a00941421f4e54024c59903dea332ae7fe7220c7a940b8556dd1950bea41f583

Sharing

Copy URL Twitter E-mail

General

Target

e2119f4f708f1c97ad063fa3b4eeb6f1
Size

1.0MB
Sample

240327-tj9w2sah7t
MD5

e2119f4f708f1c97ad063fa3b4eeb6f1
SHA1

07599904ed9b03c14fb3618f5bf1a9bf31870b25
SHA256

a00941421f4e54024c59903dea332ae7fe7220c7a940b8556dd1950bea41f583
SHA512

777e99e8a1eab0f6727346fe0e5d89df135e42ccce779717963b1c3ed4f92f9ec84c286d80bfd642b01110d2f515c4c157a2226514b00357958f6981e16a6e91
SSDEEP

24576:xD+7WAsPN35nEQFenaZzSiuh+HEXz3zw9zxS98oSaqqMv:t+1sPN35nVFeaXu+EDuIqqMv

Score

3^/10

Malware Config

Targets

- Target
  
  WimTool/WimIcon.EXE
- Size
  
  542KB
- MD5
  
  ec51069e5e78072e1acaf4220bb50ac7
- SHA1
  
  8a6bd870bec12ceeec7ecc912f2783e87f27b363
- SHA256
  
  692a34743fd5bb06c4a2419229888f879e1d60e60e1813671e7b041a0f044128
- SHA512
  
  1c1cb719072daf9201ed0cc27040c0bc53f86c2ce390e509870aa4d849d5fadf14d914bffe1d69ce587eb793f6fb51ef8f5c3dd862f7c12547e4f2b18a466d0e
- SSDEEP
  
  12288:pp2loy7tVIgnstc2LCjtfRoeyuMr0oSa:/ELRZnstc2GTo/uloS
Score

1^/10
behavioral1 behavioral2
- Target
  
  WimTool/WimShExt.DLL
- Size
  
  22KB
- MD5
  
  d1e906bbfe2355dbaf9270aa9f6b88a6
- SHA1
  
  ea0cf7a01f87858bd3295e6741e6292ec56fb408
- SHA256
  
  81ddede3888d11fd15038145e257980102d6b20af2923fe4d7b411bf06b4a2e4
- SHA512
  
  17f43041286e3c67bb1e82ff725e840057720f4c72b6fd3c347ab8305607868681aad80f69c5fe5645f7d1a099db0c4142cd2c4bf2a6388e256e5b146acc5949
- SSDEEP
  
  384:VMFA1looAbsdt9ojHOSsM+QxvDFe4m3YbKD10v:VMembs2ZQuF63YY0
Score

1^/10
behavioral3 behavioral4
- Target
  
  WimTool/WimTool 运行库.exe
- Size
  
  288KB
- MD5
  
  ffeaec61a5055206966757b1b9bbf0c4
- SHA1
  
  fa329f3679e82c3980194e1e87523b252b77e388
- SHA256
  
  83c8bd691f6a01dbe38fadba5b834b92fe68f43fc0fa165a38edff388acf4920
- SHA512
  
  658774fd98bef9a611b02976ea07ef3decbecc54b4d39a1e82fe7dfeb513b034921a498bdc91010426bf74341e0cbc9f4b4902997d25618be8b69ef5db47c3b5
- SSDEEP
  
  6144:7d93ZBZMbqYgomHcsLUn/t3QAIjwL8XQ7cDEfDpUnMVFSsu6U42v2f0J:7r3ZBIRxn/t3ijwL8E5bu6Z0
Score

1^/10
behavioral5 behavioral6
- Target
  
  WimTool/WimTool.EXE
- Size
  
  774KB
- MD5
  
  95cec73051bdc79257cc4ca187db1112
- SHA1
  
  9157aaaeca071f48342dafe6b3783dd3cb39f1f6
- SHA256
  
  1dd08248855d1a0810da9205d76c133ad48d425f197b022b3188b48fbc5c364c
- SHA512
  
  a390ccfe22aa17cd225a739ecf636c1b77c6225874acdeb617b6efb99033dcfe3920a2682779ec6ae640a87d6e6b45b542384eba00e25c384c86c9fe1b3b8926
- SSDEEP
  
  24576:p8paO4AonrPmnnTlEuEVQ+yO+MUxhnoRHC:pu4tcrjMUxhnoR
Score

3^/10
behavioral7 behavioral8
- Target
  
  WimTool/WinCMD.EXE
- Size
  
  87KB
- MD5
  
  d201a81026c918f49a59c6aa52566ece
- SHA1
  
  521922ce3c92903b56e662e5ace5c0d6fc3f88ff
- SHA256
  
  2a17161db61671b6ab40e339598fd5ec42ec0a7c10db4e86876e01f88ea3bf1c
- SHA512
  
  b2d4ec11d908b3263845535bb08acd89049441b84224eb9877a2b5e98f4b68a0f6ca9262f2df4acd8edb6407c0b6e7d6317c4200d995efa37c423ee61fc8a0ef
- SSDEEP
  
  1536:pT5em4tQdNy8oVGTwlrNFLI7NDpzwE0xOt8PEeOQprebet+NQYj9i74Sd:1D4ueLyh1UE0M1er1YjA7/
Score

1^/10
behavioral10 behavioral9
- Target
  
  WimTool/WinCMD功能演示.CMD
- Size
  
  48B
- MD5
  
  c908e99bd5ab6537a29ffe1293bd1da5
- SHA1
  
  650b1f0d852d365ecb9cbc1502cadaf484b8b68a
- SHA256
  
  7a6724c61c75ebae2ea387e56fe0e45e1e8143bf4ac6b3e3d6de2e74450549cf
- SHA512
  
  17a10264b0ad06bc2ec80a1ba5b433311b4c2bc1b84ea4c48fd5994d0b061b21db5e009acd3286662c975f7016dc5f6c8b5d1b4ba309841e338b478cb8760a35
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12