Overview
overview
7Static
static
79553下载站.url
windows7-x64
19553下载站.url
windows10-2004-x64
1QQ飞车�...ll.dll
windows7-x64
1QQ飞车�...ll.dll
windows10-2004-x64
1QQ飞车�...02.dll
windows7-x64
1QQ飞车�...02.dll
windows10-2004-x64
3QQ飞车�...S5.dll
windows7-x64
1QQ飞车�...S5.dll
windows10-2004-x64
3QQ飞车�...10.dll
windows7-x64
1QQ飞车�...10.dll
windows10-2004-x64
3QQ飞车�...ND.dll
windows7-x64
1QQ飞车�...ND.dll
windows10-2004-x64
3QQ飞车�...FT.dll
windows7-x64
7QQ飞车�...FT.dll
windows10-2004-x64
7QQ飞车�...LE.dll
windows7-x64
1QQ飞车�...LE.dll
windows10-2004-x64
3QQ飞车�...UG.dll
windows7-x64
1QQ飞车�...UG.dll
windows10-2004-x64
1QQ飞车�...SG.dll
windows7-x64
1QQ飞车�...SG.dll
windows10-2004-x64
3QQ飞车�...ET.dll
windows7-x64
7QQ飞车�...ET.dll
windows10-2004-x64
7QQ飞车�...LL.dll
windows7-x64
1QQ飞车�...LL.dll
windows10-2004-x64
1QQ飞车�...YS.dll
windows7-x64
1QQ飞车�...YS.dll
windows10-2004-x64
3QQ飞车�...OW.dll
windows7-x64
1QQ飞车�...OW.dll
windows10-2004-x64
3QQ飞车�...X6.dll
windows7-x64
1QQ飞车�...X6.dll
windows10-2004-x64
3QQ飞车�....6.exe
windows7-x64
1QQ飞车�....6.exe
windows10-2004-x64
1General
-
Target
634f21f8ebf81fc4ea0d9da7db62dfc6_JaffaCakes118
-
Size
6.9MB
-
Sample
240521-prgg9adh48
-
MD5
634f21f8ebf81fc4ea0d9da7db62dfc6
-
SHA1
de7729442267edf9f783254eaf89a6d5a1032cb3
-
SHA256
c760e27b4fd16ff8ddb219856ef59e1268681f53de8e266723a1b558c0f1fb8f
-
SHA512
aae4c89fe3d5c784659bdbbd156b0e095f8568d51b9b410db1bf59dd5212174d7e3c01de0d3ebaef264d64384064bdf4e377848a4560b2842c5cefb29b98671c
-
SSDEEP
196608:ILwQu8hGqgTCzqo1W34bAso+4sgg4oRZR9CD:IzGqzRyxNygOV9CD
Behavioral task
behavioral1
Sample
9553下载站.url
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
9553下载站.url
Resource
win10v2004-20240426-en
Behavioral task
behavioral3
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/cfgdll.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/cfgdll.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS4_02.dll
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS4_02.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS5.dll
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS5.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral9
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS6_10.dll
Resource
win7-20240508-en
Behavioral task
behavioral10
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS6_10.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral11
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BKGND.dll
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BKGND.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/DBSOFT.dll
Resource
win7-20240221-en
Behavioral task
behavioral14
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/DBSOFT.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/FILE.dll
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/FILE.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral17
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/LXJ_PLUG.dll
Resource
win7-20240215-en
Behavioral task
behavioral18
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/LXJ_PLUG.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/MSG.dll
Resource
win7-20240419-en
Behavioral task
behavioral20
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/MSG.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral21
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/ONIONNET.dll
Resource
win7-20240221-en
Behavioral task
behavioral22
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/ONIONNET.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral23
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/REGDLL.dll
Resource
win7-20240508-en
Behavioral task
behavioral24
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/REGDLL.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/SYS.dll
Resource
win7-20240508-en
Behavioral task
behavioral26
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/SYS.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral27
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WINDOW.dll
Resource
win7-20240215-en
Behavioral task
behavioral28
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WINDOW.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral29
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WNDEX6.dll
Resource
win7-20240220-en
Behavioral task
behavioral30
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WNDEX6.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral31
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/老鬼辅助 - VIP丨官方版v3.6.exe
Resource
win7-20240419-en
Behavioral task
behavioral32
Sample
QQ飞车老鬼辅助 3.6/点此打开辅助!/老鬼辅助 - VIP丨官方版v3.6.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
9553下载站.url
-
Size
123B
-
MD5
641b7bd2fb28a200dc63636c8a42e01e
-
SHA1
983ce619412387b4fd1eea0b0aea10c76da823a0
-
SHA256
84b4b4fb5d876f65f02375bf947a3f29fa230b2f3e456c672029453c35f7bf9d
-
SHA512
2cbb10b153f9c33b0e0965ef5e4208a91f29254c22a1599c33359056b1c0318dabf05c88d2ff79360ec589a6e23f73864321c0b05ea67fb5228c800205ed9757
Score1/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/cfgdll.dll
-
Size
59KB
-
MD5
929f56b46242fa68a616374a5403689b
-
SHA1
45b4ade1f0cc2bf13e74d9801eee5c7abee3c3b2
-
SHA256
767b2e735693a9455a23b19e7a94643fd6095fa1158cbe22f612d657ebbb670d
-
SHA512
81c69649efff9d320533bcb3256d42c671877e1d48f9df99134c514aa2d888d11ded13b9d3447949881513e376cf4644b41b997cad2a9ffb51f4f45ca3cdc641
-
SSDEEP
768:eaEHTGEBv6OuJjxqbhJKOBGxoVlbP2nP8oMRIEw8q:eHHTG7OuJjsKOBlVh+EoMjw8q
Score1/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS4_02.DLL
-
Size
96KB
-
MD5
288f58b48a6f2bdc8398efc0d6ec52a1
-
SHA1
805a540436558ffbc953b915012a84a9d63a527c
-
SHA256
40600fdd4d3753a6ce43710d8287d660446ceec5f24eb59794d403ab6a92f86e
-
SHA512
84af8d01a246fd6c87f8aaafc4945f762cc219ef84de4ea87e7553279774eecf524eed6848e16a8f6dd2c9bab525319289693cda90c9ce5fb527fa3c456c0ee3
-
SSDEEP
1536:tAcjLSveaGFsupP/+6rxipDgMx0zbhPngbzLMrocrErt1Rv9ZHIhVSk+WDdl:tAveaWnZ+6rxipDgMx0zbhPngbzLMroi
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS5.DLL
-
Size
88KB
-
MD5
c85e2949a35d02c2ace7dd7b005e733f
-
SHA1
eccc43d686c143cef7c7e241d60192585db8a2bf
-
SHA256
3b1cb5dda8e5d1a6ddef5e714be0f4c4b2721bcc3a93ecc1e3148fcfd4ea4137
-
SHA512
7df73b1621c54532e3f0310e52c12833af507b0896d219c0be1bc53bfec6c427022e98540bb0531ca772c46a6ba58b3a65aac8a815b0f2c232d3b1966dde4d85
-
SSDEEP
1536:adMbwvgLeGks6C2i3JIN2ajD+piwl5tkWemrq4SiVuAUvCURgQCrEc+RpGShIz:a1ZHN2ajyMwlteIuA1lraRpfhIz
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS6_10.DLL
-
Size
84KB
-
MD5
8b2130cb5cb32fc9e4d594cfa9a276d8
-
SHA1
2b39e3bfaf4abef17f4c1603ed49be91b4f4dcbf
-
SHA256
f7cbb7bab95d384830c097b28ad8ebcb9fbf6130e52bb9f71194ad16f11e41ff
-
SHA512
9e944c48c55198ca12856e9fb1d384f757b06188e6c0f1a933147138769d76e322653e9474d20b2a254ab469e05ce58209681ffa27cb6b6662a1997586e11301
-
SSDEEP
1536:lGBMmgWIAwLyYtmE2TtIPa0K5hbaXz8Z9FpezaL8F9d9:UKYFIPaj7baXQjFpLU39
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BKGND.DLL
-
Size
40KB
-
MD5
7ad9d5d752c8c5ff176a6a4fc517f734
-
SHA1
7b2c7aad9c52ce294bc33fc9616c4658f6aa76d0
-
SHA256
e53d1a4e86cf01416b1a005dd2904126fb66fc146697e3b82007dde570a04565
-
SHA512
ab0a13a6cdd77115bf34b28566b1ec8c2508e01619f414ad5e9af7d9c9cd93492c0426effa9a0b6a0414577e4285d3bdbdde3741b253c8f66f0d4b62f2f5f516
-
SSDEEP
384:8gR2trrdaeOsE0zZljveSKGtd1Db1+/favDjGSlRm/yblOgCJ:8ptrJDEuZJ2SKGtfDY/faVR+1t
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/DBSOFT.DLL
-
Size
583KB
-
MD5
2fefa90be80337deaaec147410418302
-
SHA1
01577a10bde6e09af97e4ab50b99c52e49fe4bab
-
SHA256
afcd0defb39c2ec0ca6c923742a9aa1a25e085de0e96514838e04f13969e0daa
-
SHA512
e484b0b6119a08d73c2072b13cc921974a1a88794e2fed0eb0b13ee7f0b5443e0852223127b21c053a72ca8ec784b1731b8fea26dd594f862017844417d59b9c
-
SSDEEP
12288:7WC+Q/rDKYDu0H08Cg/2vjJY+TBvGu/fWSUXP2SoSJwN:7sQ/ikua08CgObJlBeu/fWS0umwN
Score7/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/FILE.DLL
-
Size
40KB
-
MD5
d0f222e0927f3f0e341dca4f47af739f
-
SHA1
eebd84e63c3c7e7779712ead30b93ae2e93e3ed1
-
SHA256
9d86a5dbd2395a345675f02746127eb44d184250fd6e901c0c5876bbe4d2b167
-
SHA512
fa81a0729e92ed05bb8999f22b3c164d27bb8184bab60f1884290b9d15e1e9bae0656b3515a6d2a0d90747869398e159c93fe5aef405810dca2eba4124ad6061
-
SSDEEP
384:NG53ptguMRrpOibHXzpPtapkBAWBLjDrks5X8C3tQ7Ax4s:I5SRpLbDpPcQAMLjDrksJP3z
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/LXJ_PLUG.DLL
-
Size
360KB
-
MD5
abd59db197cc7ada6ca75035c34e02c3
-
SHA1
95f8d1d8cc25c07483826daff77a7b23a153fda1
-
SHA256
2ca6d944e550e1e3d0124df48345eae5b96a60971258043c452d5a67e59ca17a
-
SHA512
ad5447c79c070853145bbefd55227b99500f45f7b2e41c9d918c5abc99a6f6e4c743c2b7a34dc40baaefdfea2ea7bb2537e59f06edd43dbe523c56de39537ece
-
SSDEEP
6144:IU2TGMjYc8www7wrJ8HEbjDdRnxuwGkKT:IPs3www7wrrjDdR0ww
Score1/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/MSG.DLL
-
Size
40KB
-
MD5
3f92f9c3ac33dcf97741eb937c3e7c44
-
SHA1
8c950edebb7749dc5939fd2841a1a81d2809ed68
-
SHA256
417172e573177c921715ade25a63909ca986e11e16c3858ec0ef327c3d65355b
-
SHA512
5c32833e48dd6e4f8b0073d7d23e0342e00d94e460bfd83d51087dafbf0706f7e255c1458155690b223310cb4b0a6bd3afbccdedc9ea13ecacc6ff6e28eb6a23
-
SSDEEP
384:GEkt05A3HUNImsuw0h/g2WMbMFGc6DJz9u9IFy9ILiTnuozMh+rRL+GhD8sQI7Nm:rA30NIfobNn9uBDT5RrB+GhD8yK1
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/ONIONNET.DLL
-
Size
1.1MB
-
MD5
bb8367262679f94a2889be4152bc6990
-
SHA1
4fd9764ee28dfc097b29b1cf20db2ddfc2e6cca8
-
SHA256
ad067716decc8e3f67d96c26c62b8fc3d198c2924b551855bdbc4d449d13b89c
-
SHA512
e1728a450b54de43aab99a2b3ec985e6ef9c1803dbff4eb96bf56c58a8475c4b0c9e7a3c31bd101f3474e7d728c40f580d38e09cb9a07ab359fa9b3419e9263c
-
SSDEEP
24576:i2yv387ZFsiQi1PKGMCCdTAyPWmQrCY4Kb2grT2M0A9qljSBDo:p232ZJ1P3MCChNPWmQrCnKb/6M0AIlj
Score7/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/REGDLL.DLL
-
Size
24KB
-
MD5
e29d9a912204844df5306ca3935b1f1c
-
SHA1
19ba6440827ad2ac515aeb6c8700fbb4c896e61c
-
SHA256
3453bb9b4550dd5a51a64c3d2d25f1b49744b05ac740c57f2dd9f89084811318
-
SHA512
9229d5c845eeb36cd293e8d998aca63ed14f41b43d7d11da8682ede4d24853eff19bf0801b8ab055d50c849be7cbf94b890a672d90b55eec5019cebf98925a3a
-
SSDEEP
96:Q+fvNT4ui9YFfZVS7pxN3LusGOKmzXyUo2SZjvnEkWRA5mJL4DwdQTDut9Zdn0K/:TcYbM1H3ysce2NEkWCG4DoQTD0d0+
Score1/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/SYS.DLL
-
Size
32KB
-
MD5
3c3ef900d7bd0f3a949636dc8b78763d
-
SHA1
b3a4ada5c701c034a5b34c51a742660939d2a49d
-
SHA256
cf74f98e61fb70a74951eb8fafb88111a0a5026e746487d8a4d2c1c4e8d5f5fc
-
SHA512
a8fc871515a398736dadfb6d11f76e4bfec7104af5aef6937b1387107a279f27b3bfdfe9e7ce03adce3e57ebe72fee0a24769118ad626429c2feef056040d0f3
-
SSDEEP
384:D8VviLjx+MBCujuNJzhfkLW+rudIWbOmogt5cg+lHHrs:DIi/UMYujiFhfkdrujEHHr
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WINDOW.DLL
-
Size
44KB
-
MD5
4c462a5ff18e333b767ea44c318c05c2
-
SHA1
eb0f1bcd62382d4320532b330abf5cbdddd4a409
-
SHA256
efda60b95d43a51e54cf9f44278f36d1717e21c78686fa2157395b5635951b41
-
SHA512
11a8b2ee9e2b8431ddb81bbc3fa3bb596f9e2e11360f99b649017332c3b93eaa2efe105a2045285822e6d62663dec68b1c0d2a8a863f03fcec40cf04172d7139
-
SSDEEP
384:x3HTWhA1JTdS9XzugUBzutX4ut2mX1rNYGFyYVeYcDPDHp3BnH:x3mA1rUulBKtLt2mX1rNnyHYcDPDn
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WNDEX6.DLL
-
Size
80KB
-
MD5
92e73b7bd3b67db7e01c2da52a6e1e3e
-
SHA1
47b068c38c31d3f3c478c800a83298b1215f9161
-
SHA256
e6f7e2e8db3402f409f57180d1d0cdd35a1c355e12052c3299625b966df07f5a
-
SHA512
c0afac0defc465ea0f7a50161e243ac1927863bfa0cd39c977f9967c0d3778e43b2245ea31f63dcc01016d6216d757211f0fa2e62894702c415110bcc95a2cbf
-
SSDEEP
1536:Xo1mrO7QW4nJAAvKDkSsZN/zSYsNkRTZ2ylbE:YB7QJZvaZsZN/zSYsNkRTZ2ybE
Score3/10 -
-
-
Target
QQ飞车老鬼辅助 3.6/点此打开辅助!/老鬼辅助 - VIP丨官方版v3.6.exe
-
Size
6.3MB
-
MD5
3a4a4cd873020e7d383baf87b427ab03
-
SHA1
ade7e04fe7abb696391fa8306e738ecaa7a86545
-
SHA256
b41af51993830d7006f6353e437798ae33344aa694020c9a1a1fb973c0a237f7
-
SHA512
52fb042c2dbcfcae40d55253fecc1ab9244325b6c85b2cfeb58c9253513dab68e8cfb972328c44891e23ad88df478b6c36283796a1ab18a4d44d7953e78bc881
-
SSDEEP
196608:37vk2VvpeqObmbMFEYT7vWxbGo+91300E9Szjt:37vkE/qmb+P1z00Ewft
Score1/10 -