 behavioral14
- Target
  
  PvZ_Toolkit_v1.20.3/builds.yml
- Size
  
  755B
- MD5
  
  63690868148d6b97d9cbe9e8bb895b3c
- SHA1
  
  4ff4db3d09d3c77c76d151045c5813b2ae257de7
- SHA256
  
  390320bddcfc5f9ad5354a83572477671f7f8a8fc4b9e502ed3c69d03144b3a1
- SHA512
  
  81285226a4fdc84f933a53d9613fb17d9116bdf2ff4060f22952118c977a14b0df53368abb54312290e202fee9b46a1845f3c04e3f94566bab8201d1314fe7bc
Score

3^/10
behavioral15 behavioral16
- Target
  
  PvZ_Toolkit_v1.20.3/lineup.yml
- Size
  
  27KB
- MD5
  
  4cfc666e635f226aa6ef67c7ce0a7e33
- SHA1
  
  78d0bbbec851bfbb1e2df25a6a256d8073348c29
- SHA256
  
  5e66d5eed40a4e47682b1673dbb82e3d5ba58a4bf598f0419c117f38cffd4b1d
- SHA512
  
  c6f04d0be0f33af4cb37dbbc44bd77238b7f24b65c5c68cab50777b31b64ebc1bc1b2bdaf6fd01c52ff6ffdfd01a8cc32158ecd7d574d12fd8c537acb1cb0938
- SSDEEP
  
  768:MCq6fysNjk8Kc5KxVyn7nh3k+Vzfecukqr4e9BrP:Q6fysNjde47t/heD1r59BrP
Score

3^/10
behavioral17 behavioral18
- Target
  
  PvZ_Toolkit_v1.20.3/splash.png
- Size
  
  15KB
- MD5
  
  8dd46f92e0fa175513278ff208147fbf
- SHA1
  
  ea2ba9eeb89e4725c271458023808e05e2e1fea9
- SHA256
  
  301fa4c3b56e8354a88c912443baa588028cd3802433ee1dbe5fe2e0aa8c048f
- SHA512
  
  5b809371e320591ee24e8b015db4dc9f46c30064d5e91e509b6875c8a0308214c8259584464efb63b86f912576bff5653061892ba714c835ae233cb0ae5680ef
- SSDEEP
  
  192:C8rHGt9MWM/wvBXtb8w37FB9zX5a0N1dCRFo4AubEPOqjvgd22JPE7Ao3yMxN6:BwAGQw3P1/m64AsEPrwPEUo3yAN6
Score

3^/10
behavioral19 behavioral20
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/HTTPS 根证书/Chain of Trust - Let's Encrypt.url
- Size
  
  63B
- MD5
  
  602123159a5849aafc26d0a7486a7ef5
- SHA1
  
  d671e272287d01e50d6e06bdf21fbbb08e9cedab
- SHA256
  
  9858a99f9319652054ee767f10ba12cbe23c2ff7d63b38c42073ca798fe857af
- SHA512
  
  ddd1b60d032d35cca5a9e049a35cb1d2ad1c6b9669982896ec2b4d66df8aa5e46d0326606c837a48fc044d3d81a33ead4b83691a491476f17e96011e805b2f35
Score

1^/10
behavioral21 behavioral22
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/HTTPS 根证书/ISRG Root X1.der
- Size
  
  1KB
- MD5
  
  0cd2f9e0da1773e9ed864da5e370e74e
- SHA1
  
  cabd2a79a1076a31f21d253635cb039d4329a5e8
- SHA256
  
  96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
- SHA512
  
  3b40f27e828323f5b91f8909883a78a21c86551761f27b38029faaec14af5b7aa96fb9f9cc93ee201b5eb1d0fef17b290747e8b839d2e49a8f36c5ebf3c7c910
Score

1^/10
behavioral23 behavioral24
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/HTTPS 根证书/ISRG Root X2.der
- Size
  
  543B
- MD5
  
  d39ec41e233ca6dfcfa37e6de014e6e5
- SHA1
  
  bdb1b93cd5978d45c6261455f8db95c75ad153af
- SHA256
  
  69729b8e15a86efc177a57afb7171dfc64add28c2fca8cf1507e34453ccb1470
- SHA512
  
  2bfbc06bdba0864bac09e5de0be19d67f5640b754c8f1442a6afb9ddbf8e03bd31063bfc01dc638f87ae8a8215ef37f94ce679291b050e44599d5fac564c6931
Score

1^/10
behavioral25 behavioral26
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/下载游戏 (Plants vs. Zombies).url
- Size
  
  60B
- MD5
  
  fba69962bb49199d677de9fcc0eefd76
- SHA1
  
  2087c762794faa9b5c82fb7efbde8246c2d4c991
- SHA256
  
  a6a053d268f5d6a6d036587273aa443def001aabaafdf8ea4b052d128d455f52
- SHA512
  
  07899afa6c9dc0e66ead6fca119b673dc279687b186a61e91cfbb049c8947313f89e153da2ff9c89aa4b93d5412be9cf30f7e52e828c9b6dbb6b48d03290234b
Score

1^/10
behavioral27 behavioral28
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/帮助文档 (Help Document).url
- Size
  
  59B
- MD5
  
  b79925f1d57ff610029295cebac34ad4
- SHA1
  
  b78e861fc3cd3ed5bd02249e18d0aa84c596efa8
- SHA256
  
  2989bc86b0f92f1b68e3a53d48ff5333204a0c0126f1bfd3ce637fd9411ca375
- SHA512
  
  070b2c566844ce4e56ad652f72fb922242eaf98a1e6b5f22eb08585dd0307eed2806fab1ed603fbeca9bdc134ac572cc6f139f06810dece7050ad8455cabda39
Score

1^/10
behavioral29 behavioral30
- Target
  
  PvZ_Toolkit_v1.20.3/植僵工具箱网站/阵型列表 (Endless Builds).url
- Size
  
  58B
- MD5
  
  31f81f5b8e7b6b129ccb1011410c8337
- SHA1
  
  d4b919d21372a82d9ff5fffaabf494c7d7f25486
- SHA256
  
  8f4fc0f1b6ab7012205da1e7e7250465291093d76fcd5fa4ac0c0b232592c0f7
- SHA512
  
  30d3470f1e69578a92c58f9d45fd69089801d0c2369d86fab5069ac2aace0360e01a9eebaec7d3e7ca78f25c7b22d9e13d05af8fbeaaef5d698cc9a165623aea
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32