Overview

overview

7

Static

static

7

三国小�...��.exe

windows7-x64

7

三国小�...��.exe

windows10-2004-x64

7

下载软�...��.url

windows7-x64

1

下载软�...��.url

windows10-2004-x64

1

使用说明.doc

windows7-x64

4

使用说明.doc

windows10-2004-x64

1

创世冰�...��.exe

windows7-x64

7

创世冰�...��.exe

windows10-2004-x64

7

功夫派�...��.exe

windows7-x64

7

功夫派�...��.exe

windows10-2004-x64

7

多功能�...��.exe

windows7-x64

7

多功能�...��.exe

windows10-2004-x64

7

封神太�...��.exe

windows7-x64

7

封神太�...��.exe

windows10-2004-x64

7

彩虹王�...��.exe

windows7-x64

7

彩虹王�...��.exe

windows10-2004-x64

7

造梦西�...��.exe

windows7-x64

7

造梦西�...��.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8e48842a3c213fe87580787cdbee7322_JaffaCakes118

  • Size

    2.5MB

  • Sample

    240602-q26esseg58

  • MD5

    8e48842a3c213fe87580787cdbee7322

  • SHA1

    ce7ed19c495f03ddbb53204d2893a0bb0247ea85

  • SHA256

    d3c4ef6c545055f0e205bfe4cbc8dbddccb0d5ecdad4033530c50a2be967121c

  • SHA512

    8cd74f0d43dbc8485d305c8832f5eae600dd9821bd882c0f4d1cae9ac846ca1aae00ff4c6f6c1fcdb46ee24aa27298127ef18fac22bf26acd72bf05bc0fd6ae3

  • SSDEEP

    49152:zCAJ5oJmPgRImucO6xbBwzhPWlsOOEeRPmD7NnqnM4RSPZcChh:zlLomg+mzxCUsZHpUNqn1gcChh

Score
7/10
upx

Malware Config

Targets

    • Target

      三国小镇桌面版 ——小伟.exe

    • Size

      358KB

    • MD5

      a214fd94534a34dce592d8bc12009b4f

    • SHA1

      891e94480443c63a85dd118249413c5f0f34d0a4

    • SHA256

      b40c987d1f90d2b092bb45863b3ddec5f63c50e710e538dba5204205ca4c34c7

    • SHA512

      eb79b1090bec4ef8e383ac4d0051a8f2c6b623312060e9c654d254b76b2a93e8c8447fea383f0d8fd04dfb5d0aadc1abdcb1a73dd33ffbd07b0e6910e8762d69

    • SSDEEP

      6144:w/wViiMJ1f2FFk4uVmSqm5iPveyvTXw3l/c+luVSheMutSj0N+o11N1NLAoloSQN:vVQJ1uFFkXmSyey7Ylk+peMzk+mLAmoz

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      下载软件_免费下载单机游戏_手机游戏下载大全_psp游戏_下载快播.url

    • Size

      202B

    • MD5

      d46247b0cca7f7cac0c957a9f40cf2c4

    • SHA1

      148f3db68df5fd2ceee6efa904f60f58db5ab30f

    • SHA256

      032f13fb153931b57cfb6730d4e94bda87c30bc3145072f99ba6f721d474adb0

    • SHA512

      b473f4271261f0fca1d38ad769584555a8e78cfd3b1ce9bfa4bfde059acc8a5bcad9d699fd5b29724b4c8aa4d55980a1b7f856ee730137a33411c2a9c7a6083d

    Score
    1/10
    behavioral3behavioral4

    • Target

      使用说明.doc

    • Size

      121KB

    • MD5

      eddd0f6a2c93c9c11c9d2e7091d634ed

    • SHA1

      c18fae89834216ec7a98351395e1a6d26bcd2edc

    • SHA256

      01ca8bbd330327806abc3e9e0ba21b58c6e4a650ad8a9ff34c028c9e50ea2581

    • SHA512

      90a81be0faf0764296102eb220fcb245e2596b002937bee4daceb8771062dfb301588d02db30dd2570303b68d2c18633a28e2d5fa290da99c24c06b0ab2fae8e

    • SSDEEP

      3072:jVocmBkPvlbQpwinrn36+Bn6+BoImvKM:BnmO3lbQrbK+0+SIQKM

    Score
    4/10
    behavioral5behavioral6

    • Target

      创世冰魂桌面版——小伟.exe

    • Size

      357KB

    • MD5

      fe9f3f4a141ad244cf60d523f7b22b8d

    • SHA1

      815b35aa1c5a61cdfede59f679e499f6690e9520

    • SHA256

      0fe18f26af8d8a9271fdc4be0d50e9f84159f40cf4634955b71c5006ca2ed878

    • SHA512

      a4b09e3de249557754592f01f6b8bb90284e8419e8516bcbc4c4313cc468221ff10f1988208c8be7c8a6d5fa4696b7ae44dec4c7cff3c7f18754a2b1a235e53e

    • SSDEEP

      6144:PRWoHD6yQcSEtfAryOAYHrD+3FfBoRj+6lDtVZUKyO3Hrs8L8oSLnN:pFGkSfryKHHOZoRi69DGKl3Ls8L8oSp

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral7behavioral8

    • Target

      功夫派桌面版——小伟.exe

    • Size

      358KB

    • MD5

      0bcb6b5f47285225b638170636aa5ca8

    • SHA1

      7a9d9cd4bd64f8e5576903732f14a3533778e1cf

    • SHA256

      fb24d7c2ae4bbd47584d345d37f76e11b5fa2271a6226369c80488ab1047f2de

    • SHA512

      0871010e52d0a1c00214144986e83a264f44ff07726b70d73e12e4e173244cecf585ab62f462104aa2f6e9ecab026e8581e29b6ec8c9e190b92ffd0e662a548e

    • SSDEEP

      6144:hMfFx7YVTUfHGI75q/dO5omG5hctbMzldy89/cCOTwr8AKwpigJFUSoSwN:+vQTUfmKcl56Mzlv9/e8BdoSoSO

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10behavioral9

    • Target

      多功能修改器综合版v1.1——小伟.exe

    • Size

      505KB

    • MD5

      024ea367fafb50fde5427dbeaa9ec9a4

    • SHA1

      923623854ac441e0a95062eb8367347c356e7d7a

    • SHA256

      2d2cc4c7f3e544b4644bd737248f4e99b254e7ba23fb036cde328bbdd8e701b6

    • SHA512

      e1f2cc28f7ce6e616f2759c81527484be6dd8e9fbfdca9699f336639a0a222e9a2ee55b5400bbf46088a3e44c1c17d34a9a6b7044a8b1dc4e2868823441a88e7

    • SSDEEP

      12288:EuZAol+fhSzXW6dfAVJ9/O2nWGNOQ0sDJZMSuDoSF:LZAoUJSzXdOVJ82TNaKO1

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral11behavioral12

    • Target

      封神太子2桌面版 ——小伟.exe

    • Size

      358KB

    • MD5

      c328d0d8b9e20c6d0378360b54c9b546

    • SHA1

      a012abbbc0a6622c6ef5ede85b7fb4903db2d030

    • SHA256

      5bb9b375123c04b7a717e010db67ab403b9ead3d1d268c9e71b9af892cc75ffe

    • SHA512

      24304eaf2d06bd69e25c7ea0d83347585523d9bfa24478f6027353578fe6328f57b19bde73693d53b1cc824cfd34810cada53275b94280615fb1696eb6cbe78c

    • SSDEEP

      6144:RgN5qxwDk2vxU/nNnlilhgkFxRzYVWVh6OGCknP/8q4BuGor3AfaOQtqqbaffoSP:UaSv6NnlmyarY43BGC638qWtoLTq4anV

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral13behavioral14

    • Target

      彩虹王国桌面版 ——小伟.exe

    • Size

      358KB

    • MD5

      856670c823bcef2e6cae13cb47cee035

    • SHA1

      b36b1c1b31d07afefb8a28da9671c6a0c9106a0a

    • SHA256

      3328c5491abd4e2feba601b0a6a32855598e0faa5fb342ed5222080eb294ca9e

    • SHA512

      780edb58bfcc75321cbafef4146b3e6e86972ee4c0e9cd678dbb3c4441b4729546a4bd0ba1a618d1df74e20646abb1809fc6f3baa09f8d60141a4d833fe1c6e2

    • SSDEEP

      6144:a6CX8UmLbJJ7dR2gk2dxqN3NSMZ+7TZ0mFb9poxxFv7X5LaukwDPAoSFN:bCMUOH7d5Ldx8PZ+XpN9pWxFvdOuR4oi

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral15behavioral16

    • Target

      造梦西游3桌面版——小伟.exe

    • Size

      358KB

    • MD5

      1b2d39ae3b411043549618f102057c9b

    • SHA1

      c6443564205b787452524c1c161f04250ecfc6db

    • SHA256

      dbf1d50e3e412895a05f1017e2b1c44434604274d79ced8671150785e205bb0c

    • SHA512

      c029bd925c0721610c41998381132c515cd32081527b13362667ac02d2b404fbe62e7bd63ebe3f000b81b0cfddc6212a05a5cd9e6f90a60c47898999a24e5835

    • SSDEEP

      6144:3gN5qxwDk2vxU/nNnlilhgkFxRzYVWVh6OGKbsnhAkcD8+1Rn8awfFX0FoSAN:GaSv6NnlmyarY43BG6QIPR8v6oSe

    Score
    7/10
    upx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral17behavioral18

MITRE ATT&CK Enterprise v15

Tasks