241923e6a0bfa4fa7f655142cf4291c821dd26fa5093e6b9b9dc9fc1500559b8 | Triage

Sharing

General

Target

d2f4c29d32173129458baa9950a305d7_JaffaCakes118
Size

799KB
Sample

240907-2bbnaaydnj
MD5

d2f4c29d32173129458baa9950a305d7
SHA1

db1350c96e5956ce10bbedee497b74e1486d7cd8
SHA256

241923e6a0bfa4fa7f655142cf4291c821dd26fa5093e6b9b9dc9fc1500559b8
SHA512

49cf038451a33d4e7efa6a665259facc4f0d3afb7321f12d89ae5cb825bef8acd5f0ce15cb91cfc726d1bf6d62552163548a2048f0972a68f4f84edcc084bde6
SSDEEP

12288:QC1b+eC5XG2ApHGYSWqZRS9X9ZXVeHd2ZBuqxrzRd/sa6izKMn71MH+:Qj29FpaRS5XVeHwZBDrzRBs5qKMnme

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  QQ空间全能助手/COMCTL32.OCX
- Size
  
  595KB
- MD5
  
  821511549e2aaf29889c7b812674d59b
- SHA1
  
  3b2fd80f634a3d62277e0508bedca9aae0c5a0d6
- SHA256
  
  f59cdf89f0f522ce3662e09fa847bca9b277b006c415dcc0029b416c347db9c4
- SHA512
  
  8b2e805b916e5fbfcccb0f4189372aea006789b3847b51018075187135e9b5db9098f704c1932623f356db0ee327e1539a9bf3729947e92844a26db46555e8cd
- SSDEEP
  
  12288:LUVJnkkCKDCUUgdxxnwH8aYvR4+NyEFVUmJ8ts:QvknYJ4xEFCmuu
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  QQ空间全能助手/COMDLG32.OCX
- Size
  
  136KB
- MD5
  
  3ec0a48ed8d8a019175cfa3952ccb3b7
- SHA1
  
  075ffa431a55a272c2cdfe465ac130ab654ba9e8
- SHA256
  
  f9ecca1f6718f7ab711e3f675dce438930079ca8649f101fb41a93d85977149d
- SHA512
  
  0c51c31c0fa9d5b4909a5085bd72881c4e4867f90c0e576d5344b311f4e1d22ed7141ff359e43dcf53e8c84782bc34062c16dab04f63e73487e91b1db4cc33ca
- SSDEEP
  
  3072:489tWEjIsyhCkstAxTjnRfB0//TBtJrHo6hg7lLnN6N2TRqESdX7ofr7:48TW7MAxnRfSJLopXRH6m7
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  QQ空间全能助手/MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  d9578ff8b495dc575e848c6670be85cc
- SHA1
  
  ef0b7a7859caa85bbbdc9cfc1fe2b6eb10db44d4
- SHA256
  
  a018a023d59bb76aef0b4dd6ff40aa16fd0783927972a9492b26a5e5d0433696
- SHA512
  
  08078f3c3d20e7887b0ce0f3a5aae195a30476f52b8b672e32217c9b515bad67304a91dde6a0c5edac26c2f0db70a0d31a52245fbe65f3430e1ee4a4454359ef
- SSDEEP
  
  24576:TvI5+k9ABzqwFqEMotJKC33aTjWVRGcaFHKC4xJq/6z/o:TK+kGBqErqC8PF4UWQ
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  QQ空间全能助手/MSINET.OCX
- Size
  
  112KB
- MD5
  
  7bec181a21753498b6bd001c42a42722
- SHA1
  
  3249f233657dc66632c0539c47895bfcee5770cc
- SHA256
  
  73da54b69911bdd08ea8bbbd508f815ef7cfa59c4684d75c1c602252ec88ee31
- SHA512
  
  d671e25ae5e02a55f444d253f0e4a42af6a5362d9759fb243ad6d2c333976ab3e98669621ec0850ad915ee06acbe8e70d77b084128fc275462223f4f5ab401bc
- SSDEEP
  
  3072:i4QYXpLZaH+kCp1RCaSCF/6UMiySQYPfrj:i4rBfL1RCaSC0ej
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  QQ空间全能助手/MSWINSCK.OCX
- Size
  
  105KB
- MD5
  
  9484c04258830aa3c2f2a70eb041414c
- SHA1
  
  b242a4fb0e9dcf14cb51dc36027baff9a79cb823
- SHA256
  
  bf7e47c16d7e1c0e88534f4ef95e09d0fd821ed1a06b0d95a389b35364b63ff5
- SHA512
  
  9d0e9f0d88594746ba41ea4a61a53498619eda596e12d8ec37d01cfe8ceb08be13e3727c83d630a6d9e6d03066f62444bb94ea5a0d2ed9d21a270e612db532a0
- SSDEEP
  
  3072:R7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfrb:RNkVsuaRaU6mHGb
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  QQ空间全能助手/QQ空间全能助手2.3 去广告 by Loading.exe
- Size
  
  458KB
- MD5
  
  dfbe0e3c6e7e4fedd0e7e5f157de5f8d
- SHA1
  
  a11b1b19a283bb06f69d061f9a685cc60ba40bfe
- SHA256
  
  42eaea59ff3a6b3cfd71bb22e98827dbaa70dec40586c75e1e8c8ca96ce24199
- SHA512
  
  dcc2b5c4e8913ac43cd393679af206828727486cf499fcf6efd24f8189035da631ea0bc52aa84fb4e6815bd04bdbbeca5d0470191bef824beee34eb57db3fff4
- SSDEEP
  
  6144:1frpBRQA6CPpmHdvdUCKO45adF58vvQeUflxUcJJ2dLuMXpS:1frFQA6CPpwMadFKvvQeUflWcJsdLU
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  QQ空间全能助手/无法运行请点我.bat
- Size
  
  111B
- MD5
  
  9f3e181c3e4e9321fc729813b8b8d390
- SHA1
  
  0de1a4b0fd73bac0d352b10193faa36aead47ea5
- SHA256
  
  102aab53907784ff8f0aad7fe63522afd5e44053ee8bf008750f6f9de368c594
- SHA512
  
  f246fb33497b828ae1637d5057d3e9a9c1f45dd9bde2fdc0a02ab61084935219fc4ac074251866f72547e5f02f753c8398888beef05260988b66feea282ffed2
Score

3^/10

discovery
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14