7f4c6298eba5e97b28b3af2012fa43b5a9594a49bdd7d962c9ccc20f135979f3 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

HEU_KMS_Ac...��.url

windows7-x64

1

HEU_KMS_Ac...��.url

windows10-2004-x64

1

HEU_KMS_Ac....0.exe

windows7-x64

7

HEU_KMS_Ac....0.exe

windows10-2004-x64

7

Sharing

General

Target

7f4c6298eba5e97b28b3af2012fa43b5a9594a49bdd7d962c9ccc20f135979f3
Size

4.4MB
Sample

240506-fz83ssdd43
MD5

e30888d0c1a580deb7fbe761571c3599
SHA1

3ebf5c999cda17e00cd13a6064bb26b5f9362fa2
SHA256

7f4c6298eba5e97b28b3af2012fa43b5a9594a49bdd7d962c9ccc20f135979f3
SHA512

abd09944c016c023d2d75fd4c391bc08c0328493c0be389bfe988c0e626647563ea44c4e51769490ba185916ed34709c5df8527376fb669a6ed72bf545ac1ea4
SSDEEP

98304:AYmotqNvGBRe1q9PhtGBsGzLNYmgQtaF+dbOGvt0x46ke6eqk:AO+vGBRe4Ze7LCOt7hOgt026RBqk

Score

7^/10

link qr upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

HEU_KMS_Activator_v41.1.0/!果核剥壳 - 全网更新最快.url

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

HEU_KMS_Activator_v41.1.0/!果核剥壳 - 全网更新最快.url

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

HEU_KMS_Activator_v41.1.0/HEU_KMS_Activator_41.1.0.exe

Resource

win7-20240215-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral4

Sample

HEU_KMS_Activator_v41.1.0/HEU_KMS_Activator_41.1.0.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  HEU_KMS_Activator_v41.1.0/!果核剥壳 - 全网更新最快.url
- Size
  
  121B
- MD5
  
  9998fc28a5e1bfb9889153d60e548139
- SHA1
  
  f73d09911141e784b4380fb394466ec4cb819834
- SHA256
  
  1f6d66e3c6150ddf23d1137fa9d4b3f86e54c19e29294df76fa5d5d9c05bf003
- SHA512
  
  1fcce1ff3a1addb539724fe596995682e6518b6674f0ebb8c2b8af41cc79d67097dbb17f787360db9d6170b4a143f5cfd7f0b18c9f04a694967797493976d5d5
Score

1^/10
behavioral1 behavioral2
- Target
  
  HEU_KMS_Activator_v41.1.0/HEU_KMS_Activator_41.1.0.exe
- Size
  
  4.6MB
- MD5
  
  a9568d43ae35af375764d9502356272d
- SHA1
  
  16190394f652022d547363b50de2267083301675
- SHA256
  
  a09e1814358a26642fd7a5080553d3f09aeccf99bcacb39d7cdf2e8453bad508
- SHA512
  
  da0a5a73f88ef4bf13655512fe6a9e09b88bb22fdf0b8afcf701c12a17a22fdfe28029213fa36fd1cfa0dea777bf075e4632b9c5ce13b6c2e81661a3be2bc69c
- SSDEEP
  
  98304:Q+S9bgfBprGf3oVqFP/rCNqQ5jNEmQoVMRuT7mGfVmH68EeOq8:zMcXrGf3oYR2zjCoVLnmKVma8xP8
Score

7^/10

upx
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2024

Terms | Privacy