43920a20626a75e1da4f04d7cfb399480555200543a1205615cd18e37ea188d1

Sharing

Copy URL

Twitter E-mail

General

Target

39776124a9cb5de4e1b4d54f184581fb_JaffaCakes118
Size

6.3MB
Sample

240711-rj4nxsscka
MD5

39776124a9cb5de4e1b4d54f184581fb
SHA1

0bb6cd007cffdba359aa64b0b70bb298ccd616aa
SHA256

43920a20626a75e1da4f04d7cfb399480555200543a1205615cd18e37ea188d1
SHA512

cff7101d414d10365e93cf89cb2e8bad770d9385839caffa0f6301ee2e380c78566f5029fb17d46b2d90a675fb01c147a533de61de30bdcbf8cb27d810f7fd58
SSDEEP

196608:CpxyDEJ3mxh5FF9PwtPm/2clDxEhVoL69aoUneu2:Gyomf5FXPOPm7x+o6aomeD

Score

3^/10

Malware Config

Targets

- Target
  
  QQLive/@绿化工具.exe
- Size
  
  160KB
- MD5
  
  ab174b271fb483ee1fc91204e0729ab9
- SHA1
  
  9e40ddf37d7f62853a3731ad8e9d2491c4dfa928
- SHA256
  
  4d50a5e57d62e952fa58d27c6bc2afecdcf30453c2c4c08ca3c0fe18aa107950
- SHA512
  
  84bf3178935aa7a756d2084a190325f461f8b39efab55cfe157b81ced38d209c16b7c2b3730ef4c66d40e64153dbb65299d3328b78984ffcfa134e2baed9b498
- SSDEEP
  
  3072:xdRY5hG2QC1J/JJw434OCt4iCSIAql7m3N1KLPpUVaXKgMfKwwo4vvj:x3Y5RFoIACENSPpgaSwJL
Score

3^/10
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/ButtonEvent.dll
- Size
  
  4KB
- MD5
  
  fad9d09fc0267e8513b8628e767b2604
- SHA1
  
  bea76a7621c07b30ed90bedef4d608a5b9e15300
- SHA256
  
  5d913c6be9c9e13801acc5d78b11d9f3cd42c1b3b3cad8272eb6e1bfb06730c2
- SHA512
  
  b39c5ea8aea0640f5a32a1fc03e8c8382a621c168980b3bc5e2897932878003b2b8ef75b3ad68149c35420d652143e2ef763b6a47d84ec73621017f0273e2805
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  107737e3282fefd85684f2fa3df6d1c3
- SHA1
  
  3befbcae116a644ae28cebdc1d7dfe6be5c8ca5f
- SHA256
  
  21042be362d4073053bffcc90511b3ecf77902243525b56bb159581b5ece43a0
- SHA512
  
  439ac2f3066902e08d63dc3061f55063089857e765feb29fe47ba5819a9bebdff3fe2fe55fc8bfcfddb729d340f006ee95b5aa4422d712f9dcc07cc02ec410b4
- SSDEEP
  
  192:FTmFxiXTQdQbg9FkGuz9lBDpO5DwbgUojcA96lK72dwF7dBG0N1:FTmriEdYQFkGUlI6vojj6l+BGE
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  4KB
- MD5
  
  99f345cf51b6c3c317d20a81acb11012
- SHA1
  
  b3d0355f527c536ea14a8ff51741c8739d66f727
- SHA256
  
  c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
- SHA512
  
  937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  0ae9c427fe7bbbbf1368c1c6d3933ae7
- SHA1
  
  c8e5131613302531c88512dada29a18886259268
- SHA256
  
  49437f4b9fd38007f3b2735f0a8a12830b995305c75118b440202980183d5c6a
- SHA512
  
  59b76b00f2b0d6242dc5bc3cb36d3ff78867445f502e34cea890c6f493c2adf9b97cec539963204ddd1c641e1a77139f46fc33dec4dc636f4b06d2edffffec6d
- SSDEEP
  
  96:vCCshwlpqUsYghN/9uvZ7CLWNCSiiVTQYBGVXRvuBDlSriklbuba1iLc+cEyzo7e:BzqUuh/uLCXIkYBGV9uVlSblbubbwtl
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/linker.dll
- Size
  
  6KB
- MD5
  
  8450b29ee8d592c208ba1aaf6ee50267
- SHA1
  
  75096da057bc85cef63bb0eec168652ea75cf618
- SHA256
  
  53aa57e582dc56421c1191a0a9efac9c36960b903b7d825f3b9682605ec2b612
- SHA512
  
  d23a3057053a1f36f5eb212ae0b09b9b0b41e50b8a6a20bbc46c12c51199ad0bca741bcce17534488158e8f2b9470dbdac2aa059688b7588a05778c40d461039
- SSDEEP
  
  48:q/XgJspkvsIWyuS3fyVLkmqbIWXGuDNcGo+FLtLFSfrPIk2vIhll:4gJsFIWjS3qVomqIixo+9tLFUr4vMl
Score

3^/10
behavioral11 behavioral12
- Target
  
  QQLive/ADManage.dll
- Size
  
  377KB
- MD5
  
  e160db02655e6a8ce714448afe9ed46a
- SHA1
  
  46762effdff70a5d346720d0acd69b0b59360641
- SHA256
  
  23a6b70d2a7c43a37f45e4269db231af18dc69f7a025bbf28f5971b9586c5d8a
- SHA512
  
  e9feddbe6a44f64ff34f9cc15619b1978337862dedb160f2feea299d50210879d7c1d4cd9e8a0515462b94e9ddc7935f505377572c01dde0c55920aec92c0531
- SSDEEP
  
  6144:Y4ojoZ9mOnICMkUUjeLp3CBw+ebJTBqvkvNOAbnNih:/oo9mOnITUjeJCBw+ebJTsv+ih
Score

1^/10
behavioral13 behavioral14
- Target
  
  QQLive/ChannelMgr.dll
- Size
  
  293KB
- MD5
  
  02d28175f39616c27b315c0b6c49d620
- SHA1
  
  fdb36897212999223fbcdc28300a82024622df85
- SHA256
  
  4c750001614ad7859aa7ce610adea043bbf88db831d8746b70bd28e1ee6f4ed8
- SHA512
  
  80cbbe692323da173f2637b92e9db396846c587e1e1e9c24462dc9b21b7727fa19042a4997f607753206c275c6e6445c48c12081e4b0d88943cc340075c263cf
- SSDEEP
  
  3072:bMYVT7anzs/x8qLfXBTeZ2D8iOkwFeOS6XzACIPZTw3bG1lTjd24YPcc2S+QOAT/:QYVHaOLfAihTw3chJG+QOAyp2Tt
Score

1^/10
behavioral15 behavioral16
- Target
  
  QQLive/Common.dll
- Size
  
  1.5MB
- MD5
  
  7587cf65eba4e9eba2bc1d2d08d56735
- SHA1
  
  93a4e0cc9e88e9040939b7a78a68ad946e573d00
- SHA256
  
  66f76c269b539ea8fb41f671670028632d9b5e06b46556cf0e0624e84dc65685
- SHA512
  
  384a3b08e2f3c7e660d49b200f58f991f09bddce15acfc52a060630c1539ddcc909133b9e516407dff7e32c01df85d4f0bd8fef12dd62b2a91a5a94f2962a410
- SSDEEP
  
  24576:kEmbsj7hamVW9Tj64/CG56VDRG/jvbXKUsTx8CujsbX7oh:kEUy7hamVW9JCG565ULuUsTCCb7oh
Score

1^/10
behavioral17 behavioral18
- Target
  
  QQLive/Core.dll
- Size
  
  89KB
- MD5
  
  5d6e24a12a8f1534f15821a253134e16
- SHA1
  
  b2052749e73d10cabf7492054b53e9036a822448
- SHA256
  
  d3adf30058fda7b24934e38cc21f5a5d000aace888f16981f54f8d8392042e5b
- SHA512
  
  72471c9dc627abb7702d1fe061f6991c6e4cd7daa59e3c44115374f704df0a919971f2755f28ab20cdb3e767f5f600eb314b2675f939ce6d127d18c07aea62f4
- SSDEEP
  
  1536:izPEXnCYV1kBB70NFF/SBAxOgs7JQ7Nu1kcJnMva7CI2:iz8V1VPF/WAxOgsmGkKMCf2
Score

1^/10
behavioral19 behavioral20
- Target
  
  QQLive/Encrypt.dll
- Size
  
  14KB
- MD5
  
  1bf231fd332bd4bb456491ca2a369163
- SHA1
  
  238b9dc784000478feff017e85ca9d330ee6fa77
- SHA256
  
  ecb41f5a7c6ed3a429c9b81ddb78921040009062d6d555556d46f7e951cd0326
- SHA512
  
  cd56791b5ec7207b518d33be026417f611774a693314c1179599f80926a2c388bb3a7e65378175545875b49280f1056d21f741a42e9415d729bca2ceda227262
- SSDEEP
  
  192:4lkOCL9DohXVW3a08cQ2ccIcyLMQ03X7H6CkqhIMyowJL/8Qpkqs1Iu55+ebCfNe:8CL9DmVW33yFTMdrH67MYJLu1vPbCzdG
Score

3^/10
behavioral21 behavioral22
- Target
  
  QQLive/ExceptCatch.dll
- Size
  
  93KB
- MD5
  
  4c5a7c55612f47ea7116dab10a2f6013
- SHA1
  
  efe7d6a13f1173d7022a1b68e5f7a306a719414f
- SHA256
  
  c4ec6348b345494097f3d84379a1916d0fa22c07943c238875e2d45e215935b1
- SHA512
  
  9c8767bd89625f47b17b662bf9baa7deb1902defca86aed5a6fa98c67590753bc8598424b9e7876cd7a10d86f5f533266634e6a8b8fc05b603fafe9f720f62fd
- SSDEEP
  
  1536:Hq0wPY0p2L1QwllwV122XfsXcvGlGJ9sreOX5OgaIJYfMXIRya7CYY:HqJPY0p2iwlCZsXgGisrDOgaIJTXkbS
Score

3^/10
behavioral23 behavioral24
- Target
  
  QQLive/FMDecoder.dll
- Size
  
  97KB
- MD5
  
  36fc0eca6a0311f356085e5be8112b47
- SHA1
  
  b67321cb1d703cfcc3fb29eaca0a97fdc233276f
- SHA256
  
  5f1eabb7fe1a4fe7e9438fba080718b66ae23fde3d0376655c2b94396a5c21cb
- SHA512
  
  71a5608cb06f213e6990aeaa716b67c737348aeee83e06104cc6f47525eb9f91ebd0b202a3f2a9eb45796682f37a9643113c6c293e7d24727200f70deb3ff468
- SSDEEP
  
  1536:ChRp1J89Vzx4Hcfe6Yr/IEAdre4rArjd/yL4/fOANFE3lha7C3:O8Hzx4HcW69fdreQEHOANFEam
Score

3^/10
behavioral25 behavioral26
- Target
  
  QQLive/FileVersion.dll
- Size
  
  97KB
- MD5
  
  42fa2b279bfdfdd1f8f1cd6260a44b29
- SHA1
  
  949274c4c79c5aaba16739b51131d2db2bfdba73
- SHA256
  
  d2bfc3e6c3e1a9d2a4bf037c9a667dee4f7dffdebeaec17adc925f5e0ae326de
- SHA512
  
  ad989f5c8ff37e215ba35193cb4ee7cc56235291cfade6c4c9e2b77418a410016f97e1c8f55c4e07f3fbf84f99cbb8979da5dc2c99c31824db75525d420f662d
- SSDEEP
  
  3072:fRdypzkwqFgAyNL4/LM6S1OA5I+5hnwItXuxE:f+zkTRGL1OAz5hnwGEE
Score

1^/10
behavioral27 behavioral28
- Target
  
  QQLive/GF.dll
- Size
  
  2.0MB
- MD5
  
  b3e9b573e03c757e1a76f1550d3d9354
- SHA1
  
  a5df1ef3ff958739897774e8689329502c100f39
- SHA256
  
  f69ee71c6fa446355a38fad6b679d47a23a3cc1965dfec840dd030dfefc9fd9d
- SHA512
  
  dd1d8066c4d25fca9d81dbd80bc6b725b38250c2c21ebd6e07050af9c06cd0d47009d7a6ef491b033bf986d7cc011578b7f89269e9ba5b54484f9ed83042c3ec
- SSDEEP
  
  49152:S7x/NttSAxPSxFNUgVowkE8yY7TjYAa/oIy:SjSMoovE8ywTjaU
Score

1^/10
behavioral29 behavioral30
- Target
  
  QQLive/HallMain.dll
- Size
  
  117KB
- MD5
  
  d6d661b39d31e99cd1f8d5235dca408a
- SHA1
  
  5730779cb2d8a6f0589df545a03761a09ffe57af
- SHA256
  
  a6313113bfd7b32a4ac01ff74c74aac93112c08b39e75d7b7fbf02d9f258eac3
- SHA512
  
  c26046f0380b2a78180ff227be24337893284688f3140feb035d66f9339049eb79dc2d81d9789eca64d4bcac169643d5263cc75266ed5651dc7a41c0f31cd83a
- SSDEEP
  
  3072:5dnv5Eg+C3EXjthzE8OgdhBZLn88zyIJoTQj+:z3EXjfPOg88zCTQj+
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32