d52138cdf8524c5fcaef9770eaf300b4e820e8d002869789bd056b16afbc9da9

Sharing

Copy URL

Twitter E-mail

General

Target

707252d68699bc21bff3bb0706364407_JaffaCakes118
Size

17.8MB
Sample

240525-byqslsac35
MD5

707252d68699bc21bff3bb0706364407
SHA1

25add1bd935e1c8ce139cdc11d8bf62e5fe0fae0
SHA256

d52138cdf8524c5fcaef9770eaf300b4e820e8d002869789bd056b16afbc9da9
SHA512

06c72c3ba165133f9e820a5da8ef535c582df18cb41f72c9c0a23ea9555f78d7dc943bc426ea952e6ef4ef882dc025898a0813b3ea584307966857e20aedd30d
SSDEEP

393216:ihhY++lodBqhYGYNkfqhYGYNkf3jEF9kL2:GSCd2Tf0Tf3QF+L2

Score

7^/10

upx vmprotect

Malware Config

Targets

- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/BmpOperate.fnr
- Size
  
  100KB
- MD5
  
  935460394f18a04cd02331690f74096a
- SHA1
  
  396a75517c6ec2543a021156f3c1f7a7e69f49c4
- SHA256
  
  848c1b8a90596c2afd47127c41bf8d6a7b7fb95ba668ad514affe66b632a8586
- SHA512
  
  4378ead4a4244ef2d531865135d4af02f4747038ea451d1798ecb453b81887e89c0ed695421f52f69d7226794a2f21f223769bd838fb1f9a0c111b2e055a6ed7
- SSDEEP
  
  1536:iqZ1aL0w0h4FLGtGAYdITCP941lcloKKEyU:iYl1YEyloKKEy
Score

1^/10
behavioral1 behavioral2
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/EThread.fne
- Size
  
  60KB
- MD5
  
  206396257b97bd275a90ce6c2c0c37fd
- SHA1
  
  3cae4506a033cf7e97156d5261f2a247c6270f42
- SHA256
  
  64eef86745d7ae0168fec357099e2e952ce74ee19576d06cc8c8c65f210cc22c
- SHA512
  
  4c23e52b5b23b305c3172e01dd205e15fda8f20f8b60776ba59d080bf05bbbca456a0ed232f2e2a2bf01d32efb913063f89fb4928bc4d5d1c1eb4c4979803455
- SSDEEP
  
  768:r3gWNW3gyVNWTmOPMJcyS6K7viaViB9V5yHQ6Fq4oCaJa2OJK:TXkSTmOP0Cbu2BboCaKJK
Score

1^/10
behavioral3 behavioral4
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/WebBrowser2.fne
- Size
  
  256KB
- MD5
  
  3a3d1dceb97ed5d5910bafa045792079
- SHA1
  
  e165fe1cad177b536899926bb4d7a87b9ad8e750
- SHA256
  
  10d234ec2a647149e418af38ab0ddc93f263847400b3cb8ebd54417cf75850e4
- SHA512
  
  ef49cbe023b298f1e0bfc1e79f64b53d121b5a546a892f5b04550550890d045ecc29d34461ca1e222707c0428714e48a7b4459a38c066478be3dc64b72190776
- SSDEEP
  
  6144:V7lMy5L4J0ULD3FdzERNMk9OfLhq6V0K2:V5My5L4J3XfzEQXfLhq6u
Score

1^/10
behavioral5 behavioral6
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/ZCB.dll
- Size
  
  3.6MB
- MD5
  
  679820559727944c864d3bdd4768a43f
- SHA1
  
  1fdbf2bc3e3b3134a7c6ffe4274651a872a829e5
- SHA256
  
  920c57348a1a1925c7ade23f27eba93eb84827c39381306423a02cbb79a4dfa6
- SHA512
  
  40db0fe36df37859d1a78da477ba9967cae93dccaf2caa07bd895c4a73bab019b71038569e3b17cb9b09350b79fe2199fc6bbba23a79ff4017072965b94b3e38
- SSDEEP
  
  98304:1p3WJuWVDybvrIWsfZkhrLCujyTf2cA0V:1RWsbUWsfyK2ct
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral7 behavioral8
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/const.fne
- Size
  
  952KB
- MD5
  
  1718e9013e5d5a4d0e6b4890be957e37
- SHA1
  
  d3684d849d96e4b1712206f07d737a1cee94716b
- SHA256
  
  6d00e79b70e57209ae623f59480e3255d87a60858da87dcc751cd3018796f759
- SHA512
  
  6b1b2a538346bc73c30f24eb06ad217b1bbb80e880551e6107e7a0e286321e32823e3a4b6c12d1a8e34b416324247fbb5f93b54fb4f838f13f3174072e636e71
- SSDEEP
  
  12288:Cqh/i7xvXMrYsah466BEqAoketLGQQA51ictk4m:CqVCsaJOAiGQr1ica4m
Score

1^/10
behavioral10 behavioral9
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/dp1.fne
- Size
  
  128KB
- MD5
  
  07201b1fd5f8925dd49a4556ac3b5bab
- SHA1
  
  a76afbb44376912f823f2b461507c28d2585a96c
- SHA256
  
  abebbb0981d3d51eb63abcfa68be98da0cae4e6e3b143dd431fc845d1457dbd2
- SHA512
  
  0cf673ce1b6cad38f0211231e876f00f6a8397a5f3e71680046f4a216bbe0f47f4541e5f5b49364310e41a04cce14703459725c3d9f052f9da13624e73753e12
- SSDEEP
  
  1536:tiDSn+hfeTpCwAncpZ6Z8HTiQjl1sYiKG3oe/:UDTReTgwAcp9lqKG3o
Score

3^/10
behavioral11 behavioral12
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/eAPI.fne
- Size
  
  320KB
- MD5
  
  75e3942b26c39888cc2ee9b732a101c8
- SHA1
  
  31fafc5d186101da0a546ff044765e5e22efadbd
- SHA256
  
  dc48317159bbdb48ce79932411561c2be9efc3ce952dfd698609bd4033256f05
- SHA512
  
  c664365c20fc2da3117f142f819961a7db29c3bc4a453fefdfc534e34a4c1012794c58915183822e7ff7f05c604c321c5ce1631c1fc9a97c37ebc5b4322bf040
- SSDEEP
  
  6144:yVv24BZWu21ov/di3CqinRzQA4WVEuwQ+jNb:yVvHop8SCqgrvvwQ8
Score

1^/10
behavioral13 behavioral14
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/iext.fnr
- Size
  
  216KB
- MD5
  
  3f1b2b497172b65f7bb15453d0d93de0
- SHA1
  
  e24556e47ced0b6ae6b89a5e280b83e15ed42e8a
- SHA256
  
  4f9ad22aa55455f56619e76a01afeb337e1f28f61c7dde5869eb2a6d8776581e
- SHA512
  
  8837e6108ffde548674487c5ebba3e3dbee8bfafa5727470d3ebaeec039baefc6dc3d756a199f4fb334754985288f0a5577b32eb41fbd69295fc9681354cd3f2
- SSDEEP
  
  3072:Mn8on8DDXsrbOfcrhoqJJeSld1oLLPCa/p9Z/oUHhRO6fVo:Ogcmqmud1oVldRp
Score

1^/10
behavioral15 behavioral16
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/iext2.fne
- Size
  
  492KB
- MD5
  
  dba5fdbe7ec94463b3f6fdf2162c9f95
- SHA1
  
  a97137b4f2b77166b2a23da1f58e0bdb7365f4f2
- SHA256
  
  a8b14f31098a191631696db5ddc77e029b48999542e0ec15b63df02220c66d37
- SHA512
  
  325439bb5fe0e18e08cd547e9e9d505aa5b1ee51a436cb155254cfb04d318679e7a016cc2e72ffaba49bed20e15e85b26fd2a22e726e211650317218dde53ba6
- SSDEEP
  
  6144:0ujp9xZF+ES6jisyHOzC8QxEksWINE1DfYmgykSjsUgZ43KyEBuXwKF:VZFX5zC8XkBIm1DfYml7otm3YBu
Score

1^/10
behavioral17 behavioral18
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/iext3.fne
- Size
  
  384KB
- MD5
  
  bb1bfa85b29df8ea860cb394000da15d
- SHA1
  
  b9f04e35cdfed2df1f07c31ffca3aca1a1ee868a
- SHA256
  
  eb7ae5233580a5d76b8c43a1b41d48efec00d652c7de2ff6a86a9136dd3d01eb
- SHA512
  
  22d39aba891d05631b56e1ef5d4737714880f5fa4d23aa853e2fc02e95c12425b2781e6931db14b4476bf9d4c9dd68358b89b54d9940f6f890ae74c399613f7b
- SSDEEP
  
  6144:Xr7fTTSXdsmdjqi9oLLMmqlY/npYt0nvI2oAYIUoTXD:XvTTCbjqaOnpYt0nvI8YETXD
Score

1^/10
behavioral19 behavioral20
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/krnln.fnr
- Size
  
  1.0MB
- MD5
  
  44e2ca67c060fbe3dc0d030149f5a478
- SHA1
  
  5df61eb626bc3849893701942114609c1086d496
- SHA256
  
  6ced19283dbbb95f264448f380592f4e98ba8228efca2f68821ab3ae61029d93
- SHA512
  
  1a348c7585d78dd68c1d0e059ea1d7cea57c1aeff734f834f75025719b9fdd0e9bb16aebe75e15502a1b83106387eaa9493b8990999e0a68b62c1afdbc8cf45e
- SSDEEP
  
  12288:rb0+sqCE6yy4bmhSd+1YCHYFZzktq0TNSARuOrRUVbNGvNXXYA/2b:AjE6+bhiHYF5kZI6uOrRUjYNXXYA/
Score

1^/10
behavioral21 behavioral22
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/spec.fne
- Size
  
  88KB
- MD5
  
  51d7be0ca4431fec32d0ba0978cb2cae
- SHA1
  
  1aa65ca721bd881b615b16602f6bc7cc4c7d74d8
- SHA256
  
  1e4d44d3a865a766517057c199eda71e005e56c13fce2c4137b66d185a416986
- SHA512
  
  5cf2214bc60dde261f44aa339ba1943f5c9b70337a11d064185224b3dcfc705e55386c95de280b6d05c4b60a318abbfa3d5728724c28dfc009d57c3bbfd76ef5
- SSDEEP
  
  1536:DcrPILJRJT/DpWc6hVoabwhfoeW7JsVRj0:QrMW1ojfolax0
Score

1^/10
behavioral23 behavioral24
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/乐刷助手.bak
- Size
  
  5.9MB
- MD5
  
  c012830576abea2a6234ad8e35846663
- SHA1
  
  8a060cda57ca9cd6487c70502d10b1398e5cf1ae
- SHA256
  
  72d02c04d0de471af3aedf04ddb792eeb143644f1bb2b43c8a6a44f40affd522
- SHA512
  
  b4fb3df20eca0d8d018aee15d06f697e233398cce8be2ae862dd1ae7d816f0443c6800a279b2d25e50afa860bf5068351913628c055d1f26b143018aa3dba9ed
- SSDEEP
  
  98304:L+SFODqDmk4qwp3WJuWVDybvrIWsfZkhrLCujyTf2cA0Vi6BzOER96+OkOEwOERo:LGDqKkmRWsbUWsfyK2ctigzOER96+OkV
Score

7^/10

upx vmprotect
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral25 behavioral26
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/乐刷助手.exe
- Size
  
  5.9MB
- MD5
  
  4a7a929a6a74aefc34efa3c1c3f65c50
- SHA1
  
  504c45066a2d16676ab2312848e8f0010f112bd5
- SHA256
  
  e8676cd97a26acfeb447295014a7cd29832b1ec78fb0100b74c72335ffbab193
- SHA512
  
  99767a262614fb25271c4612e4ad0191fc6b596ae5e3ee60df44b0b0e68afce9b6f5d5a39af9c6b662cfb2aea5e351bc27e44f86e0302d52647952614c2e4d1a
- SSDEEP
  
  98304:L+SFODqDmk48wp3WJuWVDybvrIWsfZkhrLCujyTf2cA0Vi6BzOER96+OkOEwOERo:LGDqKksRWsbUWsfyK2ctigzOER96+OkV
Score

7^/10

upx vmprotect
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral27 behavioral28
- Target
  
  乐刷助手(淘宝小号管理，拍单助手) 2.1.9/乐刷助手_原版.exe
- Size
  
  5.9MB
- MD5
  
  25f7e0e7bdb3ac229caca767bead1d1d
- SHA1
  
  08b91d7746e9072a149b3faae006748e2c5b9b83
- SHA256
  
  847ff143b3b989c90da576eafa778f531e192ddea59c6bef95096563cbd9a823
- SHA512
  
  c9a516a7241c0791ab61281ec10649df33fca3538a69dc63bb2b5cc81acccfd972075840169179f19901a6f33f6723a9394640bf32937589d6f9867b45bf0f68
- SSDEEP
  
  98304:VNSFODqDmk41wp3WJuWVDybvrIWsfZkhrLCujyTf2cA0Vi6BzOER96+OkOEwOERo:VNDqKknRWsbUWsfyK2ctigzOER96+OkV
Score

7^/10

upx vmprotect
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral29 behavioral30

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

VMProtect packed file

Loads dropped DLL

UPX packed file

VMProtect packed file

Loads dropped DLL

UPX packed file

VMProtect packed file

Loads dropped DLL

UPX packed file

VMProtect packed file

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30