Overview

overview

7

Static

static

7

手机视�...06.exe

windows7-x64

7

手机视�...06.exe

windows10-2004-x64

7

$0/DirectS...ce.dll

windows7-x64

3

$0/DirectS...ce.dll

windows10-2004-x64

3

$0/TCPDeliver.dll

windows7-x64

3

$0/TCPDeliver.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$SYSDIR/avisynth.dll

windows7-x64

7

$SYSDIR/avisynth.dll

windows10-2004-x64

7

$SYSDIR/devil.dll

windows7-x64

3

$SYSDIR/devil.dll

windows10-2004-x64

3

$SYSDIR/msvcp60.dll

windows7-x64

3

$SYSDIR/msvcp60.dll

windows10-2004-x64

3

$SYSDIR/msvcr71.dll

windows7-x64

3

$SYSDIR/msvcr71.dll

windows10-2004-x64

3

MobileVideoCfg.exe

windows7-x64

1

MobileVideoCfg.exe

windows10-2004-x64

1

SimpleMovi...rt.exe

windows7-x64

1

SimpleMovi...rt.exe

windows10-2004-x64

1

Uninstall.exe

windows7-x64

7

Uninstall.exe

windows10-2004-x64

7

brdsframe.dll

windows7-x64

3

brdsframe.dll

windows10-2004-x64

3

btcodecs.dll

windows7-x64

1

btcodecs.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5fad2fbd6133b3fe9ec6de69158ae851_JaffaCakes118

  • Size

    4.1MB

  • Sample

    240720-jydr2stcnj

  • MD5

    5fad2fbd6133b3fe9ec6de69158ae851

  • SHA1

    604b7863ada15e7d746207edd15d88853befffcb

  • SHA256

    cbe8bec689fc989f522ce95716bc7eacc85cfba7117b348c257130fab6fef317

  • SHA512

    6817bd94f64efabaa75efff109a49ccffe94edd189138ccde35751fd3f9ab2852e875ea8bcce5d6c16e321772dd52255cc6dfb8d51f7dcba959178bad8aac013

  • SSDEEP

    98304:ra9wsTSicRf02flbic+jhcQ5yPrKcXaShY23w5E+Jguq:5smrBL+jhN50rKcha6b

Score
7/10
upx

Malware Config

Targets

    • Target

      手机视频转换软件_060306.exe

    • Size

      4.1MB

    • MD5

      ff7988c7604f1c0ce16834091a34d167

    • SHA1

      27060f06f042925289cd340080712c5aba6de2f2

    • SHA256

      6a793c5786e33aa41dc1978bccba34f63c9a448d51db5b3bb97f6a68bffe64f3

    • SHA512

      8c073751be36a67e44e5ec16b7ba454a78c35627e10a81500329d6ced6d22545648f57debbf69cf9acae965e4123a0015f4b8c6c39fb66e54f3bcdf840768a07

    • SSDEEP

      98304:POysA4nmpkT3bCOAJsVmi8WmngFQ07qkEIn+s+hGaOWcSOoywvbBjLp5x0qR2iAB:Ts72O7mi8Xn0H7qkzPaO+jFDB2tB

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      $0/DirectShowSource.dll

    • Size

      84KB

    • MD5

      2db042ad1a2a38ba664209cc9746b293

    • SHA1

      7fe594b6b23005e846e88e0486050a4ecfec75ba

    • SHA256

      ab846737baf2a9fb91b99517325b384f238c73bf3506725076f21898f049598d

    • SHA512

      1c97350505599c03d89e529c32a028414cd57c58238ac5ae8e3cab14b9888218ed925b6e07e51700fd7cf5eceb9f05b390101826c3a3dd6a469ae8e94380a0fc

    • SSDEEP

      1536:VnOqSgJrWuzYIIEuB8kH5HTBkpRoR632lj9HM4:VnOqSEreIIEO8kZaR52lj9s

    Score
    3/10
    behavioral3behavioral4

    • Target

      $0/TCPDeliver.dll

    • Size

      340KB

    • MD5

      64b49b64bc5bc2fd964ca53ff85c7fb3

    • SHA1

      f18e2f452d8e94c48fe64ffbc89cb93320217a98

    • SHA256

      f8a0e4f71d1955fcadaa534294a5ea168340814720b53eecb76968727fdb1fbb

    • SHA512

      419367f9b0a258c4f7488823a5753984b4a9f0d915c761026d8e495843b25d4d0d05f8e05e1e8d2283028ec5bb778a15aefebbc13f76a6dc35e75078a32f4371

    • SSDEEP

      6144:qEANM8T3bSLZIi5W1S1i9TB6K6LB2/gwT:qENGbSLZI0v1i9Tcw

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      12KB

    • MD5

      83304a78d2b6ea45ea8404f4cd78721f

    • SHA1

      d5c5d19653c751c08579dd094bcc9fef1841af00

    • SHA256

      92344973083c0a5d8f5732814c1315124e8e0a2f1ed912583a081f95f7549414

    • SHA512

      94076cc935927925641d668c19b389d007ff7e8623f2afe706fc73d1ecb97210577a828a727404b200d9870e14b23d6bd047de9201d629e7443a929c0740c67e

    • SSDEEP

      384:BKlm7i+c3QW6ckPhyDEaLn42bbBBIXwZ:0qi8BcyhEhLpbbTI

    Score
    3/10
    behavioral7behavioral8

    • Target

      $SYSDIR/avisynth.dll

    • Size

      301KB

    • MD5

      fec24e7beedf0d4f44b9832bfae12c2a

    • SHA1

      8621cc1f3eec932f55dc84dd3df7f0ed91cfe0a4

    • SHA256

      2321505dc63367ef14fa66f0d72253a0c506e31c243dcfc34439dd09d26be599

    • SHA512

      7c4b132af6be0ae901b861403b4c0826da353874826fd17e1d97b0977c5a3b80131d0ddd40a1758ae6b1e40c80577998e2ff05379e9887cbe808a429077427eb

    • SSDEEP

      6144:CCQWKr6y+pYLxY1WAgAzxS3SNYFERwqB/XvlVIxv383U0iMdvGYZ2g5dC4IHUoGM:Grd+uFEU3SNiwwqB/vlC83U9MdnzKvGM

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10behavioral9

    • Target

      $SYSDIR/devil.dll

    • Size

      703KB

    • MD5

      d27959321703b70120025a9356e89a7d

    • SHA1

      f1252382feb6a31a384a840e41e623b72bb3d000

    • SHA256

      38aed5589e8da0a3b123e754b0c839818627f4fd178df31b556cbb304caefc28

    • SHA512

      e2ebdd5d4d1d29859d6ac0b6290f3f0441b0dd7b520a17ab0df9a89562aca44fd06811b4e2291ca64b69c878ec50cadcfd71eff75c7bbd79cfe7d3856b83e90b

    • SSDEEP

      12288:WI2QVF9rRtYszwn+nZDNMONWvTY6m7fikJ:WIpF9rRtzwn+nZDNMsXfi

    Score
    3/10
    behavioral11behavioral12

    • Target

      $SYSDIR/msvcp60.dll

    • Size

      392KB

    • MD5

      1f767f0303599dd611d24fce6945d2fb

    • SHA1

      986f221ef049f7663c30297b89d67640b86e7ef5

    • SHA256

      17cd3cf219a6fcee30e00055657fcb2b862d2c1405bb6dacdad6627d8a820519

    • SHA512

      96f7a2fcf0e556daf76181772a6f5830edbbaaf534e3c9bc944e14d0c566a3fe486d457b51d70e8fb2c975051e4b02d803642e1752c10ea293ce0ff265bb0ee7

    • SSDEEP

      6144:SVdKp4Ks0V8UwnIpNolC7R48q3OoxHkCTZDs5ln:Yc4KdV8UTNoMR48q3OoxHkCFG

    Score
    3/10
    behavioral13behavioral14

    • Target

      $SYSDIR/msvcr71.dll

    • Size

      340KB

    • MD5

      86f1895ae8c5e8b17d99ece768a70732

    • SHA1

      d5502a1d00787d68f548ddeebbde1eca5e2b38ca

    • SHA256

      8094af5ee310714caebccaeee7769ffb08048503ba478b879edfef5f1a24fefe

    • SHA512

      3b7ce2b67056b6e005472b73447d2226677a8cadae70428873f7efa5ed11a3b3dbf6b1a42c5b05b1f2b1d8e06ff50dfc6532f043af8452ed87687eefbf1791da

    • SSDEEP

      6144:OcV9z83OtqxnEYmt3NEnvfF+Tbmbw6An8FMciFMNrb3YgxxpbCAOxO2ElvlE:Ooz83OtIEzW+/m/AyF7bCrO/E

    Score
    3/10
    behavioral15behavioral16

    • Target

      MobileVideoCfg.exe

    • Size

      1.2MB

    • MD5

      a22f2ac779b631f102ad14bdc9d910a8

    • SHA1

      b47196e455526270eed422bdc08055013ff08f07

    • SHA256

      456393f3827360d3f57ac0894f837e67537ac1f34a7df7fbd1eafd98dca3183e

    • SHA512

      43bc61222c954239de80ac66b15e0644ce4fb11028142c03abeab60332dbc8adc2bf59054776474889e7b7d50006ac2ee967b7e03c83c416329c073bf66f6df9

    • SSDEEP

      24576:zcBOXwit+t0oxb9dw7YKGAsCKnNAC/OYoxH3ZsB:zoIIi3rxGNAGOpS

    Score
    1/10
    behavioral17behavioral18

    • Target

      SimpleMovieConvert.exe

    • Size

      3.2MB

    • MD5

      89739a025f1a0f0250f1f975a7a2ea36

    • SHA1

      405c5bc6c3927920e59c5102e60cd3474638c7ab

    • SHA256

      00746a64846aa1c8ae2d607c28638c7e7b91961de4eac2ce491cad66077a60cf

    • SHA512

      6062e66ff535657bd57b430a6c6b9ed23b336f5367cad074551fda03f96f82836b71fcae83175a8f661d2ec98a5bc44184290c079b663fa002bd6400227b56f0

    • SSDEEP

      49152:CTU6O+vlMaZ01s4mIk5hDCFWRvmp0M8TTeAEOpS5ai:CTW+vlL0wJhDCFWRvmpa+ATpSY

    Score
    1/10
    behavioral19behavioral20

    • Target

      Uninstall.exe

    • Size

      27KB

    • MD5

      89cd0fd9348ab9cf7e694a02ab4f370e

    • SHA1

      7baeb61bb9ecc3cb61c779311b2ce8996035d1d9

    • SHA256

      794057be260ff057b89ec32ff8e9870c1d9074f5a8f198f6e120718865983d6d

    • SHA512

      0e6266f3575837869f2f9129054a3526b8e355e130ccfdb172d85ada4e64f34151a7b7af5ea77eb802a4796cf74cc7aba9de54ff9b38347df9f14a62b7573625

    • SSDEEP

      768:A1gZNUzd+T6zhvqScJ3rKj1MuHi2eRwj81Tvi1StTGRh:A1gZNpT6zhvEVwMuHxeqId2z

    Score
    7/10
    upx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral21behavioral22

    • Target

      brdsframe.dll

    • Size

      44KB

    • MD5

      f053155451efdb7d032a08fa3642c8af

    • SHA1

      35307e8e607fcbe906672104d0bb375173f7252d

    • SHA256

      0df688b26a7c5849bc4bd7decce0152aff88c7847cd65bf9d9cccfa7c1707750

    • SHA512

      98fe7a97c6c227d4090f19aeef1204b872c853a0bbef7db847b8f1e84332a1fd652478c059654806b350abea9129bdc9905e72bf0e05554a9a9a71578259ae25

    • SSDEEP

      768:Ry68PKbkeOg9fP4rw/l5ufGixm4mFWxVJNdOglMRF1:RypCbkeOg9fAUufGH2VXLlMh

    Score
    3/10
    behavioral23behavioral24

    • Target

      btcodecs.dll

    • Size

      4.4MB

    • MD5

      c6341d55386e2af07aedb35eb01492e0

    • SHA1

      8e1c73ac3a83b7eed29eda69e940be1e26634fd7

    • SHA256

      def24b2c5929bf3967342d6acdbc5c006883f0c15aa822357553e0ae7d772522

    • SHA512

      017e2bc34a1a54beabf610baae0e56852bbdd2b06b28dee9626a2ed5eb1063a896e0be178e55bc6c6e18dabc59e8c4ca2476477958527d716f4634c5b6fe2242

    • SSDEEP

      49152:qoSjiqr7JN7JOEGYZmqGsyU+VblB9GzYBFY3nnqzNGTrhjbF:qNIVqGsyU+VbczYBFYXDh

    Score
    1/10
    behavioral25behavioral26

MITRE ATT&CK Enterprise v15

Tasks