chinese_generic_botnet | a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9 | Triage

Submit
Reports

Overview

overview

Static

static

3

a6e6c5aa54...e9.exe

windows7-x64

a6e6c5aa54...e9.exe

windows10-2004-x64

Sharing

General

Target

a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9
Size

1.2MB
Sample

240407-lz1z3saf59
MD5

059db3d70ebd90594242e8c4dbc92de6
SHA1

cf6d8ccbbf4d2f752d80c581eba9f70059e776d4
SHA256

a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9
SHA512

fade9a9ba73e5fbd84f536f86a8180ef1a1975d45b8e1621ba73d6b9923bd10ae641d406bf5d96e00b3404710192e29445264009a3d326a0f604eb23b31d6cea
SSDEEP

24576:w37Z7Xxs8GPeIzxVvoscrpXv63aprWmLjEVsA:c9C8JIzxVvos6QwWmLjEV1

Score

10^/10

chinese_generic_botnet botnet

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9.exe

Resource

win7-20240215-en

chinese_generic_botnet botnet

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9.exe

Resource

win10v2004-20240226-en

chinese_generic_botnet botnet

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9
- Size
  
  1.2MB
- MD5
  
  059db3d70ebd90594242e8c4dbc92de6
- SHA1
  
  cf6d8ccbbf4d2f752d80c581eba9f70059e776d4
- SHA256
  
  a6e6c5aa54a2d95208be5c7b07b9a77bf31b3a91a0706a824ca50698343fa6e9
- SHA512
  
  fade9a9ba73e5fbd84f536f86a8180ef1a1975d45b8e1621ba73d6b9923bd10ae641d406bf5d96e00b3404710192e29445264009a3d326a0f604eb23b31d6cea
- SSDEEP
  
  24576:w37Z7Xxs8GPeIzxVvoscrpXv63aprWmLjEVsA:c9C8JIzxVvos6QwWmLjEV1
Score

10^/10

chinese_generic_botnet botnet
- Generic Chinese Botnet
  A botnet originating from China which is currently unnamed publicly.
  botnet chinese_generic_botnet
- Chinese Botnet payload
  botnet
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

chinese_generic_botnetbotnet

behavioral2

chinese_generic_botnetbotnet

© 2018-2024

Terms | Privacy