f5078862045a95f0167ff1292e8adeca6a9f3cea3b87e25d80e09a0095f65112

Sharing

Copy URL Twitter E-mail

General

Target

Compressed1.rar
Size

8.5MB
Sample

240419-phv92sbf97
MD5

80c1beed9b62e60b5083e17d10d54460
SHA1

1334d14f14470cb5c812f6be8b01f6f0a89847cb
SHA256

f5078862045a95f0167ff1292e8adeca6a9f3cea3b87e25d80e09a0095f65112
SHA512

0ef38d8c0ec6fa87e3e0b725de605244cb70d7c802ab4dea8fc114640884f8c0a46bb627179f17ad06c1caccfc1b333c8766940ecf3b171b87da7df591eb7822
SSDEEP

196608:KwB89REBFB1nfNaVYncJOHl88FCjVMApz3jq/xYg+ven7Ab1:KwBiRiH1YOncJOmzlG/mgie7Ab1

Score

7^/10

Malware Config

Targets

- Target
  
  Compressed1/2024财务补贴.exe
- Size
  
  1.4MB
- MD5
  
  7fb66a9fc4741ca8a16064b0a8fe88e0
- SHA1
  
  4396a9cc8310cf02e86633f4715d2aa320948e43
- SHA256
  
  ecbc2f5ff29d6cf768e1d27eb1fe5feb691611c22dfa2374af9c1b21caa2e3ae
- SHA512
  
  017dbfdbe23c3d171b5cd42f4a30573c24b2f8a8319a9324660458f5e3025951c192aac515a9160021274470bdc231372c43b0e2e40b566d792d3ecd383b7be4
- SSDEEP
  
  24576:/ajO1j0dCggXp1YKy/53F9am+tDQ/frUPopzFv73OZNMeSGqE4ZDtSR:/a6zgilm/frUPUhv6SC4ZDtSR
Score

3^/10
behavioral1 behavioral2
- Target
  
  Compressed1/dwms.exe
- Size
  
  635KB
- MD5
  
  1d3736a2d4c9fdb00851749ff7a8a649
- SHA1
  
  547582e72767513f861c4da54a6fbec47582a696
- SHA256
  
  d0a84cd20fa673fa8667514872759fa7caf0a7e2289b2a218e93a4cba6266832
- SHA512
  
  c36e282f077d21a6da7fb4f42f1b7576adff944dc6bc88225377356ec81048e32e1d350bd0a0bd05ecc00e5ff883cb5cde4c11f448793ec6bc8d54fff4530500
- SSDEEP
  
  12288:FRIIYt29eoSESYik2CRIIYt29eoo8SYik2:FWIYt7ZoWIYt7L
Score

1^/10
behavioral3 behavioral4
- Target
  
  Compressed1/geek.exe
- Size
  
  6.6MB
- MD5
  
  a705932713e70d6cc21c054d54ab5717
- SHA1
  
  02f2219bc6cbb691bac716918e029801234c5b61
- SHA256
  
  20ad25948397305bce48b744112917bcd3932fbe76fb4c3ba7449d00c0b07b60
- SHA512
  
  37c7437ec58d5b3c9476eda70ff630e3e22f2bd2d63cf455cdaaf82a5225be2c7136f908ff016bde10a18ba2869408e26f65a6f7756b45c1cc6bb621c5d0b014
- SSDEEP
  
  49152:ncMPNjjRkZ3co4quwLl+92FitN5YrkzIsDscQIe3H17Sv2uEoGZGzuGowIKqtBPQ:2coZ/l+7Y1rtJKCg8Mzw9lcrp
Score

1^/10
behavioral5 behavioral6
- Target
  
  Compressed1/名单（密码123）.exe
- Size
  
  1.8MB
- MD5
  
  fd910e01aa81cfe3181d51be792a2b90
- SHA1
  
  62bc41d14693d7038d86ad024b5a6542268219ba
- SHA256
  
  da676eec84b81433dc2920c2a3ceb919ed4830e1d46c966318e990cd72c107f2
- SHA512
  
  bdc7c2b9640e36e7eb444bd66747cdea5765cf8934dc5fc66207a70a3a41520ac713a3f2d6dde499ea10cf3aeba63da3731a8c4b0683774139db28962c68d821
- SSDEEP
  
  49152:HKGu9etWbV7WgAamqha8N8MQj8NfokXXx4YUk4JzjJQ7/O8yhUVl4qBOcWN:qcWbV7W09Ak8MQjOfokXXxazjJQC8yh1
Score

1^/10
behavioral7 behavioral8
- Target
  
  Compressed1/注意事项 .exe
- Size
  
  8.2MB
- MD5
  
  c418c80458a149f70fb9be19e074b185
- SHA1
  
  78e649711d9032469d34002501d874bdf44d75e0
- SHA256
  
  bd409e8ad5deaa6b8ff9369b44a73234aae61ee07ba232f09b4cdff7f3e60b69
- SHA512
  
  43c678f40bae1516dd0ac8eb4cd36eaa3176ccff6d5d498e819c7f94bbe352acdafca0699bf2d55ef87ce9a631cb2a303e95ade7bd44c8986f2c474fa3287300
- SSDEEP
  
  49152:b0CcSJR+tgqrb/TVvO90dL3BmAFd4A64nsfJX/j29KgGSz9WZ6/3nXQ5fzZvgroY:iGdjMZRXqNvT7tH3koarHQmU2Ea5ZuQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  Compressed1/财务申报指南.exe
- Size
  
  1.5MB
- MD5
  
  b83c46bb45f892c365930c518b2274fe
- SHA1
  
  299d65821af0fafe07648553f01fc6f894e20758
- SHA256
  
  4dac931c9d47089fae71be6900b873f0f33871085cc529c2fb0fe419d09260f8
- SHA512
  
  ccf60f36c65fb70801cf1b7548fc36fe036682860c9cb6d61d38cac93b5360b49eeedd08307abe87c6e3cc2134fe5df05b8a5ba48f54ce67decad1ce21c6aa76
- SSDEEP
  
  24576:0Y4m+eILljZfXtYKy/53F9rbWT0zVH9rUPopzFv73OZNMeGW1Pek8NDU:0YPwj/ryVdrUPUhv6G0j8NDU
Score

3^/10
behavioral11 behavioral12
- Target
  
  Compressed1/阿里巴巴集团招聘平台部分JD信息2024_Talent.Alibaba-inc.exe
- Size
  
  8.4MB
- MD5
  
  08888cf14f0618723079d37fe162f75b
- SHA1
  
  77864de30abac34e7d2c75db2c816ba0a11126fe
- SHA256
  
  0be223c614c5557e236b2a4293612b3ced50901662a75eb310e0561a607aac90
- SHA512
  
  fb7952a4f8efb20e82553a49ba97cc66bf1fc3d91eb7fb1cf5b4717f92c478f2903402dc9d2f411d970da477bf8249bc6e89a815b170d8c1ea8f339c4f97b3b3
- SSDEEP
  
  24576:Qslnvy6mi7gJC1PehY8LNKrDBCMbmIcF7yIbEWcyxS69P/sHCiV5ZVSMUrsfiBTi:1lnvy6mi7gJePehYMLIZ
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14