599dd3ae47d6e6634337d6834a3d82154c5ede397f06c23a3b9e391b385489a0

Sharing

Copy URL Twitter E-mail

General

Target

d385b122f30b19c26b6b2e62c3c53e81
Size

18.6MB
Sample

240318-prmn9sgg53
MD5

d385b122f30b19c26b6b2e62c3c53e81
SHA1

30e1fe55e2f0d3278b5361ddf8d870a2e6316847
SHA256

599dd3ae47d6e6634337d6834a3d82154c5ede397f06c23a3b9e391b385489a0
SHA512

44621e8d4d9c304b1cdd7dd249b2e2b74ad631d5189e8f15becc0d4c8454f51500ebc3833efcdb36e14806814f1ac0363f90272c0cd962f28e69a79e8eb46a0a
SSDEEP

393216:uGj9cQw0Ds8t1B6MzYgqodMW0z4a8F//QGxzndKULOIZ8:dFp2mYgqodMWmE//RdVw

Score

3^/10

Malware Config

Targets

- Target
  
  77i7d/#data/#77i7data.asp
- Size
  
  3.3MB
- MD5
  
  97c801bbd2f2dac0e1dc72a62857b80c
- SHA1
  
  8a5a39e7d20ecf68e1dea7b240e844ff843f65f2
- SHA256
  
  4261079509066734e7de66f41ba1c4ce1b7af87fc9dada27d7f5966057edbddc
- SHA512
  
  b92442c617da3fc28d4c3fe7d323976dcaa21849ad6ae41c3d7c87d2a22a71214aab8c7c70aab2aaa471f2e5827864c9cf7b51fade9f6364e23568ca329610ae
- SSDEEP
  
  12288:I/Q2OOrJEg45WczaaSSwUgZWqDTNTNG3fKaMek:WQ2OOrJEg45WczpSSwUNwpNoo
Score

3^/10
behavioral1 behavioral2
- Target
  
  77i7d/#data/#96787_yii.asp
- Size
  
  284KB
- MD5
  
  9ad1c09d4506eef4aa49e7f14f4c14aa
- SHA1
  
  0a15e8190e697fc2d7480c7d6d7e56f1fb57bce6
- SHA256
  
  8aa1d25e077bf854f0900a4c6c82ee53ed669f341d6354c8c0d31d3f759a506e
- SHA512
  
  5773fdb9516984cf5a909d23cdb782c582d870b4806038550c89c16cd60e8911ef7b92848b9cca28b0c2ffa5584caeae6e0bf777c9a286a434e87a106725f550
- SSDEEP
  
  3072:tLvptE8Ophdd2siO6mNt/vea7uk4Hk6SXGZPOfa:rO0O6mNt/vea7uk4Hk6SXGZPO
Score

3^/10
behavioral3 behavioral4
- Target
  
  77i7d/#data/adv.asp
- Size
  
  260KB
- MD5
  
  57ef11d29dc3e23c80a24d7bf22e09be
- SHA1
  
  cf996d905a34bb09f174698fa594c8af69cc0ab1
- SHA256
  
  5bc149bdd3fdcdbb355149a8334f430adaa138fda376afbf97c75b4176e9e3bb
- SHA512
  
  23a8ce0d4fdbed9eeb566ad712c0c27b0bdac8591514420af7723cf66c2acc5f69f274b7a5e2a98737aa4895c08fd9abe670172beac4b3513ac814a1362014d1
- SSDEEP
  
  768:Yn3k6mXBPonv8wju59tnjpQN+8zmQi4NYN2BwWVlQBRjmwwY0EH:f6mRPov8mu5WNK
Score

3^/10
behavioral5 behavioral6
- Target
  
  77i7d/#data/bank.asp
- Size
  
  284KB
- MD5
  
  78884b9cf4b09617404e55120c2e3fba
- SHA1
  
  48a7e6583302ab4cec12d1de25b118d0d753f1df
- SHA256
  
  076b3b6e70a0651729f8008dd200dea4e9014182e1291283aab27bbaa659f997
- SHA512
  
  c9dff7ba7710a06d6a77ed61fc6933c02b7feeb85b82f1421b839cc4834a46c933f70294913ac0dfeae979686529e298d83d52d9c8d179c8a62fc14d677c6e8b
- SSDEEP
  
  3072:3LvpOE8Ophdd2siO6mNt/vea7uk4Hk6SXGZbOfa:WO0O6mNt/vea7uk4Hk6SXGZbO
Score

3^/10
behavioral7 behavioral8
- Target
  
  77i7d/#data/caipiao.asp
- Size
  
  216KB
- MD5
  
  d1cf1cfada5621247489339711b217ca
- SHA1
  
  0a3518bd66503dab8beef59e629843fbc399df30
- SHA256
  
  f53d4987002489e9c7e270ec8a7d2e1c9baaabeea5a231f3af9699afd626986e
- SHA512
  
  3d5650c62fbcc38131571e9f9227e64959e5d29bd393e9b6ec9158994f8386ca51c2890b440292edd4c7cd0b3a5cc7a916a5911782b008cc69dda76e92f81e66
- SSDEEP
  
  768:sC3RFQcRui3xJ5cmefyHeaFeGRM5cJO0csnqJfRrt6o04Y:3BFQcYw5feUeceGecJDcd6o
Score

3^/10
behavioral10 behavioral9
- Target
  
  77i7d/#data/date2.asp
- Size
  
  3.1MB
- MD5
  
  b8f12a34a4b66d84bf6688b9c4eb0200
- SHA1
  
  9b7f00eed4e6d1a8ea1b426e45559d822c962e04
- SHA256
  
  4e7bc8c665767e4ec7d6691aa243f6b99f1d09b4f244b379401e61cb28e244e4
- SHA512
  
  c0f766c4a4e3c4fb407fd88311347c863e5dddf41fa4447019cae030e379ba1491f9560eb3ea44e42f6f2c80bd5f645cfd67e571895cf83632106676ecef9614
- SSDEEP
  
  6144:9aSJQzilhDUeAeAe3eZD5Li3H27UO1fugyJdZ0Ta8c6U0usu2B8QleUBVluA:fQza/dduLypqugyJ/WEQl2A
Score

3^/10
behavioral11 behavioral12
- Target
  
  77i7d/#data/ip-2.asp
- Size
  
  284KB
- MD5
  
  78884b9cf4b09617404e55120c2e3fba
- SHA1
  
  48a7e6583302ab4cec12d1de25b118d0d753f1df
- SHA256
  
  076b3b6e70a0651729f8008dd200dea4e9014182e1291283aab27bbaa659f997
- SHA512
  
  c9dff7ba7710a06d6a77ed61fc6933c02b7feeb85b82f1421b839cc4834a46c933f70294913ac0dfeae979686529e298d83d52d9c8d179c8a62fc14d677c6e8b
- SSDEEP
  
  3072:3LvpOE8Ophdd2siO6mNt/vea7uk4Hk6SXGZbOfa:WO0O6mNt/vea7uk4Hk6SXGZbO
Score

3^/10
behavioral13 behavioral14
- Target
  
  77i7d/#data/ip.asp
- Size
  
  3.9MB
- MD5
  
  0842368f0d661aa5c16f6233b43bc22e
- SHA1
  
  a66e8b38d6449cc535603b8f586a392838afcaf8
- SHA256
  
  b3af580e03a327e816370b20c5fc352c46ce5ac50dbb9d3226188971ad1c3952
- SHA512
  
  d2705df5a80ce0e3e18cac7f1ee5fcd4d4c63363fd0b915aaa6aa29cf859b902558b6347e1b9b7ea4553e350538517b37fd51e2f79dab828b3e105e21cd76ae7
- SSDEEP
  
  24576:nf9rr+/jAXX8N2OmaxvkWSapcIxQDjw6QChqY4hWdFnPKSKZrWR+8tTM:nfVr0j8X8USx8WTcI8QChqxWnTM
Score

3^/10
behavioral15 behavioral16
- Target
  
  77i7d/BtIndex.asp
- Size
  
  16KB
- MD5
  
  7eebe94d7f15bd5f8b5a6a1c626e6252
- SHA1
  
  4d0ed9b3ee85f575aea26aa42758c1625dbaed12
- SHA256
  
  1e225da81fa491464f8562c634def913bb8d36767eeabfb46a514d817545ac46
- SHA512
  
  f78977235cbd345a5742ecfbd9299a4b2cc2e3ea66926529257aa7e8a3faaafb2f53e6226ebc15ba3cd5ddc9c2045ee0d298d60ca83bee193829d38fa0ab79c7
- SSDEEP
  
  384:HcO4U9JyiyhyMyLyWyVyAyvy6yEy5y6yeiyiyhyMyLyWyVyAyvy6yEy5y6yR/rqD:Hj4U9QlojORUva9bg9slojORUva9bg9K
Score

1^/10
behavioral17 behavioral18
- Target
  
  77i7d/admin.asp
- Size
  
  22KB
- MD5
  
  8a3b9cbc34789c9b144c5b2e7c990991
- SHA1
  
  c236629d0821e9172e476e77d18f69011e035b63
- SHA256
  
  fefbd21491c4bb319201adb8775fa30894d6e1a4d8871c7c5bc22d5ced6693c8
- SHA512
  
  3a092f7e7ea29903245f2174bfef4a4d138c05eb1a6f5a91568ad2fa964eef0a11ada4974b9247c81dc424a2004b3cc2bfde9f99ba0d4b1a36fe2321360b4207
- SSDEEP
  
  192:kvjT2CLrfG4NSMi7eGGq90YGg+Vr206v4o/7nU7hbI98eexBhs99n03:kv/2o63N+awqU7hbIOa99nG
Score

1^/10
behavioral19 behavioral20
- Target
  
  77i7d/admin_ads.asp
- Size
  
  22KB
- MD5
  
  8b4406ce56bd160626847e33d8346164
- SHA1
  
  b4454609ab9d62add7238450c35651287a586b55
- SHA256
  
  88115177835b92048a4eb6e6abc24809ee1595751e9311e296e8d3a7a308129b
- SHA512
  
  689fd267eb4dfc7c8b47c1c553bca5d869af948e145f19f1f4dae83719c7e57b69fc09f33fb3b88e847ef602605a44603ab897b067c8122ddf7628e38d5dbd37
- SSDEEP
  
  384:AYMYbGomtpwMwf1wuRzkO3wmtB9cMYVyDeCeGD81lQeE3HDLOW50j:RmtOMwf1wkN3wmtfcMYVyDFeGo1lQr3A
Score

1^/10
behavioral21 behavioral22
- Target
  
  77i7d/admin_article.asp
- Size
  
  17KB
- MD5
  
  50e53b667e1aa4d1e408146f05729c2e
- SHA1
  
  b1e637cb984af39282e3a9a0f40461ed8cef93a1
- SHA256
  
  3d5b05427385e04db6528b9f0a4f74ee937aa8e5560e82d4e634b0c9298bdc6a
- SHA512
  
  0a0a2ae8461ccd203048126d5348c929183152d51c75de4dcccc4a419e23458696ca169ddfbb5645511b66b85db965f2f39304917d8d78a55705530a938b0ebb
- SSDEEP
  
  384:gV23n5jQKCwneV4ELuoKQ+Vuq9kEHvl3wOn/Fa:/X1QKCwnK4ELuoKQ+AekEPJ1n/Fa
Score

1^/10
behavioral23 behavioral24
- Target
  
  77i7d/admin_data.asp
- Size
  
  4KB
- MD5
  
  4d9fa2189ccf0d730bde5d6073bc837b
- SHA1
  
  1ce5bf13d6722f312931ee8352b06baf254a67f0
- SHA256
  
  b6863bdfc27b4f7c25b025ab1ffba55788504235c9719305849f48ebf46ffe97
- SHA512
  
  4c69c751871e7b8dcb1d330f6028b28735ca89e430ed404fd25e144a585760220a462df6e0082c82b45a54d455440a6d2b37057a6175908c6521346ac8f66c93
- SSDEEP
  
  96:LTyGVMfXc1l5q58SEgJzP/f+QQ6Q6089uULFThZU9Nzl:L+eGc3auOUXp
Score

1^/10
behavioral25 behavioral26
- Target
  
  77i7d/admin_datamanage.asp
- Size
  
  14KB
- MD5
  
  e780be62965f5cfdfa9946f90874eb3d
- SHA1
  
  0d8fb056dbf04999d3ae493923954516eec06e57
- SHA256
  
  b11c55b3daca14defd4be9ff489ec86b1c9e9129fab752ec9a485f3480c4eb2d
- SHA512
  
  53655eb3c5d615d9d6c99edbf5d06f0be01145c463e3205bf5606d0ea33e820a38473ba9dbd9e8bdd30ac2b0fd5fdfe11378010dd6b7e85087f1143e51e01519
- SSDEEP
  
  192:JFDSpS4VrfiZ18tBh1VvLxNBhXNKwNWSpS/VX0jw74SpS4VeWETWxNQKuI/k1XZT:P18tBh1VDxNBhXMwOgw7M3WxNhuPd
Score

1^/10
behavioral27 behavioral28
- Target
  
  77i7d/admin_diary.asp
- Size
  
  4KB
- MD5
  
  63df4fd0c3303877d23c4e9480b34445
- SHA1
  
  d2f8af6d963447800bd5ce07d1e2a3763066b2ef
- SHA256
  
  bd802bda2d443d33de90479c7df65ef0775e5ea0f5c16885dea19973bf6de471
- SHA512
  
  12cb9ff91b1969ae68806ab5b3cc695603df9c896311f313d35dbc6a848f7ee147f3e76c4e6dfbb1c9995a8c233f2bdc45c5adcdef849ca09248d12566218242
- SSDEEP
  
  96:hyqVIy7OitQ/UBe66C/Wo4U5qNdDja3suh/Y3yg+UNVZddM:hyqvOitQCljWo4U5uhjafRY3/+UNV+
Score

1^/10
behavioral29 behavioral30
- Target
  
  77i7d/admin_down.asp
- Size
  
  17KB
- MD5
  
  530c76b7b0504ca898039827133a92ba
- SHA1
  
  0248f8f74c1726a11b5917bbc64b9a35ce51eff5
- SHA256
  
  a55b87d262d5aa21baefdce4b6a97bc2f3f8ee6f16335f0dc14d340d31af9f91
- SHA512
  
  79e33b6839763106e7e92a48d4579f64a74020dc88a816f13012133634e1fe738d576efb6d656b7c0e5b00843cae69e69c5128f9b8cf2df2c768373ba64d2160
- SSDEEP
  
  384:h72RQZjQW3vzpWzBBIWFxzIU6TEyDJ3nOEqu:YeVQW3vzpIBBIWFxzX6ZDtOEqu
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32