General
-
Target
a2bf42968b6681474d93bab9f4d3d907_JaffaCakes118
-
Size
1.1MB
-
Sample
240817-qxre3s1ekj
-
MD5
a2bf42968b6681474d93bab9f4d3d907
-
SHA1
7e408ffca7edf7ee09a31b66d91d9b980095e959
-
SHA256
af893c460ca946021d56852fecb12cee55748b4e6c1ddc8b157d21a4f50107f5
-
SHA512
645d8ccc0594ef0d4ea4cf209be47367115dbf04f9e1bf43dad2f7ede244a846bcc61f8a4c1522745bc582c7403fcedb7baf609f2c7ad29549dd680e53151afb
-
SSDEEP
24576:9L1HtRVy4TW+wU3zgHD9OTK9VPk32qWeTVbppq8ZflAbAX:9ZHty4K+wc8HDY+/iWexSA9Ag
Malware Config
Targets
-
-
Target
PhotoSectionMaster/Language/LoveChina.htm
-
Size
1KB
-
MD5
23d50c718a33cbbd5b98d9d5ee3d49b2
-
SHA1
7ecf6e288ab502571289b38fbf00bdeb758369af
-
SHA256
2ecb510471d2603297ae82ed4ff96bf3f63f8cad1e9e329d0e7dcf38539bd76d
-
SHA512
28fea50e3dc168aa7206f122084160692486208a14e113ebb824090d2e92ee639c2169befe8b47125b6d1d99d7f46654d75dd2e1c7c15861d8727d877d9aeaac
Score3/10 -
-
-
Target
PhotoSectionMaster/Language/ShTianHB.htm
-
Size
5KB
-
MD5
4165b6f16ff7fdff5ea7e40d8f670139
-
SHA1
b6a2940aea2c2c220c77ef4dbf5969e805df1d5c
-
SHA256
d56d96fd4644a700a1df652ec1fa8bfda5dadfbcdbbec08631b706b2bb410b35
-
SHA512
149f0bac4dab23bb2ce00e45d99cd65da9f25998aca1c19cb9ffc7bdc896d1d07a70e1d6c4604e78e3f00a059fce0eb2bdba9762c71e746522781a695751b926
-
SSDEEP
96:fXXPVupi3HIpdQ/tPdDzKzMOddSdvvYs/mYbYPQFL9Ekm0U1tW0p8r://VGi3HlnzWMK+bmeYYFL9q0mW1r
Score3/10 -
-
-
Target
PhotoSectionMaster/Language/SheTianIntro_GB.DLL
-
Size
14KB
-
MD5
cb3e37d9d433c121ad556bf883eab11e
-
SHA1
25450665374551653ae017986402ad32c995c0d6
-
SHA256
aa79bcbb687f74c7774faee48bae0c90d076afcf1e8bca139fcfd3709c717066
-
SHA512
17fdf71cb2d45c4524c477efaffd9f788e1c3a7aae301deea1e92e94760a650f63d2edb7a2328d2f77827d03d85b754c13de0f992318602029b067401310c02b
-
SSDEEP
384:vw2V3YmG02OjhVQFUkG9++fLJp7J+PSag8:owq02sEAJptaSa3
Score1/10 -
-
-
Target
PhotoSectionMaster/PhotoSectionMaster.exe
-
Size
426KB
-
MD5
75edac6e501c15dba683e45f7e2f90af
-
SHA1
d00497c2c6c864903c01a5d0603e61cd471540ee
-
SHA256
90ec90e1288685606bb64430141f4f781290f3c856c39907ea74ba08083f2154
-
SHA512
e54a4afc96301d010106d64b8563fa4ffd860dc9bc93240a23db450be5a5c024aa70258722d895ac3a00a51f397ed79e32506dae57d58b22444a475932517fcf
-
SSDEEP
6144:bedVbPMo4QonZ8WbXKMnDrYz8jGhfPOaOXOGL2w6mwgAd6R5hhu3CAYJ:CrbqeWb6M4SysecCm15
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
-
-
Target
PhotoSectionMaster/SheTianIntro.exe
-
Size
388KB
-
MD5
21dc4c9af6c0e0f760b43717fe33f43d
-
SHA1
587e50f1c926f1d94799b384f08bad016b026b28
-
SHA256
6830e37f586fe91355d28fefa4d703af91abb57e0b91c7e8992420d51fa1c6f5
-
SHA512
166aae85b8a69e15f86973e0bd283139a07f87cb07a9f44f17de9add24babfdec91f61be8634baceb137b3d41b271627d41271ed8ee1ee9ec5db53d963192ea3
-
SSDEEP
6144:xdn+4YICdYlGpdEITD3Qgc41c+c0+OV2oGt1i2bZu3xuszD:X+48aITDggMhOsi2Wx
Score6/10-
Checks whether UAC is enabled
-
-
-
Target
PhotoSectionMaster/Tools/TeacherPCI.exe
-
Size
278KB
-
MD5
7997b582a1c4fb4e7e1fd3bcab3545c8
-
SHA1
ec0234a340cf28b47ad5024c6c70fb358c7bc779
-
SHA256
ff53532b9c1dbc399d55b413ac5d597eaf37dfc795ab76cf2491c8438f5f08f7
-
SHA512
4d068321e839cd459a31e766d444cd702b7366e5b99732964095717e20501ff9064bcacea6c8805df9a2386f23f1ae0fad627a92cdb3752513daebc699de0bf6
-
SSDEEP
6144:GIEo7slnKFPMe07lSTxY8Ov5XaVJxldREdCNZfFqNaAepvEou:GI8lnAMe0JSTxQXe7X/xFq8BvE
Score3/10 -
-
-
Target
PhotoSectionMaster/新云软件.url
-
Size
133B
-
MD5
4f0017b3b346bd0626f0c3b915e6e734
-
SHA1
823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
-
SHA256
df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
-
SHA512
0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score1/10 -