General

  • Target

    634f21f8ebf81fc4ea0d9da7db62dfc6_JaffaCakes118

  • Size

    6.9MB

  • Sample

    240521-prgg9adh48

  • MD5

    634f21f8ebf81fc4ea0d9da7db62dfc6

  • SHA1

    de7729442267edf9f783254eaf89a6d5a1032cb3

  • SHA256

    c760e27b4fd16ff8ddb219856ef59e1268681f53de8e266723a1b558c0f1fb8f

  • SHA512

    aae4c89fe3d5c784659bdbbd156b0e095f8568d51b9b410db1bf59dd5212174d7e3c01de0d3ebaef264d64384064bdf4e377848a4560b2842c5cefb29b98671c

  • SSDEEP

    196608:ILwQu8hGqgTCzqo1W34bAso+4sgg4oRZR9CD:IzGqzRyxNygOV9CD

Score
7/10
upx

Malware Config

Targets

    • Target

      9553下载站.url

    • Size

      123B

    • MD5

      641b7bd2fb28a200dc63636c8a42e01e

    • SHA1

      983ce619412387b4fd1eea0b0aea10c76da823a0

    • SHA256

      84b4b4fb5d876f65f02375bf947a3f29fa230b2f3e456c672029453c35f7bf9d

    • SHA512

      2cbb10b153f9c33b0e0965ef5e4208a91f29254c22a1599c33359056b1c0318dabf05c88d2ff79360ec589a6e23f73864321c0b05ea67fb5228c800205ed9757

    Score
    1/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/cfgdll.dll

    • Size

      59KB

    • MD5

      929f56b46242fa68a616374a5403689b

    • SHA1

      45b4ade1f0cc2bf13e74d9801eee5c7abee3c3b2

    • SHA256

      767b2e735693a9455a23b19e7a94643fd6095fa1158cbe22f612d657ebbb670d

    • SHA512

      81c69649efff9d320533bcb3256d42c671877e1d48f9df99134c514aa2d888d11ded13b9d3447949881513e376cf4644b41b997cad2a9ffb51f4f45ca3cdc641

    • SSDEEP

      768:eaEHTGEBv6OuJjxqbhJKOBGxoVlbP2nP8oMRIEw8q:eHHTG7OuJjsKOBlVh+EoMjw8q

    Score
    1/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS4_02.DLL

    • Size

      96KB

    • MD5

      288f58b48a6f2bdc8398efc0d6ec52a1

    • SHA1

      805a540436558ffbc953b915012a84a9d63a527c

    • SHA256

      40600fdd4d3753a6ce43710d8287d660446ceec5f24eb59794d403ab6a92f86e

    • SHA512

      84af8d01a246fd6c87f8aaafc4945f762cc219ef84de4ea87e7553279774eecf524eed6848e16a8f6dd2c9bab525319289693cda90c9ce5fb527fa3c456c0ee3

    • SSDEEP

      1536:tAcjLSveaGFsupP/+6rxipDgMx0zbhPngbzLMrocrErt1Rv9ZHIhVSk+WDdl:tAveaWnZ+6rxipDgMx0zbhPngbzLMroi

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS5.DLL

    • Size

      88KB

    • MD5

      c85e2949a35d02c2ace7dd7b005e733f

    • SHA1

      eccc43d686c143cef7c7e241d60192585db8a2bf

    • SHA256

      3b1cb5dda8e5d1a6ddef5e714be0f4c4b2721bcc3a93ecc1e3148fcfd4ea4137

    • SHA512

      7df73b1621c54532e3f0310e52c12833af507b0896d219c0be1bc53bfec6c427022e98540bb0531ca772c46a6ba58b3a65aac8a815b0f2c232d3b1966dde4d85

    • SSDEEP

      1536:adMbwvgLeGks6C2i3JIN2ajD+piwl5tkWemrq4SiVuAUvCURgQCrEc+RpGShIz:a1ZHN2ajyMwlteIuA1lraRpfhIz

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BGKMS6_10.DLL

    • Size

      84KB

    • MD5

      8b2130cb5cb32fc9e4d594cfa9a276d8

    • SHA1

      2b39e3bfaf4abef17f4c1603ed49be91b4f4dcbf

    • SHA256

      f7cbb7bab95d384830c097b28ad8ebcb9fbf6130e52bb9f71194ad16f11e41ff

    • SHA512

      9e944c48c55198ca12856e9fb1d384f757b06188e6c0f1a933147138769d76e322653e9474d20b2a254ab469e05ce58209681ffa27cb6b6662a1997586e11301

    • SSDEEP

      1536:lGBMmgWIAwLyYtmE2TtIPa0K5hbaXz8Z9FpezaL8F9d9:UKYFIPaj7baXQjFpLU39

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/BKGND.DLL

    • Size

      40KB

    • MD5

      7ad9d5d752c8c5ff176a6a4fc517f734

    • SHA1

      7b2c7aad9c52ce294bc33fc9616c4658f6aa76d0

    • SHA256

      e53d1a4e86cf01416b1a005dd2904126fb66fc146697e3b82007dde570a04565

    • SHA512

      ab0a13a6cdd77115bf34b28566b1ec8c2508e01619f414ad5e9af7d9c9cd93492c0426effa9a0b6a0414577e4285d3bdbdde3741b253c8f66f0d4b62f2f5f516

    • SSDEEP

      384:8gR2trrdaeOsE0zZljveSKGtd1Db1+/favDjGSlRm/yblOgCJ:8ptrJDEuZJ2SKGtfDY/faVR+1t

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/DBSOFT.DLL

    • Size

      583KB

    • MD5

      2fefa90be80337deaaec147410418302

    • SHA1

      01577a10bde6e09af97e4ab50b99c52e49fe4bab

    • SHA256

      afcd0defb39c2ec0ca6c923742a9aa1a25e085de0e96514838e04f13969e0daa

    • SHA512

      e484b0b6119a08d73c2072b13cc921974a1a88794e2fed0eb0b13ee7f0b5443e0852223127b21c053a72ca8ec784b1731b8fea26dd594f862017844417d59b9c

    • SSDEEP

      12288:7WC+Q/rDKYDu0H08Cg/2vjJY+TBvGu/fWSUXP2SoSJwN:7sQ/ikua08CgObJlBeu/fWS0umwN

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/FILE.DLL

    • Size

      40KB

    • MD5

      d0f222e0927f3f0e341dca4f47af739f

    • SHA1

      eebd84e63c3c7e7779712ead30b93ae2e93e3ed1

    • SHA256

      9d86a5dbd2395a345675f02746127eb44d184250fd6e901c0c5876bbe4d2b167

    • SHA512

      fa81a0729e92ed05bb8999f22b3c164d27bb8184bab60f1884290b9d15e1e9bae0656b3515a6d2a0d90747869398e159c93fe5aef405810dca2eba4124ad6061

    • SSDEEP

      384:NG53ptguMRrpOibHXzpPtapkBAWBLjDrks5X8C3tQ7Ax4s:I5SRpLbDpPcQAMLjDrksJP3z

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/LXJ_PLUG.DLL

    • Size

      360KB

    • MD5

      abd59db197cc7ada6ca75035c34e02c3

    • SHA1

      95f8d1d8cc25c07483826daff77a7b23a153fda1

    • SHA256

      2ca6d944e550e1e3d0124df48345eae5b96a60971258043c452d5a67e59ca17a

    • SHA512

      ad5447c79c070853145bbefd55227b99500f45f7b2e41c9d918c5abc99a6f6e4c743c2b7a34dc40baaefdfea2ea7bb2537e59f06edd43dbe523c56de39537ece

    • SSDEEP

      6144:IU2TGMjYc8www7wrJ8HEbjDdRnxuwGkKT:IPs3www7wrrjDdR0ww

    Score
    1/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/MSG.DLL

    • Size

      40KB

    • MD5

      3f92f9c3ac33dcf97741eb937c3e7c44

    • SHA1

      8c950edebb7749dc5939fd2841a1a81d2809ed68

    • SHA256

      417172e573177c921715ade25a63909ca986e11e16c3858ec0ef327c3d65355b

    • SHA512

      5c32833e48dd6e4f8b0073d7d23e0342e00d94e460bfd83d51087dafbf0706f7e255c1458155690b223310cb4b0a6bd3afbccdedc9ea13ecacc6ff6e28eb6a23

    • SSDEEP

      384:GEkt05A3HUNImsuw0h/g2WMbMFGc6DJz9u9IFy9ILiTnuozMh+rRL+GhD8sQI7Nm:rA30NIfobNn9uBDT5RrB+GhD8yK1

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/ONIONNET.DLL

    • Size

      1.1MB

    • MD5

      bb8367262679f94a2889be4152bc6990

    • SHA1

      4fd9764ee28dfc097b29b1cf20db2ddfc2e6cca8

    • SHA256

      ad067716decc8e3f67d96c26c62b8fc3d198c2924b551855bdbc4d449d13b89c

    • SHA512

      e1728a450b54de43aab99a2b3ec985e6ef9c1803dbff4eb96bf56c58a8475c4b0c9e7a3c31bd101f3474e7d728c40f580d38e09cb9a07ab359fa9b3419e9263c

    • SSDEEP

      24576:i2yv387ZFsiQi1PKGMCCdTAyPWmQrCY4Kb2grT2M0A9qljSBDo:p232ZJ1P3MCChNPWmQrCnKb/6M0AIlj

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/REGDLL.DLL

    • Size

      24KB

    • MD5

      e29d9a912204844df5306ca3935b1f1c

    • SHA1

      19ba6440827ad2ac515aeb6c8700fbb4c896e61c

    • SHA256

      3453bb9b4550dd5a51a64c3d2d25f1b49744b05ac740c57f2dd9f89084811318

    • SHA512

      9229d5c845eeb36cd293e8d998aca63ed14f41b43d7d11da8682ede4d24853eff19bf0801b8ab055d50c849be7cbf94b890a672d90b55eec5019cebf98925a3a

    • SSDEEP

      96:Q+fvNT4ui9YFfZVS7pxN3LusGOKmzXyUo2SZjvnEkWRA5mJL4DwdQTDut9Zdn0K/:TcYbM1H3ysce2NEkWCG4DoQTD0d0+

    Score
    1/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/SYS.DLL

    • Size

      32KB

    • MD5

      3c3ef900d7bd0f3a949636dc8b78763d

    • SHA1

      b3a4ada5c701c034a5b34c51a742660939d2a49d

    • SHA256

      cf74f98e61fb70a74951eb8fafb88111a0a5026e746487d8a4d2c1c4e8d5f5fc

    • SHA512

      a8fc871515a398736dadfb6d11f76e4bfec7104af5aef6937b1387107a279f27b3bfdfe9e7ce03adce3e57ebe72fee0a24769118ad626429c2feef056040d0f3

    • SSDEEP

      384:D8VviLjx+MBCujuNJzhfkLW+rudIWbOmogt5cg+lHHrs:DIi/UMYujiFhfkdrujEHHr

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WINDOW.DLL

    • Size

      44KB

    • MD5

      4c462a5ff18e333b767ea44c318c05c2

    • SHA1

      eb0f1bcd62382d4320532b330abf5cbdddd4a409

    • SHA256

      efda60b95d43a51e54cf9f44278f36d1717e21c78686fa2157395b5635951b41

    • SHA512

      11a8b2ee9e2b8431ddb81bbc3fa3bb596f9e2e11360f99b649017332c3b93eaa2efe105a2045285822e6d62663dec68b1c0d2a8a863f03fcec40cf04172d7139

    • SSDEEP

      384:x3HTWhA1JTdS9XzugUBzutX4ut2mX1rNYGFyYVeYcDPDHp3BnH:x3mA1rUulBKtLt2mX1rNnyHYcDPDn

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/plugin/WNDEX6.DLL

    • Size

      80KB

    • MD5

      92e73b7bd3b67db7e01c2da52a6e1e3e

    • SHA1

      47b068c38c31d3f3c478c800a83298b1215f9161

    • SHA256

      e6f7e2e8db3402f409f57180d1d0cdd35a1c355e12052c3299625b966df07f5a

    • SHA512

      c0afac0defc465ea0f7a50161e243ac1927863bfa0cd39c977f9967c0d3778e43b2245ea31f63dcc01016d6216d757211f0fa2e62894702c415110bcc95a2cbf

    • SSDEEP

      1536:Xo1mrO7QW4nJAAvKDkSsZN/zSYsNkRTZ2ylbE:YB7QJZvaZsZN/zSYsNkRTZ2ybE

    Score
    3/10
    • Target

      QQ飞车老鬼辅助 3.6/点此打开辅助!/老鬼辅助 - VIP丨官方版v3.6.exe

    • Size

      6.3MB

    • MD5

      3a4a4cd873020e7d383baf87b427ab03

    • SHA1

      ade7e04fe7abb696391fa8306e738ecaa7a86545

    • SHA256

      b41af51993830d7006f6353e437798ae33344aa694020c9a1a1fb973c0a237f7

    • SHA512

      52fb042c2dbcfcae40d55253fecc1ab9244325b6c85b2cfeb58c9253513dab68e8cfb972328c44891e23ad88df478b6c36283796a1ab18a4d44d7953e78bc881

    • SSDEEP

      196608:37vk2VvpeqObmbMFEYT7vWxbGo+91300E9Szjt:37vkE/qmb+P1z00Ewft

    Score
    1/10

MITRE ATT&CK Matrix

Tasks