Overview

overview

8

Static

static

5

HorionInjector.exe

windows7-x64

1

HorionInjector.exe

windows10-2004-x64

8

MCenters 5.0.exe

windows7-x64

1

MCenters 5.0.exe

windows10-2004-x64

1

自動點擊.exe

windows7-x64

3

自動點擊.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tool.rar

  • Size

    724KB

  • Sample

    240716-r2cyxszgnf

  • MD5

    9f147ed005ef5cf0718566e09404a2ad

  • SHA1

    f2b0a4a1f7aa10dd7d90403aab770645e687d79a

  • SHA256

    fd08912e439005a4b3649de00bd8622058853dc814d8ed7e10b0622bb835969a

  • SHA512

    c0a450a397620c742310753daf9f7e68db509ff04dc2fb90ba67b85bcce70ac92ac566131d7ce34fc22e77e28ea0f27aacee6914f82caaeb1dcb54e1b29ed7e7

  • SSDEEP

    12288:OnSFAiFaNiSE+EYK2TQzuFlldh8HBcsJbtun2ZIvseWW1CEXyAOmOeh:OS2ioNi6lTQzu5dh8e8bNZIked1LOw

Score
8/10

Malware Config

Targets

    • Target

      HorionInjector.exe

    • Size

      147KB

    • MD5

      6b5b6e625de774e5c285712b7c4a0da7

    • SHA1

      317099aef530afbe3a0c5d6a2743d51e04805267

    • SHA256

      2d79af8e1ff3465703e1dc73d3ef2182fd269ea2609c8afabdf1b80693405c1d

    • SHA512

      104609adf666588af4e152ec7891cedafd89ad8d427063d03fb42a228babefc59428b0c8b1430cb3fc319a5014d2ee1083ff2b74fa585cab2d86cdad346e8b08

    • SSDEEP

      3072:ckgHqUGSCoEslON/q178+oO3BAE4T/DvueX:cNHqUGSCPBh+7VST/Ke

    Score
    8/10

    • Downloads MZ/PE file

    behavioral1behavioral2

    • Target

      MCenters 5.0.exe

    • Size

      249KB

    • MD5

      4ca328d332c4aa17ca7032dad1b45b00

    • SHA1

      f0e94f2fb686fc4670d61b3f6631541d266a3918

    • SHA256

      485a89a78b8af031106f2b6052e2447b2fb7a6300129dbca4ff554adb9b24c1d

    • SHA512

      fc21c3f80ff5eec11c335d67d519fdf19339bafd79fcd0b00cf30a8c77a3e51223c99fd99389388bd5b9531815db0a2d5f7ad22a7c58fd27d1509289ba82ed4d

    • SSDEEP

      3072:uUhELNdJqNOXJfBkWRWdQ831x6wpl3ny2zXeV2nU0ssiyV+WPrfcVblcZSuQ:uZL7kwXp6jyADnUUiScZOZSu

    Score
    1/10
    behavioral3behavioral4

    • Target

      自動點擊.exe

    • Size

      854KB

    • MD5

      c500a7318204cc39a9e4b544fbf4f4ff

    • SHA1

      f35013967cb5ff638491edb409eee863c5f8ada0

    • SHA256

      45bd2a14ac56f7a71d9c8b358cc0769972b5477edd1744e1f2085961558040a8

    • SHA512

      f57d2c6ad185bff1824ddfcdd1f8fea9da6a832c6ef421cbd8645b7ac78a9d5b4d0d321ebbf6559729d470c05ef579020bb2411fa361e9b0acf51e640e4e1580

    • SSDEEP

      12288:maWzgMg7v3qnCiWErQohh0F49CJ8lnybQg9BFg9UmTRHlvh:haHMv6CGrjBnybQg+mmhJh

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks