713f20858a343e587ebba9b7878d1b6dc396a4d2bd845b25b77e7b765e8d4677 | Triage

Sharing

General

Target

fb80bc54d71d97502e5fbc141952efba_JaffaCakes118
Size

2.5MB
Sample

240928-e3dwdszblh
MD5

fb80bc54d71d97502e5fbc141952efba
SHA1

df5afe4b89f551417147d0eb5485629182714a6d
SHA256

713f20858a343e587ebba9b7878d1b6dc396a4d2bd845b25b77e7b765e8d4677
SHA512

02620c4d5adbb009a69f60172fd96b9b344450a82d8f787e9722f8db9126802cfdc9bb12809022cb4e3e9f278d4d070339c74a734b0b8ff1e9aed1ef492d9597
SSDEEP

49152:9Rjqg+GgLDsNdXthaLSCCw9zSkNnfKNmrWCMtqbDlKzsor7k47WujnNfMps:GDsdXfVChNjNCNy3LbhroHkg3Zfr

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  百分百阿里旺旺群发器(淘宝版)/155绿色软件站.url
- Size
  
  219B
- MD5
  
  3a1f2a8a3ef08ae269517a69ea918b2c
- SHA1
  
  7d2e6719702bc8472e045e010efa6ed3f7df4b5b
- SHA256
  
  66eafefa8bb0155e60828476bde6068573fe64a4fd0aa052eba074dbe85d46cd
- SHA512
  
  22203a78192cadc02d0f887247675925273a69e3be82ec1a331197f892216a282cc8f37c3ffbfb578a708244181037277b8cc6a40d8ec70cdf0feac5d80f8576
Score

1^/10
behavioral1 behavioral2
- Target
  
  百分百阿里旺旺群发器(淘宝版)/Comdlg32.ocx
- Size
  
  136KB
- MD5
  
  3ec0a48ed8d8a019175cfa3952ccb3b7
- SHA1
  
  075ffa431a55a272c2cdfe465ac130ab654ba9e8
- SHA256
  
  f9ecca1f6718f7ab711e3f675dce438930079ca8649f101fb41a93d85977149d
- SHA512
  
  0c51c31c0fa9d5b4909a5085bd72881c4e4867f90c0e576d5344b311f4e1d22ed7141ff359e43dcf53e8c84782bc34062c16dab04f63e73487e91b1db4cc33ca
- SSDEEP
  
  3072:489tWEjIsyhCkstAxTjnRfB0//TBtJrHo6hg7lLnN6N2TRqESdX7ofr7:48TW7MAxnRfSJLopXRH6m7
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  百分百阿里旺旺群发器(淘宝版)/MSCOMCT2.OCX
- Size
  
  629KB
- MD5
  
  8facb683ecab70fb85b26683f9c742a3
- SHA1
  
  abb30706e49e6fb34b7e15ba154e3ada596c95ec
- SHA256
  
  8204b2913504c9c921b551d2b028c0171fe11c3ee38db788517830987ba5b126
- SHA512
  
  2e15e8935ce0eb347d1962dc7bdc7273a9991759c19473eed4822479b2286fd27910c95b6a568b57353be80860ef1aa7681c5c469ad252e797d8eaa7205e2caa
- SSDEEP
  
  12288:Cq0LGmVm1qt7k67ySrMFSIRXNOL2K7lqNXCVox+2buPGweLC/KD7lQb3D:T0imVbNkdSmQ2K7lCXi2buHeLC/YO/
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  百分百阿里旺旺群发器(淘宝版)/MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  f7bbb7d79adb9e3adc13f3b3c33d3d4d
- SHA1
  
  cacb4b31d22419e6a9ddbffcf61ae42da0d5fb8a
- SHA256
  
  18a83d7a420a17fcb6f56eb3ba5362c975d32e5ded7553c6fd407f07bdb7b006
- SHA512
  
  4870ddbdf283d7f7f64d3f4bf556600a78804f6a94fc2ca7eb778e85d70b6d2d017aa35cbddf773b6a1b6d9a2813cd67fe54ede7859050a254a3e3c05616ae0e
- SSDEEP
  
  24576:mnt4M/pL1wAEIqSBanK6CC33VTj+1R8xRFLqqmbD1kWIAqPA:mPL15EIqS1e6q3FmKbt4
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  百分百阿里旺旺群发器(淘宝版)/RICHTX32.OCX
- Size
  
  198KB
- MD5
  
  722435ba4d18f1704b43e823a12e489a
- SHA1
  
  48f3c6e2e14e397055b667e2c8baa85177eb6d44
- SHA256
  
  7d59a8cc7a5c16b3b0e0e67c65cf98c45158909f95ca3a5c96b946fdee42c095
- SHA512
  
  38fe59c3b38fb7593a695554ead9e56febc068057b8e1c4bb27b6af21f5f2e15ddcfabda2707a72edcedeaa8b0f172a05408b88ae8efff3d259277af03f7de04
- SSDEEP
  
  3072:2ZyQLz5i+ES6n2xmV8HlHWuYap8WRN7skMqB/s9FdgJUXsedjuokSER/UmL/W63m:+/i+EbsI8HgNWRNGq+FdgJU3/j6pKrd
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  百分百阿里旺旺群发器(淘宝版)/file/705.5475.file
- Size
  
  154B
- MD5
  
  79269764faf77fe1d31c29eb79602a57
- SHA1
  
  33c97726cc40676845716d17768ee359fbe3edb5
- SHA256
  
  90d1d8da1a5713d6a07add875dc4b54f1d3fe40cc9f9db159528dd526d47d2a2
- SHA512
  
  11f27ece0d5ac799aef475b6de9c385608dfb12d339f83f4f44d5ac5a977e6c23a41fb31800aee6a06ab5a8b9bcf65da9c0ee05678b059e7a53f3b3c870cb122
Score

1^/10
behavioral11 behavioral12
- Target
  
  百分百阿里旺旺群发器(淘宝版)/plug/UnRAR.exe
- Size
  
  205KB
- MD5
  
  1ff0ee66c9b9d7115704f5ed7a1c277f
- SHA1
  
  4bd6b07676dea348355ed38ea942c4132894f96f
- SHA256
  
  0f4f27aa7b99bbb8ef38e2f1f8af01723d2c1ba030407c4c6bea550c98d7faad
- SHA512
  
  2570ca688f224afda48d62410e4d417069d77e1c52582f44390fdeb7525ae95eb3e1c365ee206e85443cbf5aca3f12e62dcc336c50344c308a6aaab27ef30e4d
- SSDEEP
  
  6144:iY+ijZpzWPlYDVbgN1Kp0m7l7IMEvqKOK8Dkc8i/rqksKiy:iY+ijZpzQXKuIlLkc8o
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  百分百阿里旺旺群发器(淘宝版)/plug/虚拟桌面.exe
- Size
  
  52KB
- MD5
  
  075a7d16519c8333a6caa51b88cd95e0
- SHA1
  
  2126bda4b3974c486e2a782a2593e52a71939120
- SHA256
  
  88e24cd3cb48878d0368da3c1414899bbc12d651fa5da5e7d463b1fdf1428453
- SHA512
  
  7e731da60ba10cb7b75ad3b4c1cfd4e002bbd90c6f970084c28dceef0d1a6a2e6cb9fdefa14e412574b732573ee70f2d625236c814a695271fcbad4c45ca61d1
- SSDEEP
  
  1536:hluuSfBFWY81QJ1lg/nkyB1jEzv+ihpEwuY:PuuSfqY81QJ1lg/nkyB1jEzv+ihKwuY
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  百分百阿里旺旺群发器(淘宝版)/update.exe
- Size
  
  88KB
- MD5
  
  c2b9066eadf96cf5174441ea02c806bd
- SHA1
  
  674e5b36ffca00c5a9a36b9f4bbf97035b317fc9
- SHA256
  
  ff85acbf031a4611fc195bee520b98cd9e8a2c8d7c4ece28be5150fd777d6cd9
- SHA512
  
  87cced682b4b7ac38fd5e790a9a560d54548014126bab922620173c012ccb219d2676c019e5a779248fcba9b26ea4750ea256f6818bc1229b2ec781b668fa500
- SSDEEP
  
  768:KbGUzyW7W0dE+XL5b0WaZHw8Exigrdlq0DWm2fP5JWYUhYPPYit25+EnQWXTzyWG:O0cW02+XWWS0igrs7fPUnpXCcW02
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  百分百阿里旺旺群发器(淘宝版)/手动输入验证码.exe
- Size
  
  64KB
- MD5
  
  9f4935fb3dcbe2242b8f49df49483883
- SHA1
  
  c02f496e8642e44af2995ad8b3c62591a38ba9b9
- SHA256
  
  c0de7f3f169f737835211733b666d21f56bb0f740ae23596e49decebd5c6ff21
- SHA512
  
  2776b785afe197f90ec467a9f3348fab7ee321673611e1a4ee28d5a9fb568f0d9354147afadfbe87b9e8dd2c0b827bca229e49f80f41828b96683dfe8d421104
- SSDEEP
  
  768:/AllfbMuPfgkJfx3ntRetk4L1cqPmQSs0lfbMuPfgkJfx3ntRetk4Xtg:/ArAg5XEkbq+EKAg5XEk4tg
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  百分百阿里旺旺群发器(淘宝版)/旺旺群发使用前必读文档.doc
- Size
  
  44KB
- MD5
  
  6ebc7658e79f63c9e7a435fdbeec2e20
- SHA1
  
  9395830b78ee90c780d085eaed248ddfbfcbc32a
- SHA256
  
  220d8a877e4281a3a48670d0e618a63657665d99380b22bdd8b8e0d619cf5fdd
- SHA512
  
  bc4064962046feafa6a487d98c20b9f7206d778bd329d6ce5e8fc9f4b38f2e0338693b1e929bb8da7c7775dc44afb577a0d516aaf301040ee0465c29b05e1832
- SSDEEP
  
  768:gKpFUC/dEuupT6ST3peao1CQ+JFnvGZ789:JpFh/nul6Sbxoc5jl
Score

4^/10

discovery
behavioral21 behavioral22
- Target
  
  百分百阿里旺旺群发器(淘宝版)/注册机/DLL/CustomWinlicenseSDK.dll
- Size
  
  132KB
- MD5
  
  786f2b5fc2aea73f7386ce64b4487445
- SHA1
  
  4d069891b7b73763ad47a594503fa3c9352e3579
- SHA256
  
  c7e47e8dfc3d80916f387a2beb5899971f1e0c8d31e24e4ec78c7bcf3a698c9b
- SHA512
  
  cc2cdaab1ff1f6fa17b3ca05dab6b17d367301731fabf75421bb402fb97da9a197257594219c065105e6d898e0cbca1fc2d85e0fbf417fa53df3c971a9cc614d
- SSDEEP
  
  1536:TItRzMh0Q1HyHWqCWH2SMTnbv2DOKcfGTk/B6MmFPdmMFlNtXvktiy:TDh0uyHWqCWH2SBqiJF3tXct
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  百分百阿里旺旺群发器(淘宝版)/注册机/EXE/ECCfunctions.dll
- Size
  
  212KB
- MD5
  
  6b30060f5c4f829c2134e411828f3981
- SHA1
  
  0e25174116fe7ddcc5c9a2785fb6429620cab389
- SHA256
  
  72b347b9990d06d8a72c66deed69a6ec14159cd6cb46ec23b202757e885b4e4a
- SHA512
  
  6fda8848eb6a5c252ebd19a2a296ecc90ec22bd34523389a55afeab344a09f49d286b34bc67dc5e5ebb2386173f6f762cbc2d9928307865a0e233a080747dff9
- SSDEEP
  
  3072:Kfof6T/oelUit28FfmQwgSpxX2vcVKbhj8OiZVEZfroH0B9p8uptCir:Kfof6zo0FfZwrLXj8bhmZmZG0B91
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  百分百阿里旺旺群发器(淘宝版)/注册机/EXE/WLGen_百分百阿里旺旺群发器(淘宝版) 9.1.exe
- Size
  
  3.3MB
- MD5
  
  3e5c8720ef3107fa57787d31748af11d
- SHA1
  
  da38c5fc89803af719a6ecbf69f1893b195d48f9
- SHA256
  
  840dd095998b1883b709df98f5104dc99a47fd1c315deded335174c7a1dc51ed
- SHA512
  
  c5e9f2ef428c483ce7362915eb0eb1ec126310123e665851cb993eab26e417eb156c2565986f838193223f5242fa1fe61aaeb00ef5bffbdace5233d8c7ed2942
- SSDEEP
  
  49152:pxAtxx+9BWm/ys/bOnkeoQnuXW+VZfu1PpKJE:pxAtn+3ys/bMaQnumQfu1PpK
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  百分百阿里旺旺群发器(淘宝版)/注册机/EXE/WinLicenseSDK.dll
- Size
  
  180KB
- MD5
  
  e7dadcd9e28bb6a3de3624bf5c1b49f6
- SHA1
  
  6cad279f85614fb0235683a18c3dd595dee961c7
- SHA256
  
  c197e14ee4df22fccf31649c98c2d3a95e643a2e6320e4088d2a8568a3ba50cb
- SHA512
  
  c129bfdcf41587a2836956f5f2aebcd7cbe477e0db444b800600c11e7b77cd4156f7fd5a8d9aa2395af9b0832d2a580f67549d95f41a518326bf026e06c16746
- SSDEEP
  
  3072:UGJ15hAIUh/+le4Q2rBK3Zm9bnZ4tXKi:UI15hAIU8lBBK3ZcLj
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  百分百阿里旺旺群发器(淘宝版)/百分百(旺旺群)群发软件.url
- Size
  
  85B
- MD5
  
  a88544d9e641f57727483824607550c2
- SHA1
  
  81e7dd023ebfa7944d01b6c2b84ae8bfdc7da38a
- SHA256
  
  f33741e518b5d617a415d4d1727a5e8ee03a1944d5a8f77ad0017dc29d5b519f
- SHA512
  
  500d793c071b093a309713b09c1151cdfe13eda67c3e85f31bf873622db6a0296af11403f48e71d45725a0dc637fbe9b1d2fc7a65f7a2d0466086676f009527d
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32