7cf0ce2645aaa3df4a9d9acfc4f8b8c20401358af5886110f84125a641e49644

Sharing

Copy URL

Twitter E-mail

General

Target

48afab0034f6396ce0a058a75ee45ed4_JaffaCakes118
Size

12.0MB
Sample

240516-ad1awabc3t
MD5

48afab0034f6396ce0a058a75ee45ed4
SHA1

73428c0f775694bf938a6705f0f42b4547defe71
SHA256

7cf0ce2645aaa3df4a9d9acfc4f8b8c20401358af5886110f84125a641e49644
SHA512

754b524833aeaa80c99d55aaf3e939618d5f344c9818f3a03f16165d94bf3e4f351f74ab6d9eac4f8b868125f1f55fecbf7c028923191a9e0b1ac6a8878a4fc8
SSDEEP

196608:NEyorYn/udzHBnRZbFSqkIXsn5hmyVtWFo1KECY/dgYEsaKNH1ZZXXIYtmX57bqJ:NE9rY/udzHB3s5ciUSCY/dgYlZIY0pU

Score

7^/10

aspackv2

Malware Config

Targets

- Target
  
  MirServer/GameLog/LogDataSrv/LogDataServer.exe
- Size
  
  310KB
- MD5
  
  ae1f428135986c234d4c425d7815ffc4
- SHA1
  
  8d78afdef9b0343935180e4afb05a900d73ab23a
- SHA256
  
  e00c6c73fccf0039cf0195520b952a065b05ab7236b96dbe373a45116a175e37
- SHA512
  
  ec1e571f0d7282a8f24f400ea1bbbb5e0e2a2925145d458d26a33dcbf865ac7d74d71b29365d2a6e0fc955afbe1eaa4360a990a27ec35aa67d6cf848bed444a6
- SSDEEP
  
  6144:GcT22vjSZtst3S2OlzMKHyyjSw9SQl30AUP9K:hTVjSc1NuMWjnS60L1
Score

1^/10
behavioral1 behavioral2
- Target
  
  MirServer/Gate_Server/LoginGate/LoginGate.exe
- Size
  
  389KB
- MD5
  
  d26a57cc3dcbd3484fdc318c087bf0af
- SHA1
  
  57de0d10439bad644a50a8d2f2b4e4d91f081c79
- SHA256
  
  4baed6a278c6daf09d2011c654ec075c92db35f5e4006297370293dbfc08b14a
- SHA512
  
  db9c2421cb09f754bbdd4f5f263f5a9012ea96c0bc0e28d8fa2d3d969cbe52c54f1a86058240c3648857a7d2fe296b4decaf43c4981f80bc206937aa2bdc66d9
- SSDEEP
  
  6144:+OR5kt/DbVysermB1SeULhsZK3g9DV0Ep7SD8Xy0U2w8PrZIc5rBvIsx3bgr13sT:+OR5kxQsF19SDIPZvrBbWSQC7dr
Score

1^/10
behavioral3 behavioral4
- Target
  
  MirServer/Gate_Server/RunGate/RunGate.exe
- Size
  
  408KB
- MD5
  
  85bc3c192aa72b09ae2969a123522800
- SHA1
  
  446dc6cea2f8ad5b1a4f24c715e8e1e5f9653d3d
- SHA256
  
  0438a236d4fc77de57739a548080947994f601930abf1b776647f53077f1b4c8
- SHA512
  
  7be9560817982ea83cc2ae8afc618a38cdafb1b11185bfbff40b089e75fbdbf0e00efc5e3fb5f778c94847f9a923b93ff643f9443c72cd2dee75452f064558fb
- SSDEEP
  
  6144:w8xiqP5bZhTYBw8KSLaDr8eHyGq9SHV6e5C4BuPjQh/7/XMrl1:FxiqtTzn738OZ6eY4BaK7K
Score

1^/10
behavioral5 behavioral6
- Target
  
  MirServer/Gate_Server/SelChrGate/Gate30.exe
- Size
  
  389KB
- MD5
  
  ccb1b5c3443dc371d680e34b9f835153
- SHA1
  
  874846edbaed0d18d2daf3f4af9e3798b33b4b38
- SHA256
  
  14541d2447acd53834f22c596aeca2a272556a8383d31905395afb8a18435aba
- SHA512
  
  55c0c678f84c624314ebfba4aad7ce2589b7b0e115d40cc61999b002ee56570ad3e8a8ba438b5f49e70a21417696b368a3499fc83cb1d2fca94ca505bfeb5dd5
- SSDEEP
  
  6144:6OR5kt/DbVysermB1SeULhsZK3g9DV0Ep7SD8Xy0U2w8PrZIc5rBvIsx3bgr13s:6OR5kxQsF19SDIPZvrBbWSQk7ds
Score

1^/10
behavioral7 behavioral8
- Target
  
  MirServer/Mir200/M2Server.exe
- Size
  
  540KB
- MD5
  
  ad2b28afc20091c672e91fbcecacf812
- SHA1
  
  eb537885fa6e988df31c41be2339ae299a4baa34
- SHA256
  
  852b805835218cf01a34a6a87e13dfea342e84b054e0142e71f7fdbe5b78ecb9
- SHA512
  
  b3545799b5020b0cab6464aa8a7891805326dc79f5b1c653f935338a7e77f2a4ad1893dd2e0c7403eb583d0456d473f411092b6166ed9ce939f7ee86c2c4f620
- SSDEEP
  
  12288:1eVhp/MdfWIqSyYXoYFEIoMn8yUgm9KsOVHGJMiSZ6:1eVhpifXqSyY48E6nrIvOVHH
Score

1^/10
behavioral10 behavioral9
- Target
  
  MirServer/Mir200/Mir.dat
- Size
  
  777KB
- MD5
  
  cc848b8c2bfbe70e89d6262e97351ce9
- SHA1
  
  0b69938bff6348ffc9e53fb9d1fbdad74f5d69d7
- SHA256
  
  6fde727b070c8ba737762dd50e99ba1138c2e7097c97701b4dbe5086ed6e7305
- SHA512
  
  55a03e99388e887d257361d8fcb8fdeaed11c962b6beceb37abca64548ee5f49cc1af7368751f9bc10b44d07247b4f76090f4a3dd4cc77ff3be23d98c0b58152
- SSDEEP
  
  12288:fp/LALsd4IVmkTGaeSbGvfk5ICOrO28goH02usYHNB8Vo:lLAQd4IVmkRbAmIfrO28jH01BD
Score

1^/10
behavioral11 behavioral12
- Target
  
  MirServer/Mud2/DBSrv200/DBServer.exe
- Size
  
  437KB
- MD5
  
  3a9c6823a37382003b9b88326928fc60
- SHA1
  
  7aa9c6e1c80f8d4dc74844b27cda64f1b396c9ca
- SHA256
  
  83aa291144a859b89a94bfb27e04ba3f75574bbee9f33dc8109fc92b5942bc9f
- SHA512
  
  adc044c3ea175bc1038c37df2b92945ae71b4fdfce45e939376a3b76d4fc8f9c911d49aca6658675efb90c25624bc052705568ac569d436c4235e43497db8df2
- SSDEEP
  
  6144:LJSlhOTS2A7wXdwlWhexX5sFkYLJj6XtAjpI8ITRToDqiHxY9XoHg32B4awL7pZV:LJTe2JwEhPF7AyClTFiHxsjUAZ
Score

1^/10
behavioral13 behavioral14
- Target
  
  MirServer/Mud2/LogSrv/LoginSrv.exe
- Size
  
  293KB
- MD5
  
  8807d7e9cda0a6e0465acaacbc8ddb63
- SHA1
  
  25be5529ac6ff4d2c037294ac4293342762be0b2
- SHA256
  
  c1dcec8ea14a331dc1a9d3d7a85504e028ee76db00493ce331ec1af76b9bd73c
- SHA512
  
  a4020066ccb137b23ae9c73019b9c11bfc773f75971a73cbff2c3d71a63e9dba09bbed858163181354f232b9d0f51aa01b1be8e5ec375c0c55fa900a2f80f6d8
- SSDEEP
  
  6144:B07hVO2eO/eOqcaEFKVSh4UEJPM22vWPQgauGH63yaXCU:Bc2rZjfEFv0pM2agaugwy
Score

1^/10
behavioral15 behavioral16
- Target
  
  MirServer/上万免费版本下载基地.url
- Size
  
  112B
- MD5
  
  e03edacde67b4ecfb021ce78a919d5ad
- SHA1
  
  030d933b78757e3bf4f6126bbb357c79ba41db51
- SHA256
  
  6df8c53cddaf3fd630fb3a870535d8f840df526f5c1fd10b0d589f3526ff9620
- SHA512
  
  9e61567d9fa5e95e5c6bc2688dccf4c2e51bb5aa07b67671fd1babc4e62f63ec40a8324a1ae5f56ec1d19b737639091e38f2fc7523eda8fd9c813b191e71699b
Score

1^/10
behavioral17 behavioral18
- Target
  
  MirServer/我本沉默传奇启动程序.exe
- Size
  
  634KB
- MD5
  
  773a0808b3d9d0361b6d94a38b9eb166
- SHA1
  
  1e268d128571e7de7d54f3d380d34e8cc5d21338
- SHA256
  
  3a2f3ca265cf6f5249029905b89c3f9445e2a33da9f06a93f76036850884923f
- SHA512
  
  e2f6cf283e9c809769e72caaa9b85085c5d489a3b722a76d16cee630f8966f2caa472b69fa2bb27329cf46ec1877b398bf1cd115498c4ed87657875629bb5f50
- SSDEEP
  
  12288:QwFBKfio1oR16s1jkgwE+skG5eCCVUf8RqvB3Yp0WzERwF58mmylsY6LigcAlF:QwFBKxo+s1jkg7MZI5FWgRa5MyOJigc
Score

1^/10
behavioral19 behavioral20
- Target
  
  MirServer/我本沉默配套登陆器/我本沉默.exe
- Size
  
  1.2MB
- MD5
  
  7132282a46f0b0976785cbb0be6fcfaf
- SHA1
  
  97bd5dac791a677e2dce3966e82f6522fc1bae00
- SHA256
  
  1db273a560bc26111eea32f0a85669f7d2650bb57ad2daffc80777e419655eb0
- SHA512
  
  69eab997bca6fd5dd86d44afd315c0b3b558658c4d119eea6e223e4dbfc479e391bc79fb76a2c0e6737c42ce4e37bbe2735c6730ca4094dc24d72bfd73069b4a
- SSDEEP
  
  24576:7B4YhqjMuhEAJjvsmJlDFT/Ya9zWMmkl9RKxRSfcFPVL7Pd:7BPyEqkmJlhTX9mwYtJPd
Score

1^/10
behavioral21 behavioral22
- Target
  
  MirServer/说明文件/版本历史.html
- Size
  
  10KB
- MD5
  
  faece19eaa753efe3a838e9973f97ac0
- SHA1
  
  276d6e0911cf37526f6d08ec248b1104bb92d478
- SHA256
  
  16291bd0d9ad925a2c8facf9888e4cf83559f9ada6c519f76b82d3696058804b
- SHA512
  
  2c552d30df1826e4fd7e72b04482bf51b0e30457c5b0abfac006470d0b2f3d28071e10b282a1e1f7de3e40b0c69a94a9b8b976dd74a6349ea198c7b1ce27ffc5
- SSDEEP
  
  192:7NnzqccckotaRz4Sk6X6aPrGHqs1xzI0GypEdTB1Gpz:5zOc9iA6X6aP6LkcpE9nGpz
Score

1^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24