Overview

overview

7

Static

static

7

Easyresume...up.exe

windows7-x64

7

Easyresume...up.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Resume.exe

windows7-x64

3

Resume.exe

windows10-2004-x64

3

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

update.exe

windows7-x64

7

update.exe

windows10-2004-x64

7

Easyresume...��.url

windows7-x64

1

Easyresume...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69203504ea971305805930f867346617_JaffaCakes118

  • Size

    1.4MB

  • Sample

    240723-1zm6js1epm

  • MD5

    69203504ea971305805930f867346617

  • SHA1

    4145432a9aa71ef2abd621610bd8082c5c5aa66f

  • SHA256

    1c58bbe3dde2939b5eb3b8d983abec4ddc8774a21183353fc139a8b2f2b15ceb

  • SHA512

    83070f01df17d4bead24f3bed880a3a9bc8c11b3e278e950d4f2275fa0b600d8fc7814f86ef40d8b141a7c0e1ff7474624b6aad49fa60239145750d83ccce412

  • SSDEEP

    24576:8T+r0XPrSW54Gqtcy7Jnp12J7EDbzKxTnbTnX+FBv5QJuDCBHM7Q9hzXe1H2yDk:8T9Xz953qyy7Jnp1IpTnPWh5IB8QrTGU

Score
7/10
aspackv2discovery

Malware Config

Targets

    • Target

      Easyresume/Easyresume7_setup.exe

    • Size

      1.5MB

    • MD5

      fc19a32c5335f815b7ee3224a066c153

    • SHA1

      a1595c19dce62388d4ab8169bf81af72b86a27b1

    • SHA256

      98c8075699e8c5effa442dca058853be6eb2a23c4523226b7e652c77c18e8dac

    • SHA512

      4a8ff0d4e70fa1bd28e98d4c659dd3b3861c1de5dae2392cb06917b37994c755de3d00a97d92a4b4b7488100a7497e459ab94ba3ac0a23b2df70f0992e7e7fcb

    • SSDEEP

      24576:WapDRx0YVKRxuFkbrh4jxIRx6jN6eVVgtjJkuPhm4ng/aui9X/t4m2QtDw9bJliK:WaxR+DlHRs7vglCu+k9vO5QdYlf9xZ

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      12KB

    • MD5

      83304a78d2b6ea45ea8404f4cd78721f

    • SHA1

      d5c5d19653c751c08579dd094bcc9fef1841af00

    • SHA256

      92344973083c0a5d8f5732814c1315124e8e0a2f1ed912583a081f95f7549414

    • SHA512

      94076cc935927925641d668c19b389d007ff7e8623f2afe706fc73d1ecb97210577a828a727404b200d9870e14b23d6bd047de9201d629e7443a929c0740c67e

    • SSDEEP

      384:BKlm7i+c3QW6ckPhyDEaLn42bbBBIXwZ:0qi8BcyhEhLpbbTI

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      Resume.exe

    • Size

      579KB

    • MD5

      0cac8753434d7d33fc4ca2f35aeda38e

    • SHA1

      4d5ab96c9c49119268527d3055cdbbeb44af223b

    • SHA256

      adf8e605cb6f07a8a3ab75913940f9ae4e8f02094b539f97083c7eb4ff8042e8

    • SHA512

      f714e1b8f18f961afcb7784d4acf7912069f09ec40c5d160a81a1e3f971ee140261491ef7327d3750d03e91803cfe03970eaddbb55b3853974cf8662c096fe4b

    • SSDEEP

      12288:97sY46IbLi8ws+joUc4b4EZx14mcD5LiWY9XfEbqYva+YACzDG0OM/V8e:uLLws+HVcag3OWYebqYv/YAWDGut

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      help.chm

    • Size

      183KB

    • MD5

      e0d7aac551f066b5a6d33c6b243a8678

    • SHA1

      fed652ad98f3a4e06d67ad78e97fe191f95f042d

    • SHA256

      13a2646da91ddec70f3b1bfd048d1e8f40a89a2d66591e5767ab6238ed66818d

    • SHA512

      8c982a79a67948eeb2fa68ec1285fc45adf63066fbe8b7430a24edf56d5dff6b12ad4583d487a1bc8f03ccfeaf3b6a2de3ecedaa838466fa4f025ffe27187b31

    • SSDEEP

      3072:LcENhZCkMG9b53aq9eNl9SoX4S1dXX3W1tjhvmz5rDmK2Tt2SJcr+Y89Cukl4urr:LcqZJMWbBmNlNX4S/XXm1f+xDy2SWqYt

    Score
    1/10
    behavioral7behavioral8

    • Target

      uninst.exe

    • Size

      66KB

    • MD5

      39fe05eb34815864ae2fefde3694fac8

    • SHA1

      a82a249c22382f49687f4506aa83270414498bd2

    • SHA256

      b0bf0d17491a0fc419eb0a9472977ed7a4d1b805606a309ded3e4ae577e8a5dc

    • SHA512

      640aca4888bfb5006bdf8289796f0c46a9041aec5fd49127557a60d773fd752a7ad13af8b23597ad983db0036d58f958569f0ef65a47ad94afa43ad54a478c90

    • SSDEEP

      1536:prSaWcSX1B2qV4k4PJU6XQcREYRNA3wrsyf9J:tSa+P4ZPJUvqCNyP

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral10behavioral9

    • Target

      update.exe

    • Size

      110KB

    • MD5

      4d2e37c34c4878d6ba1ef93bd5fdb58e

    • SHA1

      42688aa7f0ad818caf75b6bf5e8ae52383099246

    • SHA256

      366ad5a7e5bf2249b020545bfc30e4b906dac445ed91c2515098387001aa4eaf

    • SHA512

      5807da77831b6aba0f4df8d7875b2405084ffe9cbb91626c581970a6421c82d816ddc793c5c252865ae1c2ed0336951ec70ed2dde005fb3b524fef5126901bb5

    • SSDEEP

      1536:vmcbpjuT6fcHWn74JkKBWgE6noFsCbeqRufVdsasDY1C/EjBgMDjYoGP972:vt1uVHW8aKz0aC6+KdTY3972

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral11behavioral12

    • Target

      Easyresume/非常世纪资源网.url

    • Size

      261B

    • MD5

      7224ffb934111a8809741992c978930c

    • SHA1

      b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281

    • SHA256

      9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772

    • SHA512

      5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks