Overview

overview

7

Static

static

3

QQ.url

windows7-x64

1

QQ.url

windows10-2004-x64

1

Taiqiu.exe

windows7-x64

1

Taiqiu.exe

windows10-2004-x64

1

superlucy�...��.url

windows7-x64

1

superlucy�...��.url

windows10-2004-x64

1

װ�...��.bat

windows7-x64

1

װ�...��.bat

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06fc9d933e7dace350fa4e4f9b79acef_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240429-gvyxpscc64

  • MD5

    06fc9d933e7dace350fa4e4f9b79acef

  • SHA1

    b112f1022b72e9c065e84da989ae4307caccdac5

  • SHA256

    eef0cbfc0d5831ca1ea715e87b495060e5712577a65c789a002f93f064d1d7d8

  • SHA512

    31d9bc4c000f9174c6b12bd349d62dd5aa14b68ea9eee6b441e38e2ad689c3302e872c30694405545ade4a5952911b5b79eaf6b85bfaab69ffa4073694759e97

  • SSDEEP

    49152:vZqS7csWxKJ8DdA0YbJI/0Pny9sK7rkMjdTIbYeFvhcL:YS7/WxKidco0Pny9sK3peN6L

Score
7/10

Malware Config

Targets

    • Target

      QQ.url

    • Size

      129B

    • MD5

      d09c704a6be364133a0f0660c24ba513

    • SHA1

      80a258d3dfe711151b24bfc09e811eecbd64475a

    • SHA256

      21fc9f32a8871013807fc11fa5a6c0e9da2ba8d4f588c3b0a401dfa1d6b60fcc

    • SHA512

      e3b091e50053a6265422c7043c4d83b415090295aa185d5f07e4287da700a654fbef365b2785ba2701a9eaadb97ca61388ee7b12b3a1e010f135531aadcac875

    Score
    1/10
    behavioral1behavioral2

    • Target

      Taiqiu.exe

    • Size

      2.0MB

    • MD5

      71397a10843653ffbd592bd853657822

    • SHA1

      238dbb7829eb020194981ca1691e4c99c4c4ec7e

    • SHA256

      c89565a14c9e19fc59b0518e518747e9ab9327d03d3bf09d03a0550edd8aa039

    • SHA512

      ee4b655fe758a4013fa2b827da7511cd1be0fc76e0b2c72d10f8b587cc6233d6af0275e480330d3940f25f5da34c71bdaf59cdc75c2fd00f362c2bab8dc89504

    • SSDEEP

      49152:ts8S7c6LH7Mjmg2/fFpkEVwPhUOf9khDRS9gNSQRnPF9Lxq0+x:RS7fnl/fbShDkhDRSoSaPF9A

    Score
    1/10
    behavioral3behavioral4

    • Target

      superlucy.url

    • Size

      174B

    • MD5

      9113a3f4635505017395fe5c04465489

    • SHA1

      d76c10bd9b1ada56a7afd12791932e7aa3a43ccb

    • SHA256

      e5d3ba2e04e69a9784680eade669829abe32c95263c66cc725a78fdfdca3914c

    • SHA512

      2e845ccba05d54d4310e2af0016b5f8861b604108ea615269e88c1c00e72039343902a480732d6621bbcb320226f9ceb7548daab45a8f5c7341ea3635c16bce3

    Score
    1/10
    behavioral5behavioral6

    • Target

      װ.bat

    • Size

      554B

    • MD5

      46d8b059dab8f3fb4aa897c2c912e7be

    • SHA1

      e3947171b6412965d5266a5c294c945fc6b0593c

    • SHA256

      80c3de02a86db828a368edf69159ad42296bb9e36f7a6d57d79bd5de96f8b7ac

    • SHA512

      a4e47b6e221db1fd0f891838fcec84878a6073a03bd19edfdfb1461d2a5d6adcccb4acbce198bd569cab7d4b397994ae88cbef90aec64fc03865378b7ff4923d

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks