General
-
Target
b2f2265e0623923ceb0265740821e5d0
-
Size
1.3MB
-
Sample
240304-ycjhqsbc8t
-
MD5
b2f2265e0623923ceb0265740821e5d0
-
SHA1
9f056e6d6c7d9300d7e483463be142c788fecef4
-
SHA256
f241c187d128965045b1d09a9b966138318cbcffadc4649202fd6c463f48caa6
-
SHA512
253d252419ae3286f37e2f1f44d99b539899323bb337619d7fbca00948360ac29cf38f695c7643fad71986abd76cdb56a4729dc73352ad2e9417330251174974
-
SSDEEP
24576:0FX9joY05RtLbv0KzcaqTfPacLh/PHeSkHZ6uYf0XfqB08uRRPhoHB:8X9ji5Rxl1qbaclnHyHZuf0PqB08URP8
Behavioral task
behavioral1
Sample
bookdown.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
bookdown.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
新云软件.url
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
新云软件.url
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
bookdown.exe
-
Size
1.4MB
-
MD5
14f265286c55d8a820949dfbc003334b
-
SHA1
164f10a5dafee505d50a56c58040c2f9042e307d
-
SHA256
ed5e5d99d632bc6128daf755b788dd25b56c1bc24e14184aca703d607bb81b70
-
SHA512
e4958b489ccd44d3c7476739a6daf109f7a4eb81e13e2d21dc87836d781c35fa39b63e293b5459d9524a8148b6b8d5a37be328ee10aced0ccbca08f9b6822b80
-
SSDEEP
24576:prjvS47u8TGloPWYGdFqVhQjj5Unf+iCejw+tsRBA7EKKwlHYpAHHp9PgSo2/9gg:pvSSe5dgsjuBsRa/K6YwrPT/9rpaa
Score7/10-
Loads dropped DLL
-
-
-
Target
新云软件.url
-
Size
133B
-
MD5
4f0017b3b346bd0626f0c3b915e6e734
-
SHA1
823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
-
SHA256
df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
-
SHA512
0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score1/10 -