Overview

overview

7

Static

static

7

yldjyyh/�...��.exe

windows7-x64

7

yldjyyh/�...��.exe

windows10-2004-x64

7

绿色资源网.url

windows7-x64

1

绿色资源网.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dcc4b55176cfc6bfcab7aeddf0d636ac_JaffaCakes118

  • Size

    1.0MB

  • Sample

    240912-wpg5bsxajn

  • MD5

    dcc4b55176cfc6bfcab7aeddf0d636ac

  • SHA1

    a5f79f86f338f42db563213dd500a6278a7651c8

  • SHA256

    85f45ed9cf6e64b9587c405e2c61fe7d92cc19bdabf2d874856909f592aa9723

  • SHA512

    3a9aa863f3baee5a2315a1a647a3ef3fe142a2a9646a4dfb4619818920613c9590b6fd77fc5c52684031091d40f5aa3650acd8bb737e3a36610592b6226a899c

  • SSDEEP

    24576:delxNouuaORJ/O095FBxS6+Nj/HzUjVhLrIHxkdDVh:delxmuuD7BxS68jHCGyn

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      yldjyyh/野狼DJ音乐盒.exe

    • Size

      1.0MB

    • MD5

      18b6865da4d3970fa3c102731ca82d96

    • SHA1

      39f2dc79978a6bf937aa588998b14ab05b70ff83

    • SHA256

      485a5454645f5d90d1b3097336b08dcaa9d4b49db9738a2f953e81081002600d

    • SHA512

      b99c73cb74f298e608a66353309fd5cde38cfeee552cb9c05d2a10e237fda421455c3acd7e435040d15162cf871cb425c9f7098ec6dcfbb2f90ee91a3b965486

    • SSDEEP

      24576:NxloCukO/lRO0L5BBfS6MNv/jzQjThDzILxk5D:NxeCAbHBfS6mnje4Y

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

    • Target

      绿色资源网.url

    • Size

      316B

    • MD5

      e3d6c20a95810df0ee07dfd966c11468

    • SHA1

      1c605940670344b45094aefadee47c418f47b1ff

    • SHA256

      d247bbfc9eb95617f8850e5129d4f1e87af12f8d12244c80c158600a8e24d2dd

    • SHA512

      13d57250c76c3bce1821fd6055427a430ffd088def7a43dd9e654a3c7fbca510ad0af87b27eb107b5613bfdd6d901320b5fb88b43354595a99a1c7fd0a537ba4

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks