953d51a70801fe3bfd5391d9436a9d378ecf9e812ad4e6dbb057fce40c99a8cc

Sharing

Copy URL

Twitter E-mail

General

Target

5ccd0e173edf7282419018563ab2e3f0_JaffaCakes118
Size

1.7MB
Sample

240719-vaw49stgjd
MD5

5ccd0e173edf7282419018563ab2e3f0
SHA1

903524be0c3d5917165ccac7c0a84ca2db231cd5
SHA256

953d51a70801fe3bfd5391d9436a9d378ecf9e812ad4e6dbb057fce40c99a8cc
SHA512

857b0f7d500af8a55cafb910e3d49dccca57941bf643da3d495b250ca38ce90b2fa899858a30d42893b3781b7fc156bf23a8d61b6ee2fa46d1181d1af3e62c41
SSDEEP

49152:kB5fuSVoJzoKu7PqvvW3eGifZoqgqw0LJsxxYT:wfuMKu7Cvbph5q0T

Score

3^/10

Malware Config

Targets

- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/FetionSDK.dll
- Size
  
  2.0MB
- MD5
  
  27ff6bff5a1bc658b45d6cb854005850
- SHA1
  
  7b64188fcb8162c0eb220bee9cab701783f0ce70
- SHA256
  
  1169c0f8075044e93e8b36e06a9472420f2711d664e41ac3c9c007c889448959
- SHA512
  
  e254a25b72da0357c586c3d87c0486abad1a1742c53bac41b6ca5a6759dc2e7f4a2a5ad28be6597d4a728025a7a565387c21a193cd1181a3b22c798c405505bd
- SSDEEP
  
  24576:HypDis2oPwggIIPl1ikNCUGKlNj1waHB67wAi:SpDT2QwgXINskNCUJAw
Score

1^/10
behavioral1 behavioral2
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Interop.QuartzTypeLib.dll
- Size
  
  18KB
- MD5
  
  46c499b742a7dcd3408ba9f170bacc0e
- SHA1
  
  94807d329578b11839993f531878580671c89b8f
- SHA256
  
  1e9fa322e731425d9dacced5737eec84f69c7b4ac62ac2f76d6a8cfa277c5be6
- SHA512
  
  42cbd55f7c45e9e3cd1326f3234c4530ac7a207a3c9221988f490e2d85e09a8b3b6ed376276cd50428fcd49c4916390acb63ab57008120c5859ccad6f502047c
- SSDEEP
  
  384:TCO3NQyGyGyyGy1uCl7Nxfll4u4pPWpEwQqGSPY:TC4GymGylx7l++pp/Y
Score

1^/10
behavioral3 behavioral4
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Interop.SSOAxCtrlForPTLoginLib.dll
- Size
  
  24KB
- MD5
  
  fb42290f2dffc5dcd6d167571ed8dd42
- SHA1
  
  735f722f7f1489213d36f2498af165dff0e04e0c
- SHA256
  
  aee6ea79e7730f74aab89620e2d6e585c5f538e7a5908af2f6be90ce0857115a
- SHA512
  
  0099f49974b2874629183cf998cd1987288e1da2e510b2e629c195f81fdec786ee494098496be1403c5d22bcdc532ef67687618708241884938b3e5ed527b2d2
- SSDEEP
  
  384:G6k/FkV+wnV8OT5ieGtuFhAt3/cB6VJEC9j:a/FkkwVvTc3wKthUY
Score

1^/10
behavioral5 behavioral6
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Newtonsoft.Json.Net20.dll
- Size
  
  314KB
- MD5
  
  25aa4eb905be82c0791018b432ad95f2
- SHA1
  
  2041d87006911e71e44b9028974269f116c934a6
- SHA256
  
  56aa963e517536714137dc6b82682d64d1bfb8d6e03fcc2d8d253af38ebeca08
- SHA512
  
  357ba0cdaf373fd52de29328a8efa46741d85cd1e821002481888fdd77c1299debbc3d491fa532789122551f45d97d7c1da59931d510f91096ca50e3e8ad21de
- SSDEEP
  
  6144:CSCnuTJKTiFAatTFmoMaxrgWPUK/HE/J3+ED1YdQy6g:CSCnUAkTMoBxkWPv2F0D6g
Score

1^/10
behavioral7 behavioral8
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/WININET.DLL
- Size
  
  372KB
- MD5
  
  66f1ca970bc5133fa2308a25944474c4
- SHA1
  
  f8a5a04ae9de4def18c2784bc3d5855bcded3aff
- SHA256
  
  66c9e86a8915605e86d39240e6b532e2889fdbf44cdf4d0aa28e9c670965403a
- SHA512
  
  217f031de046b5d659e3decbcde0d0c85c9446c3a98cc70559f422aded7e347fbdfcc6ce778fb8cb98de1a61fc7d9176b19e8b2c20116d105cd3cf00b3fc2682
- SSDEEP
  
  6144:YQPj2+ieH98yjQKYSe1mN/eEOlwz6OoCTh82pBu:NyuH988eEGc6OouRz
Score

1^/10
behavioral10 behavioral9
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/log4net.dll
- Size
  
  264KB
- MD5
  
  b89cb7f3f1a1e2807e708f5435deb13d
- SHA1
  
  82cde65a7514c0e465ee0d505be56c56639ff0b1
- SHA256
  
  27d26aab42f7cab35bf51d0536c67ed553fc97b670226b868805e7c6927e5c87
- SHA512
  
  0bd0da0cc01eb62ba1dea21666bccf76db6c7dcb2ddfa608bea61da0ffa230a60a66e91449b2664de006066eb63d26daafb3bf7b932c8a22ccd347dbd707e68b
- SSDEEP
  
  3072:AWk0y3P87PIQks0nbypIWFTKLWfjQxo5yAlfc5M44c/qR0PM7TRNO9pAlWj8Oqd/:LZy3KPfrCaw0ful4GeDOGUf
Score

1^/10
behavioral11 behavioral12
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/skincrafter.net-vs2005.dll
- Size
  
  928KB
- MD5
  
  706bf7da38fc9e7054bfc6f215575da6
- SHA1
  
  47d040757e2335587f1309b0fdeb73eb9330d70e
- SHA256
  
  ed9169ec4be0db8203b81a67b0d7433291396a96f53ca0d8839aeb84f1d51872
- SHA512
  
  41e3951cf4ef4376ab7f24a101743b87a51a3f3e9678ed89bb917e63113e8a1cfd8dcea76fe504a6f7698eab9ab06e9cab045a17d07aeabd1b9f4920dce397e2
- SSDEEP
  
  24576:lKjaZau5QT3TZwLy0xRXfe6+EYP2Lbxie:lKO0BTjG
Score

1^/10
behavioral13 behavioral14
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/保姆小黑 V2.32-QQ摩天大楼辅助 By Loading.exe
- Size
  
  823KB
- MD5
  
  7864332afd716e90dccd6bc4bafd1019
- SHA1
  
  90c79933489825562fb6b848391a3ef1d7aca98f
- SHA256
  
  489a0b38b51824d771474b76b7e697ebf52aa93707ad40935a32a3a6d6740dfd
- SHA512
  
  3f7e27b51708cfec6651831b2405a7e48667106ecd6eac72b7f0c73705f608eb422f9b4c1c66e0a3480830208e0cf7597e791017af2e2568ebb1c1230a72777d
- SSDEEP
  
  12288:cF76NG9lWlWl8lWlKlJlBSQhZsV1SQhZsVhxRx4rKc0SQh5sV:cF76M5A5joJ/
Score

3^/10
behavioral15 behavioral16
- Target
  
  保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/运行不了点击这个文件.exe
- Size
  
  321KB
- MD5
  
  267ec13451ac39cbf3a3769bfa90aacd
- SHA1
  
  28445007c2bca799293c42c34121d27d1e8314d1
- SHA256
  
  59bcc8f593c1429246e7c7267c33b28e406f61d1c3d216785167fd8cc6329f6e
- SHA512
  
  be0c8962a55869e4b60969d7a34577fb6fa715311dfe59426c69decea7fcbfe15cbd1bdee365db07c4647562864f6548bf635566e9fd732ea8f0267aad3e59b6
- SSDEEP
  
  6144:V0FQlfjpUlCubGJpLT7iHSw2KQVOEhDhLTO8J6X96agtaT:kCiW34QIEhDhO8J49Q0T
Score

1^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18