9296e55823555b12ac1d5896ddac964741c43577b3fd44955ce5bf1dd5b89500

Sharing

Copy URL

Twitter E-mail

General

Target

___.zip.zip
Size

6.4MB
Sample

240829-qjcd1avgrq
MD5

6b196805c90e17d2bc961ad8f1d0671f
SHA1

a7f3755274b394e3663d105955e35070d20db700
SHA256

9296e55823555b12ac1d5896ddac964741c43577b3fd44955ce5bf1dd5b89500
SHA512

4b7887aa2ddd8d0c1ca94185a030272040d34abdb5c96d3fa96f08595c40b18aab5937adf94396c86d4670851bd7319e7fccce998b9f21a88d53243d898dfd42
SSDEEP

196608:YljXCPlvzqglQArr3qcMFEFtHT9B0RqVB:Ylj+ltztHTP0REB

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  资料/__init__/11.docx
- Size
  
  19KB
- MD5
  
  b93aaa92dfee1e8c7083ae7ebf3e69ba
- SHA1
  
  f36193022a58c9500e57ad69772c264969a14190
- SHA256
  
  ee336b4f788842d2e7f922d64d8cf5e36a35c8b3bf053fd5542493e8f15afccc
- SHA512
  
  f6e0959ba01ecfb249dca019b7e3b9f27497165ea7ffd898177fe7fcb7b98d8fee191df6d2d2e8af90de2213725ee7871a4df08137b9e3a53cdc1bca203a8e90
- SSDEEP
  
  384:CzhqYl40uBRkV5Qe/g9KvUjbyW6ZgMnw3JzCbVwY7PRm:CzhqzHG/g4vMz0uzCBBk
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  资料/__init__/WeChatWin.dll
- Size
  
  81B
- MD5
  
  c39d2b20314263b831cd0256adc72058
- SHA1
  
  b9aac9470b925ce2628ea147cca1b173e771bab3
- SHA256
  
  66a3f4badd04a0287e196f93fecac50da9475f176fb8d59ee55e4d2f4371199b
- SHA512
  
  67f1ef807c5c520737afe28cdf154262e176701aaaef299f0c628c8367c391d2a59a8ffc07cbba8641ff7f72558c44fe5f153011f749a65acd94969d4620e138
Score

1^/10
behavioral3 behavioral4
- Target
  
  资料/__init__/_asyncio.pyd
- Size
  
  70KB
- MD5
  
  1e91eedfaa8f43e106db442596fe4b6a
- SHA1
  
  99cd8cdbbb1a7e86a0eb933119bec952a2ec03f0
- SHA256
  
  b27d96cf29c0d38ac26e81462d6ee8df87771fffa2ffacd66583f673ddbce1d2
- SHA512
  
  f274268eb8c862fab85f1fd9f2786aa4c027ba06ab5a3de1dd23b96f7fc0b81870d452208fe1c822a17a199318d97ee87d6a58fd826ce3bef703f6caa24dd07e
- SSDEEP
  
  1536:EHKwmxMTJP+m6IVySzKK3RRXiVIzsnv7uyv:EHlTl+KV1RRXiVIzsnv7x
Score

1^/10
behavioral5 behavioral6
- Target
  
  资料/__init__/_bz2.pyd
- Size
  
  87KB
- MD5
  
  84e20e85c401c165da37bf69aba47215
- SHA1
  
  51ce68e27d9e19f0de6b4cac5cbfc5c36c2c161e
- SHA256
  
  055d087c699da5924bf845543cc7f2ec9058a85771d40a34a3fc056cfcb4fcd9
- SHA512
  
  85aa87f51b3a52654896b147b6cce8a8ece63343c2067a678fb22c962992b5315c4a424cc9a2535d7298a037cbdee5fd505057ebe517c7b8776f1c1811cb600f
- SSDEEP
  
  1536:Xe1TI//Ka3qS3zhV4k3oVTtPb87Tq2/40TMydIz4VNylVV:Rr93bkA7Tn40TMydIz4V2V
Score

1^/10
behavioral7 behavioral8
- Target
  
  资料/__init__/_ctypes.pyd
- Size
  
  130KB
- MD5
  
  a3a99549664137ac7c3d179cefa68abd
- SHA1
  
  c02d130cdfb5b04cd4a28509911f806722b8400d
- SHA256
  
  8c41d31e49cc8587b44d3b479516d70be84adc7c404e65007eafd74a580d480d
- SHA512
  
  d89b8180d4b12fc1dee6fdde1051586b5009a3b063bebbfc153bc4f649442c3daa330cd6f1575ee6d5501ad95eeb8ba678f8ea864eb6386ca67a61d040428383
- SSDEEP
  
  3072:x68Dww2Xye3ZL1Fh/4kdftoCdb8yVNRIzVPa:T8fJ1Fh/4kdftoChrVNh
Score

1^/10
behavioral10 behavioral9
- Target
  
  资料/__init__/_decimal.pyd
- Size
  
  261KB
- MD5
  
  0db9a5da7cb238911a7f90d2ad29f454
- SHA1
  
  38cafb30da6ce77f8d0ce90638945e1429a6834e
- SHA256
  
  9fd0abc3a41ec630eb180c8cfb8df720fe90154d9c603621076872ae3b47ef73
- SHA512
  
  59c901cf383143d8bb31ad184f9f7ac72f6bf703ba2fbc3e3c7df7e50499757d7fdc2df337c5438e32b3d7bc75b4628d27d39193a71eb5fe24cd77e622799443
- SSDEEP
  
  6144:ktjXkgLLYujhEIJg/7ewj5wB+JiaqWka38LWYAS1wIO:SjXkIlA/6wZTe1wIO
Score

1^/10
behavioral11 behavioral12
- Target
  
  资料/__init__/_elementtree.pyd
- Size
  
  203KB
- MD5
  
  044a447de2403684b7821c2fac0ba51a
- SHA1
  
  0ddf50ce102d3c14583c732e87b8b2833ce92ba1
- SHA256
  
  586d07244ee85714f094863591c62956b6910636f49696ea744a013acc923668
- SHA512
  
  9ed20b4693ddc1c1efff02cede6b076e32d34de16266cc50ce02189373192258b0b729a3601cb143c465cd5ddd446f86e34b90f5b6a3d3bfb717ef0ab5854b2e
- SSDEEP
  
  3072:/bt145oz9CaQNbCF8Ncwdl/jr1QPaLQFCJGKSnXSGUhhErNIzAfy6:Zu59aQNdcwdNrK5tZCGDH
Score

1^/10
behavioral13 behavioral14
- Target
  
  资料/__init__/_hashlib.pyd
- Size
  
  38KB
- MD5
  
  61280649d91175908612b944c4b821da
- SHA1
  
  30ab92c0e50826b5d8b65e0781582fd5d6c8d9f7
- SHA256
  
  1f241abb7e15aade1cca31f43b3199dd3545243b3bbaa31c7a4d93ef6d620692
- SHA512
  
  4a60c543925365877f0aeb283d2d4b010e2e2d580dddd2fd01132fd4d85a6ff1c020841187028e54d4bf5d95238ad1720f99aa094e4be5bcf38e5bedb9ac3ef2
- SSDEEP
  
  768:Q3zkzB7eddwcZ0sd857xVNl8YjQ/gnRkVIzsITWDG4yDR:F97SdV+LdvjQ/aRkVIzsI+yl
Score

1^/10
behavioral15 behavioral16
- Target
  
  资料/__init__/_lzma.pyd
- Size
  
  251KB
- MD5
  
  b0892745af97c434420961efd8380cd1
- SHA1
  
  6a569140d176f63a51951c8bea36bc3c7d232928
- SHA256
  
  ce8e5a5383a0c804c0a643c231f48d2ec8cdbffe91258cb2608b840f0b6eb6c2
- SHA512
  
  d2f806ca371f3ef7e7da1a6dd870994b7714b807e08c1d8d1aa7ede832cc96bea6c3ad322176322a3c091ec6a2b39549057cbb8628807a256d55d4655e027a88
- SSDEEP
  
  6144:51Z+wjJoWUFcwPbdqKNlk8/RO2hzwpbHPq+NZkA/NOihXw7b1qvNEk4/SOMhAkwG:51lTrbsnXtOrf
Score

1^/10
behavioral17 behavioral18
- Target
  
  资料/__init__/_msi.pyd
- Size
  
  38KB
- MD5
  
  a52ff83cc0df3defea3430db55f47131
- SHA1
  
  579dce9310cce099c5be4b5abf390bad7ed5b7da
- SHA256
  
  fddb0544651df92db246a986edae47a937d89b90fe4f265284a52d0119dc228f
- SHA512
  
  972792edb5590c3f813888eb87a85ceb69c308bd17ab0048a8d3434a6c0dc3f61cda4ac5ffe365bb821f5f0c95194d9edacfeb7519305020013436ad79367985
- SSDEEP
  
  768:x3cvmP94Ze4gSFlMuLoedZIAUoCmW4q6CLMC5WdIz4GqWDG4yc:B54ZrWmW4q6CX5WdIz4Gfyc
Score

1^/10
behavioral19 behavioral20
- Target
  
  资料/__init__/_multiprocessing.pyd
- Size
  
  28KB
- MD5
  
  128d7219b4663193f4e6413990ee4c03
- SHA1
  
  47257e7dd99c031c34ad59eb5d6a97d81cd2f09f
- SHA256
  
  2249fbe78eb3fa06b4bde9f1a4b0441c3977c86e0f95faa3fb605224280be84f
- SHA512
  
  50e355b0f95b7ea0120667787a01c7783514131caf468f520624cee7af380ece35164dd313778d4280c12eb30ef368478e89791614d1dd354cb3670f9653fad1
- SSDEEP
  
  384:BPzDKCI1xWyQ+78M1Y5FoTewHJ4V2ZirwIzkBLdX8NnYPLxDG4y8NSB:BQQ+7so6wy2ZirwIzktdWWDG4yd
Score

1^/10
behavioral21 behavioral22
- Target
  
  资料/__init__/_overlapped.pyd
- Size
  
  43KB
- MD5
  
  d7ba0b09acd34163f4f485cccff7349d
- SHA1
  
  2855bbd6d7eafa6f295cb1be9e8bc09ded4d4338
- SHA256
  
  296e6d85251215032fed5a48bbbf0fdd69f716bc0edce186e6bb9db948c62d05
- SHA512
  
  5afed1247e6580bedbb6f2178417e86038793c1cecf730991199af3663abc88229a2ec3a8770065fc59b90072765f45199e7bc161948923344bed865895133ad
- SSDEEP
  
  768:TNIUAA4pXLm3L7jR9wlfgk3sMJDhyoY5CKPdRYSpIzJtFWDG4yS:yLBgk3sMJ9qCKYSpIzJtgyS
Score

1^/10
behavioral23 behavioral24
- Target
  
  资料/__init__/_queue.pyd
- Size
  
  27KB
- MD5
  
  9d6921f2ce3ae6afe6d110afa43c4625
- SHA1
  
  88a6a43d24877d544bcabdd4829e4320c03eb391
- SHA256
  
  68310f700ee3df13f6cd2894eaad57512f5c4a64633921d827ecf5eb3e151964
- SHA512
  
  63d35379c3c28a65ccbbc4215ad9e2dee41eea337638a4d6c7d4101027b583d96a2dae40faa6e7b094eeededc42d88b94a905eee5dff2b482e7d2acd42a64977
- SSDEEP
  
  384:tjuZfAatb5ZrWXmTR/cE56rKRIzqUKcnYPLxDG4y8PGS:tKxzrWWt/6rKRIzqUtWDG4yU
Score

1^/10
behavioral25 behavioral26
- Target
  
  资料/__init__/_sqlite3.pyd
- Size
  
  84KB
- MD5
  
  1ddc6cc76d9a293226f94b0123d9c694
- SHA1
  
  b3106ff00ff4af275f14afd1e17d6f7a2c774c69
- SHA256
  
  e0fc4c6d303f68671b370965ab13c3a9fb68d23a528bcddee78f7c8b92d15335
- SHA512
  
  55e4cff3bf89559c4fc7b38fa4c4baf48b6119cc3da962c62c3e3c801e33e82b8ac556ca9b7e024187b6bcc3aea80a0a5cac5702a6bdc6b47a68261c950bf100
- SSDEEP
  
  1536:Uuq49RLkvamVpN5o+Lf3WMm4DyUqT8Qin+HReBVIzsQ48jy1:g4rwDpsSPtyU48nn+HReBVIzsQ7u
Score

1^/10
behavioral27 behavioral28
- Target
  
  资料/__init__/_ssl.pyd
- Size
  
  121KB
- MD5
  
  4691136c1be29a3bc60fc52649ef32db
- SHA1
  
  91d3a772f9caedfe37937ebd48b6670afb68c008
- SHA256
  
  b9410de2f13b7454891c53d4ce4e2e6c5ffc5fd1b25a5e9c394ed88c299ff755
- SHA512
  
  25eb9a998b34950a4a4653f3ae84cd778ceed0223533f319d67a0db270351e6e360e3935af2e42e954903a0d2187a47a1cf8a071342e85ae0d8a3efbdf3469f5
- SSDEEP
  
  3072:ql40p9Ewhd9SIzW7C0rOZKYYjobN0WovSa4TMpi6EPQNQ0dIz47/D:M4+EOd9SgW7C0yZKYY8+WovxpD
Score

1^/10
behavioral29 behavioral30
- Target
  
  资料/__init__/action.py
- Size
  
  2KB
- MD5
  
  3674056cbbcd5bcc8ee2edcc50fb9934
- SHA1
  
  0d799b404859101f0afd4c8977f676f21d3442cb
- SHA256
  
  ef265b124db4fb2439054ac0c9a4b3d58e6e52ff94738ecc7375480dc6ced48b
- SHA512
  
  626e7418bf6791e901beff0c7a61266d9154f3b429d8dc98a4037cd57c893156ff8b47cb4cfe5a9c17ccbc05672fa8de7d893dff2fe4364e25466e674d52146e
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32