Overview

overview

7

Static

static

3

qqzychess1.5.exe

windows7-x64

7

qqzychess1.5.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ed9145740db04aeeb1f7c139331f0e7a_JaffaCakes118

  • Size

    3.3MB

  • Sample

    240411-q4zp2afh5z

  • MD5

    ed9145740db04aeeb1f7c139331f0e7a

  • SHA1

    dfab1863cb27fadff1641c94b3e963ab57c8623c

  • SHA256

    4c5dd2c46e739b404b9cc34cde0a025479eb1156daae2325fe3fb94d4e66dd61

  • SHA512

    c838f1330c74c09fdc4e42b955f582c791b136dd2a11c11f4aab41a34e84661f852c6b21a07b4e724cc9458c4cf927ed8dcc545c0b3938309d91dd4b8ec7a949

  • SSDEEP

    98304:C+y0cri7CbkIYUtb9khEFcb1QGQjzFZApYptPxmtAs:CM6EU3GEFtf3xptpmms

Score
7/10
upx

Malware Config

Targets

    • Target

      qqzychess1.5.exe

    • Size

      3.3MB

    • MD5

      07641055f58ce414102925f82fc2b241

    • SHA1

      fb5976ad29b167e7b565f641c57b6caa959d065a

    • SHA256

      7f307d5d2fb00add886e95673f3712d7cb8d4415d132f30cf167c2276a73afad

    • SHA512

      90dc86dfe57f25e83f8a5c7054da35d16c004885551ad29fea6d7eb4a4dbe413c5a8a3fcd12f6abfd27cd8543577005aa979aa85dbbdecfd68812e4048e20cb3

    • SSDEEP

      98304:vdVkZ94WmfuhUdO4wjYBLryyoMSiIbZn3TgFsrFql:1kkmU44wmLaMSiURpql

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks