9d88971e966044a62ab0f65e6e479675a9b5a25f1daf9b831256915f8524801e

Sharing

Copy URL

Twitter E-mail

General

Target

9d88971e966044a62ab0f65e6e479675a9b5a25f1daf9b831256915f8524801e
Size

105KB
Sample

240427-ncbssahc93
MD5

05a98950f482fbb2fe9be8d7c509aa72
SHA1

526ae7f8523613d82c6e2425f5e295c1b8ee0823
SHA256

9d88971e966044a62ab0f65e6e479675a9b5a25f1daf9b831256915f8524801e
SHA512

590a4b29f3f463fc7672454a4faedaff4a172354a0d91cd28ac0ab765d99bbc5e724ba0ad79c404f82b9d50224d861bcb3cbf3cba608d909c50857b1ba22e711
SSDEEP

3072:Ciu8S4vr75PSgmvQ/iVPt7CKMvC/adPKvpOs51RXo1:Ciupm5Pv2VPt7CKJkivA2bXo1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  CLion激活.vbs
- Size
  
  2KB
- MD5
  
  c6ced3f8f41290b8530ee9c0da5a4496
- SHA1
  
  ac2a077227809eef296b3879b9c96d2646a50b6f
- SHA256
  
  0b794ba1241f122456fa9c91882d3c1b30c52a895c4525a0095634386256dedf
- SHA512
  
  413a6ec59f6938506fa9474083ca8a7d80849571879d723387964982d292b4f7deabea19284aee173002c42afeca2393456cabe5b39bd24edc6ff10041c8afac
Score

1^/10
behavioral1 behavioral2
- Target
  
  DataGrip激活.vbs
- Size
  
  2KB
- MD5
  
  f0664f3e5bff8a6713acda92104fcef4
- SHA1
  
  e230ad86c888f13ca0926c704ee8b65c78204ba0
- SHA256
  
  406f9bb94a5a75803ba8be4117ebe6070714924e1e2de2b7dd9dcac08e511a8b
- SHA512
  
  32ca1c10f2fc4a96bda4d8622f66cccd1262d0a58db4fbfaae220e41fdc0209ae1d0d8e22e782f671404cc58f38c1ffe582e718f19e8374109a927e18105122e
Score

1^/10
behavioral3 behavioral4
- Target
  
  DataSpell激活.vbs
- Size
  
  2KB
- MD5
  
  fc2bfec707e76f2161ddb87c0c7a22e2
- SHA1
  
  d58783ab53e0701292f8c549e9dbd2eb03c734d0
- SHA256
  
  9a0297091c112d7e2b5c2fb3f45219ed482149c889a13fcf80a15672a4b721dc
- SHA512
  
  4b366a00a177e12538cf09a0aedcfdbe20da96ae9fcb1fd07e590b2f54d32f711124e854a00a2be6ba3258e234eca1b58946b3bce9bf7a8699b0fc784eae8de6
Score

1^/10
behavioral5 behavioral6
- Target
  
  GoLand激活.vbs
- Size
  
  2KB
- MD5
  
  eec6145a16c93bf76419ee27ee481508
- SHA1
  
  384a2ede54c2549c20326f1e7061923349dd448b
- SHA256
  
  aefa257c29b187b589d3bd9612838b0de1cb36b1de5a9e380ec8c5824cbe024a
- SHA512
  
  4dc047f03ac2b5c8c317e720c7c20896b2a6414ab68c54d0d39f75f91b4dc49e840ddf29ac9c891a0f0b14461279532db2c394de68e11ce722aa22ecec27dff5
Score

1^/10
behavioral7 behavioral8
- Target
  
  IDEA激活.vbs
- Size
  
  2KB
- MD5
  
  6d3b8124f4a10961aeda20b63566f662
- SHA1
  
  4ac1285a70b39358493a9347809abb5c1022e661
- SHA256
  
  1c01417c76f091c454d8dba83c4ff3d13128688f64e6e3fa6fac1dc0a9848604
- SHA512
  
  4052605178a503da360b0f5990beb05024c6fe283eaa8c7f5fc6d3c04439c4b9fb54f4dbcd01d26b9daca10df7149851842b3e06b39c73d90238f2299128d8e4
Score

1^/10
behavioral10 behavioral9
- Target
  
  PhpStorm激活.vbs
- Size
  
  2KB
- MD5
  
  4351724322a217398bd6938852de59a6
- SHA1
  
  7c8aee36411cb51d9b46cba566831ccfcc58a4fb
- SHA256
  
  79299ef3fb6d38a3389a7fcd985ad0fecd0f3f3805d6a93ea480ed49ea2acab9
- SHA512
  
  a137537269f134329a7349f71c348591ce5e54b5cd0da599f574b4f3afaa252d74d48001b7be5c20d39173b3d718b7ae20ae1034df4d714accaf40828d6284ec
Score

1^/10
behavioral11 behavioral12
- Target
  
  PyCharm激活.vbs
- Size
  
  2KB
- MD5
  
  7559c25867db4a0e3f56528ab272e0c6
- SHA1
  
  a884de5b35354a380a5807eb9bfc80eb10d06c2d
- SHA256
  
  766b6d727d92ec5a337de110259ef7b80119f29063db6f65a1fd58fc85e97482
- SHA512
  
  84e448501d51023484b5d6c60e51e3320a98d84900b4ed22c0e54be80b55baad16e00501a35ec2cd6bf8600be782f550dc508aa14d218dbe552e55022d5effbc
Score

1^/10
behavioral13 behavioral14
- Target
  
  Rider激活.vbs
- Size
  
  2KB
- MD5
  
  7287cf925b998402ed705f56446401af
- SHA1
  
  798308f47395342e6f3e381a2a5bd668cd2e7adf
- SHA256
  
  1067f62bfddca05e8cd4f83afa56b70da54213c8c5485239c8ac6e8b502606c4
- SHA512
  
  5818941a260183a587bc19762fad017f7327f9c270e465b3052efad7cc538876c81a3e0c68ce33ffba09e92863335db5a85aeae40f051ab2f4b63857e056b25b
Score

1^/10
behavioral15 behavioral16
- Target
  
  WebStorm激活.vbs
- Size
  
  2KB
- MD5
  
  e892e22fc71a7435cd4cff753f6117cf
- SHA1
  
  4856c1c1586b417bb350c9e7c1ed3e2f2edda7db
- SHA256
  
  7f7a567ad39328bafc746b2ad63ff8675fd125e2dde93461ef65f7b2e3fa51a8
- SHA512
  
  404611019f80db4ae4b24e72a4bf1f34d54d9f6d146ccdd1f57752c89e6350fc45e9eb7a4b8bba9dd177a26573424b83edea8bde8e7b45629453967fc697240c
Score

1^/10
behavioral17 behavioral18
- Target
  
  active-agt.jar
- Size
  
  47KB
- MD5
  
  2fa1b1364515dce93eb67c423b570deb
- SHA1
  
  2a723c2ef30be4a5c167c6639bf9ec0b9c7e7ca2
- SHA256
  
  3acc4e9d91793f6909458a4761b75b6da45c8868e75dca33c9fec63659202995
- SHA512
  
  0b6cf7caf6d48419251d0aa1ccf280536eb20b1f108f874a9ce86943601c2317833031578fc869366e3bc40dedfabfd64527598ea63b879bc77f82a9a218766b
- SSDEEP
  
  768:Oh7IDIGjwZyHIwcctMtI+xIfo1UC6cB+P9146lp3fbYHfkWvQdptYc4klY:KSIG0ZuIQMtI+xIrTcB034673fbgvYI
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral19 behavioral20
- Target
  
  plugins/dns.jar
- Size
  
  4KB
- MD5
  
  4f3c516c1704a5569725246d57dd1ae7
- SHA1
  
  4e8693b5a7a3837cf7f6db0c4f1316f376d34721
- SHA256
  
  d1150b1831b112b93d74a34a10ce6c11606e0d2255d532c29f91f1d92b40a552
- SHA512
  
  f885fc751e9035944489578bb037f05521c6258c377c0c7bf8b8d10b799063e6e529c715ecebf9729724f0497f588803d7d463fbb70f5efbd73952624f60d08e
- SSDEEP
  
  96:LSyBi1RBhx1yI/OEEKXejuu9lSx/xowSpTz7g8nJfTfTX:LSx1RBhx1y0OPhox/6fpTvgeRTfTX
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral21 behavioral22
- Target
  
  plugins/hideme.jar
- Size
  
  7KB
- MD5
  
  cdab6a30b0949a741f13935f5483c303
- SHA1
  
  729d00e4fa04ca49c00b5b6aa60706dfadd5644e
- SHA256
  
  fa14c735ab9fed3f3a5df0dc78a5d38ae0a146099ddc858197e9f528bd996c40
- SHA512
  
  bf155c0b062fe9c7c237f9b0329a155387b7294fae7c7ed73e41e9528f119ccc513855329f6e91e62106b589c8b215d981ed11f2f89c7e13c06fbdcf7d6d1ee8
- SSDEEP
  
  96:ohFTqRYuFhXQ5GeiCGkeFUgbH44yY8NVFubQLwNUmvHh18OiPKwChme:gFuRDiiCSbH4u8ZuvOMBGOiEme
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral23 behavioral24
- Target
  
  plugins/power.jar
- Size
  
  11KB
- MD5
  
  cdc01ec1abee702c535da143fb3947d9
- SHA1
  
  0f73e2cf797ee4b25a73bc6f78cfd7d41952d294
- SHA256
  
  26db4a54482189dc989e59734318d5c12d656183d5394fe3c0fe5b33313cb785
- SHA512
  
  72c26a50a1f1ab9712808a218cf8026c6540fbe6ebc28eb3fee3eddf011f8566e82446630731a559c2ad0ca684be486bd991fc46149f6412ac692218e4e1d354
- SSDEEP
  
  192:W5aTR3/R61EZoMxX7GQyJ7UlcOgUN/5/9a1bN/:6c61PWX7a70V7N/R92R
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral25 behavioral26
- Target
  
  plugins/url.jar
- Size
  
  4KB
- MD5
  
  6b181e5b8255db4cd9beb1c6af5f420e
- SHA1
  
  b1bebbee8d98218db5794f596001b8b7427ae0c7
- SHA256
  
  ce5a83aee31153cca30274ac94467b316edea8cb28acf72f52f5a72d455b1b43
- SHA512
  
  26dabc145da4a987744ab86d600ab81482771fb8fc99933828104d4698f4dc407eb97281a36f01d5852fc2209d0092f10b7d23d62db8f7e456f8d2d0a108ce7a
- SSDEEP
  
  96:KPP4+DT0nUeKLB3pWsWJMN4j4pbxYQcTxBWUw3/6ws3U:IPLTLRZWsN+6xATHO3iN3U
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral27 behavioral28

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28