7e120132d1a388a606ad117062f07cef22581d6e6694d514af94276bf6caa556

Sharing

Copy URL

Twitter E-mail

General

Target

7e120132d1a388a606ad117062f07cef22581d6e6694d514af94276bf6caa556
Size

2.6MB
Sample

240822-xy6dyswcmm
MD5

72f76c30c36f7453b6f5a04c6e3f875e
SHA1

4fb942632e47fcd6cfb60e35ce86aed4d4ab263b
SHA256

7e120132d1a388a606ad117062f07cef22581d6e6694d514af94276bf6caa556
SHA512

41287adafb86bdae6c6461d337e072498e65227c2812d3738191ea11a45f17c31a84b9793c338685036ac7f3b22ae5fbd7af99c2cb8618328fef104231b43e6f
SSDEEP

49152:mr9HsgAu+DDAQm1zb/eEB9jlGx7PxNTA7kXc4vm5g2ujnhGSL1Uv1f79DEEK6:eVQQQeX9YhJNbIsLhGSL1Uvp7J3

Score

6^/10

Malware Config

Targets

- Target
  
  4.ƾ֤С/ƾ֤˹/ƾ֤˹2024.3.6.EXE
- Size
  
  1.7MB
- MD5
  
  52f676df9fd1e378a6fba5087a743136
- SHA1
  
  42323fd6438e74b0c4839c958db0d19acbb099a7
- SHA256
  
  ad04223df81b87e801b5f1549c3e709a066a3412bad1401af7f5adab61803af2
- SHA512
  
  96723113a5fbba6332bf89d2a20b6bc039b6849a6fed5f3a52cf16d182b3b1a10ff296362d0a97378a4ed414ff9475f2ec41e3aec8c471b928fc003bd36fb866
- SSDEEP
  
  49152:h3PsmOK2rHAacv9N+GD7DDeBjFZnzK9yhyahE/:RLMEak/CdXn5q
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1
- Target
  
  background.html
- Size
  
  301B
- MD5
  
  1e373c45b989b0203892ab71a1415d01
- SHA1
  
  d72681a38af77efa968316526b54a069dabc1a9e
- SHA256
  
  32ce4d2748a55bba5907a392433cf8a4cd22551d38d822d73f6194a4c489b144
- SHA512
  
  d1a3ad51c1eef0c2807b129c193d1d42fab3040ccb35f05134a03d1396c3cdcd99b951e7df69e56d5ba6d5c0f8333b66fe71af73d4aaa6e1534280887f8f027e
Score

3^/10

discovery
behavioral2 behavioral3
- Target
  
  jquery-easyui-1.7.0/jquery.easyui.min.js
- Size
  
  443KB
- MD5
  
  06f70dc2b2f077e2334f42ec9328cacf
- SHA1
  
  0aba062f67d05b8e2696ee435c1e87213592ff3e
- SHA256
  
  c38fc2c7465de6b0bed90cdd5c52d3c56d120caa8ffb22576b330b3fef789804
- SHA512
  
  40fbc263d125615e778345893b1c6bd085cd205090bdac80106d691604fc5d0403be22b33ed89b9ea530817f7118aa94935936ac56b387e768ce59fcceb3aa90
- SSDEEP
  
  3072:EKiIrNKa2kxbQM0kc8NvsvXP5bWvukX3aaYCsoxS1gWBkgodHy7lQZZ8aZFctxoF:x7Z/sUdEl9txHJINvwa
Score

3^/10

execution
behavioral4 behavioral5
- Target
  
  jquery-easyui-1.7.0/jquery.min.js
- Size
  
  94KB
- MD5
  
  4f252523d4af0b478c810c2547a63e19
- SHA1
  
  5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
- SHA256
  
  668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
- SHA512
  
  8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479
- SSDEEP
  
  1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV
Score

3^/10

execution
behavioral6 behavioral7
- Target
  
  js/autotransmit.js
- Size
  
  15KB
- MD5
  
  d47d36f717f3afa7fde00e7d348d89ea
- SHA1
  
  6ad56fcc0821b314fe93814384f91c7c594805a7
- SHA256
  
  f17aa83dfe1913312f9006e0dcd309105737d81cb503dbb0b558352d4e4f2d58
- SHA512
  
  31fdd6790073b1bf775b8a10f95e3457f441ecfb88ef39d25caf9b88050419b120b14cd7ffef4eac8e0f7a53b484175e9781cde3f9cb3468202bda11897c2277
- SSDEEP
  
  192:3fjz60KL1GKgfD5q+QzZjrG1bj9rtabRcqkGgtX1l8jEboFkIf+u:3Lza1GKgfDjF9rIUDu
Score

3^/10

execution
behavioral8 behavioral9
- Target
  
  js/background.js
- Size
  
  16KB
- MD5
  
  bd8a45989bb29ab4da1d1c97ec29a92a
- SHA1
  
  27d405b56725fefd2a8bdaa5e58bbdeb02634f9b
- SHA256
  
  e566ef8eacf3aba9a1ef96bddbc7f636d2164d17695321af93f835d0ee1d4b5b
- SHA512
  
  230c47ba7631436aaabf55ccf3019468a5428fb378314ab21c59272295365d060ee16a77c94fbfd6f39325de0c5a64b360f368a45cfb8e3f701b328c4147e276
- SSDEEP
  
  384:UgSG+V0yhckGAmVpMhVBqg2IsVaJ5G57cTuGGlCHgvDfGcAc0vICPC2DFJWnlLNd:jSx0VkGAmVpeVBqg2IsVaJEtcTuGGl9X
Score

3^/10

execution
behavioral10 behavioral11
- Target
  
  js/content.js
- Size
  
  15KB
- MD5
  
  94ab49e342592fb064b53b1e78442f59
- SHA1
  
  08bfc1367ad7adbbdf181cdb8494af0c953915eb
- SHA256
  
  8d0ea99e7cb5d1ef6925efa0fe260fd0e6d4100929d282aef544761aa504b949
- SHA512
  
  a6d88eb2d4f64eee5f27a684183892107e3e26cf7fa55f0f5f8c69492e2d852066f811d171eb68f2efbf372c2b0def90018facde84ca17e4caa86f604ab7069f
- SSDEEP
  
  384:5DI7c1BfPOTsggMWYfIPIGCv8jnhZnCvB0g+jaX27ATXZwI5Z:5Uc1B3OYLMW+IQGCvGnPnCvB0g5
Score

3^/10

execution
behavioral12 behavioral13
- Target
  
  js/data.js
- Size
  
  16KB
- MD5
  
  5e65ba032ae917be52cf0a2eea2ee326
- SHA1
  
  0d7e60103948132a4b6b0270d30383832e052415
- SHA256
  
  cdaa404930ce8c9d1eb4abf79d132345bc8d498b4a025b232d000f5aea31f5a4
- SHA512
  
  fe6b5ec930c942a5f4dc740176e3775450586c3dde89a70e83952d853632604d5884347c3373f9205859132e70e6dee77beb55993b3873fa22adba5f0e16149d
- SSDEEP
  
  384:6eci21EmlCOxL2VH3WPcyk9IXHAZ33dLdG6AOPz6RD001+cLA+UszHHb9GcdCSij:6Bi21EmlCEL2VH3WPcyk9IXHAZ33dLdT
Score

3^/10

execution
behavioral14 behavioral15
- Target
  
  js/djsh.js
- Size
  
  80KB
- MD5
  
  f689a0090ecad4fb485c0483ba1e9e65
- SHA1
  
  d672476b22d67205e830cad8aa6bc6d721daa561
- SHA256
  
  c3d78171488669560fe692b38eb077782980cd0fe897593ac7c801f5e54392cf
- SHA512
  
  b0d0b7ae60be2d86b586313637c627d2d7255398ae00784f1d5021334a3947054a63ac13c57b735c1a2ee886f6effb9876f84268bdef7fffbe8597188ab29ecf
- SSDEEP
  
  1536:SD/UZVl2zd9rh5Ju8IPE5X8hyZLKMNjTx9:MUzl2zdl08IPEtEyN1Rn
Score

3^/10

execution
behavioral16 behavioral17
- Target
  
  js/inject.js
- Size
  
  109KB
- MD5
  
  605603ed505ff97c697b5d1828724bbc
- SHA1
  
  576e24c392475c366da87b7b665d5b4daea1d45b
- SHA256
  
  349932d240a668fa2b5353c967ca9d7f094c7f5324e1c3e44467037712d7a6de
- SHA512
  
  cb76c5820e7eb6c0a64b758fd3ba28d02844fb108267d3a6f2206b2cfe4f1c844af48fbc5973b191d8dee4eb889dfb7e147a4b96898588dd63396064507d92fc
- SSDEEP
  
  3072:uSIMu0+6qfqYfPLwen6dkq2HvxizhkhiefnYTLFz2TprZ1VBEIOyNXw2hMqr+TXL:uSIMmP6dkq2HvxizhkhiefnYTLFz2Tp+
Score

3^/10

execution
behavioral18 behavioral19
- Target
  
  js/kmhzb.js
- Size
  
  13KB
- MD5
  
  3c6fbac5c5ce13766fc06ce1a4922670
- SHA1
  
  4c3d7c9aebbd400c9dbb8d54f52e7afa4c4c2710
- SHA256
  
  c780cddaf5be50a33555560ea9f1798b856a7351bfef921893e5b3d9b7516f63
- SHA512
  
  c736c90e78ff9d01eb89a4a2bcd306c53e2ad6ec7f855f2363aa74d64a92356b167170093a8955fb7686275a73414c48abfcd41d94097f75d887ea4ce9b2ad77
- SSDEEP
  
  384:mDVzPvTLBrPALAGqAykWD1EW1urOJRViJzXZt1wz2zDlKz+RRgnSOBkse1TABUot:mDVzPvRALVqAykWD1EW1urOJRViJzXZs
Score

3^/10

execution
behavioral20 behavioral21
- Target
  
  js/popup.js
- Size
  
  37KB
- MD5
  
  d3fb2256a6770998da831bfa652e5ed9
- SHA1
  
  a394182702f712bbefb6ad907d9222c0cfdb94b0
- SHA256
  
  fd52353741250f112d21ff9c5a7996371968da98a86a2375dd617c03142c852f
- SHA512
  
  fe47c20dbe425d8fe40087b142fcf42e28681e3dfb72cd53451fcba74631cd45d412a7b0bc694937e2c10c875547b3b3cf587b44e91f572c462bd36cea32e3b2
- SSDEEP
  
  768:MZot+sEuLQOFeb+ZFVi8zWc2KBjv853WLMDVsMWRajYNPYaRp45tvbTSYZbzfk:Eot+sEuLdbGWIDVsMAOYNPYaRpmZ3c
Score

3^/10

execution
behavioral22 behavioral23
- Target
  
  js/popupmultiunit.js
- Size
  
  3KB
- MD5
  
  aac900e300d34801bb34bcb06d6227f4
- SHA1
  
  820b858d784ef7fa10b59bb638f9cbfeb9278ba4
- SHA256
  
  45e3529fabae3b35e05297b0fc6e0a56926e0e03748bf9eb9bd4001a9882c5bd
- SHA512
  
  eb20f5e774500c77f28fa401997bded731e9c229f461cc3a59285ec18f74b38d5563533e5a074e4fb9020e8419f97ac35dfbbe36ed0aada67a954cb59e21f03d
Score

3^/10

execution
behavioral24 behavioral25
- Target
  
  js/popupmultiunit_at.js
- Size
  
  3KB
- MD5
  
  bff1255c3d1c8ccf32ebd4e7ff98640b
- SHA1
  
  80046e2f3d6c6f041360ddab26dc3ba5f38158fe
- SHA256
  
  82943b2e3095f2a7e9aa4d3764124a3bcf309a8cb9d6fafa508a48707bb75d12
- SHA512
  
  9d087e93c3f36f47a77262ce9f3337bf84d43c56772e29071f9bf8084e9f8c3b1f046d67c7eb67ab6e53556ec78a4ac2baccbc0092ce92f8ac0402fcd3aa7be9
Score

3^/10

execution
behavioral26 behavioral27
- Target
  
  js/pzsh.js
- Size
  
  168KB
- MD5
  
  9c6a0978a1f851ead3580c6d5841b30b
- SHA1
  
  37b03b0f4124ab114c9bdacf9a05d573300c9264
- SHA256
  
  acf365359ba0d46abaf8361e35406b87e0702fbe16b4c23def81846ecdedce4e
- SHA512
  
  c166de13e0d562efb50792c9b809b174ba4d35d2e870fcdba9e4e4f59f2b53c947bc04e4ae8d398d82cfca04e4656100fc9f0bd716b93332856809d4dd7f4d34
- SSDEEP
  
  3072:NlmMGnnCILYxydspGPNl0Eq8Kc7aaR0eEW5BY+0X+k0:NlmMGnnCILYxydspil0Eq8Z7PR0eVBYI
Score

3^/10

execution
behavioral28 behavioral29
- Target
  
  popup.html
- Size
  
  9KB
- MD5
  
  78ccf77c37e220683c7647e05a10a05a
- SHA1
  
  4186e533cd21d2170c6a619caa742bca8821ae07
- SHA256
  
  9e057891ebe6b985d007eb0e212170edd566494266f5cf16216c23b54acfc2c9
- SHA512
  
  10f594ca3a68e4d60e9ee06a3e04b5225e3c5675a4052981e73426ac4e762d260eddfb911e624bb5469e57db2a0f463fc981c9e480450db6f07de5636f6ebe44
- SSDEEP
  
  192:br90Bp4NZoB2r0/Ij99Rtwy9QKGqzmBDJYosIm1nW:n90Bp4NZod/Ij9zPQCzmlJY9U
Score

3^/10

discovery
behavioral30 behavioral31
- Target
  
  popupmultiunit.html
- Size
  
  3KB
- MD5
  
  6f1ffd7d5e36f2da71f99e3212e2417f
- SHA1
  
  f116c1ca344eb1785a9708ac78ccf23a88422068
- SHA256
  
  deecc4170ab28e38747708d9b66d761668d0e8fbd8a6906418a5bc1c455620b3
- SHA512
  
  3203ba16c65dc6cead1e15aabf3fde91913dd88faa4989eec0416f76500046924d5b8c826450f0a8b5221db2c4331f030bed7d3b6571b86c45f336f3e69379e9
Score

3^/10

discovery
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32