55834dfbcb651af7c6ba9c565e82b0e31dd62f0b6080af8fca8cbc77c67084fd

Sharing

Copy URL

Twitter E-mail

General

Target

b556b2eb37b75b179b3ae0e25dd75281
Size

5.2MB
Sample

240305-wsxzysec52
MD5

b556b2eb37b75b179b3ae0e25dd75281
SHA1

39130d5f496c5c087e0888d80678623abe2dd8b1
SHA256

55834dfbcb651af7c6ba9c565e82b0e31dd62f0b6080af8fca8cbc77c67084fd
SHA512

38e97ac9540ede3d948a6e814818b4669c56f57e128af201e7a1b9706e24cb83596a5d4cfbebfa3a05f70984ec2a12e875ecbfe45549427fe3293fdafa8f9622
SSDEEP

98304:SDE/Sjf7og83s9tPQ+AAEOP+mme5T1dwkJu5LUwod9Y3txDXEP:H6L7oP3WFQhAZP+mmodVJu53od9CK

Score

7^/10

aspackv2

Malware Config

Targets

- Target
  
  Mirserver/DBServer/DBServer.exe
- Size
  
  382KB
- MD5
  
  d7a8eec0e18be329c93bd2095f0df1f7
- SHA1
  
  f2b90bd2c0013ee4a518ad130bc481606dd9e3f1
- SHA256
  
  3cce2cb4ff76b4ff4362699003fde1375e82a05932794ba09f0809f287128922
- SHA512
  
  8719727a47803c95df24095aa7cd9c8af19223d6d59490117cc589c62ead8663583a35535bc7e8ea92dca40feba7c95958be7cf539319ed827564ebe8291a871
- SSDEEP
  
  6144:YFM/VTFE7hlI9yNgX8fIlEIS2qVUDA6rGafN8mscrEe0PyIEVqmQ5iJCJt6U3pRG:CMVe7hlM5lEZ6AhId0PtmGKe7p0q
Score

1^/10
behavioral1 behavioral2
- Target
  
  Mirserver/GameCenter.exe
- Size
  
  267KB
- MD5
  
  935ed40f01658ce10baef215912a3422
- SHA1
  
  43042f9bd9586e3a0c41a6370c1cefbf198168fa
- SHA256
  
  eb81deb3a6676cb16d3f3520989b2fff5bcdd5a73dc145e42d4113fc1056c2ba
- SHA512
  
  a42feee8dad0801b84e481deaf57a11b476cc6f7d785860726211161c17e1e4033ae3017d9c562a58ed5885ad583c4ffe346bc19e9408d99fa8a641c00f6fd9c
- SSDEEP
  
  6144:YcERY7dT6CLL6jbX7f6OJbYLIQDeXZWifmjzo5:6mJeCLLEzjbYLzeJJfmzo
Score

1^/10
behavioral3 behavioral4
- Target
  
  Mirserver/LogServer/LogDataServer.exe
- Size
  
  421KB
- MD5
  
  e8fae6abd9cfc6f32821f5c7366ea64f
- SHA1
  
  e18ba551f9ed5a258e6bb8efca394f3aff1cb246
- SHA256
  
  1926d958983a59b78c0a212b68e6fedcc24e8b920a41141fec5787f96fe023c3
- SHA512
  
  acf7ef1cf96c7a33fc1afb7943b842fed7bf9c7108f43af904fb60e3f485efecb94ca0f7cadd7010c3d513d97c494a618842dbdb29e6d9abc0881ff8e1b91098
- SSDEEP
  
  6144:Ndu1qC4u63IVhYKjrDx/YD9RT8ZFpG3Lk5BoXWTzNbTuqdYm2OwFnl:q1h4b3IVaqxivwFw7k5ltubNFl
Score

1^/10
behavioral5 behavioral6
- Target
  
  Mirserver/LoginGate/LoginGate.exe
- Size
  
  212KB
- MD5
  
  700f370afb01ec1e2d5be6d92ca30dcf
- SHA1
  
  2366dada79cf49b1802962d387107637099ff3f9
- SHA256
  
  30aaa1a59c1b295e26fcff124e5b8474458d6c972de4f36982105ca37f63a0d0
- SHA512
  
  e61c8a08089d25b4ff2bf46e4c0c6df0c1992d7158cf5bc9212adb096daec0f6edc2669d5a5678be86b6e42581b03521a64d9347ef5fb54066220ccddcfb7ad9
- SSDEEP
  
  3072:G7v5I31Wr7Rm2pfna1vES43tkM3wQPyfrdHDOilQAM0csASL5Nqg3JnIZ:G9g1WrkRES4Z3wJxDJqh0cs3UIN
Score

1^/10
behavioral7 behavioral8
- Target
  
  Mirserver/LoginSrv/LoginSrv.exe
- Size
  
  246KB
- MD5
  
  7f5de1ca3a879695e175b4e4261eb5f4
- SHA1
  
  90f89b980c62e8de88fd4a880ede6117981b8139
- SHA256
  
  92c6dfa26a49ba334778a928b6f0a39b46d123a87a47e6f713d82b9d14f139f8
- SHA512
  
  febdebc98eb9c0d08a6c59fb7fce48e47dbb8a348203f2ead5f27d19deaf1e1bd337adce68a127bfb5bf322847b70351c65e82669ee4bc3fdf6211faf9154485
- SSDEEP
  
  6144:3CnpCPZNM9ouEX6zWiUvt61g+C88XQ5SGA+:3CV9BEqzZUvtL+rX5S3
Score

1^/10
behavioral10 behavioral9
- Target
  
  Mirserver/Mir200/Envir/MapQuest_def/免费下载商业版本请点我.html
- Size
  
  70B
- MD5
  
  ccadb62e46971867c0caf6ad50f78736
- SHA1
  
  4f5fc6e958e7456a94c51ee48a38bb5609b8aa4e
- SHA256
  
  b3441249bd2e036e3875fb55363ce441f58d480017a3dc6b3c437386f8374fb2
- SHA512
  
  a2829733c34111dad10a7c74e4567443e97006d1b607f0475325790d857a62371b4e84d1f56dcf33ad0de7d129b1bdd365723da63f508fc096699b4a7ea8a9dc
Score

1^/10
behavioral11 behavioral12
- Target
  
  Mirserver/Mir200/Envir/QuestDiary/胜利行会名单/免费下载商业版本请点我.html
- Size
  
  70B
- MD5
  
  ccadb62e46971867c0caf6ad50f78736
- SHA1
  
  4f5fc6e958e7456a94c51ee48a38bb5609b8aa4e
- SHA256
  
  b3441249bd2e036e3875fb55363ce441f58d480017a3dc6b3c437386f8374fb2
- SHA512
  
  a2829733c34111dad10a7c74e4567443e97006d1b607f0475325790d857a62371b4e84d1f56dcf33ad0de7d129b1bdd365723da63f508fc096699b4a7ea8a9dc
Score

1^/10
behavioral13 behavioral14
- Target
  
  Mirserver/Mir200/IPLocal.dll
- Size
  
  167KB
- MD5
  
  bbf62130e7a5966a2b7b89411ad335c8
- SHA1
  
  9f6a0af9525cc6b6df479d3d511e06200571c1b5
- SHA256
  
  da61a728a96293d8d99db31d3843a68c3788fca93f630219adfab0e0132dde44
- SHA512
  
  52baf478f0dab1bb13e03b6ae47ea48b0cc329a35569cd78473e8c5eeefe0d6474b7ad720cbf90664fd140c9c76dcfdd92bcddee11c8b9c2488b5c114d7babf2
- SSDEEP
  
  3072:vqu/oVRpW3b2OQLOhRy7kCmRHnhAQPukkGfeDN/z2HS79BKyJcC:v1o3Ab2VLOhAehhN9vexb2HS79gyK
Score

1^/10
behavioral15 behavioral16
- Target
  
  推荐服务器租用.htm
- Size
  
  225B
- MD5
  
  34a2528d4d30e12c314193fc77891234
- SHA1
  
  6ebe43bd1ac4ea0e2390cf52996296ec0a9526de
- SHA256
  
  ee789d5055484aa7c69e8d48aca2791a36b9d6ec75616279d8733f4390b1b78b
- SHA512
  
  58ceb18f5eb259e93f69a7d108f730d8cacb9308361bcbef0dbf55eec965f18731a8cdda8e1832a7d7f00b04ed01989e3fac8b2d9a616a3dc337158bc840a910
Score

1^/10
behavioral17 behavioral18
- Target
  
  服务器租用.htm
- Size
  
  225B
- MD5
  
  3925640e8b98f6d8895c6c11cf752aae
- SHA1
  
  db4506d9fc9a66e153fe6bb230152e66ae0f88e6
- SHA256
  
  ca5e4fb5caca35bc5972b87fc1e8d505f154c6b78e1cf73f8844f3e28fcb0d75
- SHA512
  
  8b4b3e1f0bc9deac517efa46e79511e6ef13b33f78d2ca774b5e18974d2f7a970c513715f880dc40cd98fa25251af8d6e65c31900efeba020f55a35cc0b98269
Score

1^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20