Overview

overview

7

Static

static

7

歌曲排�...32.chm

windows7-x64

1

歌曲排�...32.chm

windows10-2004-x64

1

歌曲排�...pk.dll

windows7-x64

7

歌曲排�...pk.dll

windows10-2004-x64

7

歌曲排�...32.exe

windows7-x64

7

歌曲排�...32.exe

windows10-2004-x64

7

歌曲排�...ol.exe

windows7-x64

7

歌曲排�...ol.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    133s
  • max time network
    117s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-05-2024 06:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    歌曲排序工具/qmp32tool.exe

  • Size

    35KB

  • MD5

    664cc2d5b5497830556390407024bd62

  • SHA1

    7f7c0147d0efe836e497b8947a6a4a28294cee07

  • SHA256

    6f7ee3ed084c3205dba13b27a3099fbd9b97de1d64d144823d5699faa3347c98

  • SHA512

    212c94fe1890ddaf50535e503bd5b6f0af8a3e222b2eacaa5975197d106462325c2315efbcd2b875236496c62b33c330988b9f0b4e0c543aae7685aeb8b4457b

  • SSDEEP

    768:hMmzAYizd9AF8BVZ+vBOKmjaXgILj7jPEQZISO/e:hD8Y0iiK/QIvnPFZo/e

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\歌曲排序工具\qmp32tool.exe
    "C:\Users\Admin\AppData\Local\Temp\歌曲排序工具\qmp32tool.exe"
    1⤵
      PID:212

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/212-0-0x0000000001000000-0x000000000101A000-memory.dmp

      Filesize

      104KB

      Download

    • memory/212-1-0x0000000001000000-0x000000000101A000-memory.dmp

      Filesize

      104KB

      Download