8f9376e37bec823803c286ebc6d743c91b50f8f020575a9274fcb7b103479fb2

Sharing

Copy URL

Twitter E-mail

General

Target

180ec4c86123d4e649f487d748a9558f_JaffaCakes118
Size

1.9MB
Sample

241006-phfvcstclr
MD5

180ec4c86123d4e649f487d748a9558f
SHA1

1f3d7af7c861d43240830a5f0bda89a903163454
SHA256

8f9376e37bec823803c286ebc6d743c91b50f8f020575a9274fcb7b103479fb2
SHA512

0df3ff8bb369e68d6a349a4ad5a7657576c24920fae0c7cb1f371fd6e8cd67efe8b7deeba5401f9d370dbc00481f8d92cc5b60ee4a6be4dc1fe0876043f2dc1b
SSDEEP

49152:ivSiNj3oCrkcHLK3pbMUzuOzB/9ulE9mcG5vZ:KSiNkCrVHLK3pVz0E90tZ

Score

6^/10

Malware Config

Targets

- Target
  
  theworld/!创e下载┆绿色软件天堂.URL
- Size
  
  340B
- MD5
  
  a22b6494598d6542ab9a8c781a9f3543
- SHA1
  
  72d3275d1a83c8571a58e04dc9d65a6bb9da3406
- SHA256
  
  98ac277133004e6f0b708847bc7acdfe5df3fba5ba6d1713b64417ee324b6729
- SHA512
  
  84d5da2796cf9af8a75c80ee7e764f45ea81de4b5261e4c88e7f65c942c3e349cb303fdf98419de02c3ff5ae6f6ec91eb5ae124b76d3751390127b931dbfe7be
Score

1^/10
behavioral1 behavioral2
- Target
  
  theworld/swf/cat.js
- Size
  
  18KB
- MD5
  
  f61b15f7124c2215d513d9ee2e59c5e6
- SHA1
  
  4a91af3abb3724d5a669e03984be88d0a5a4c7b8
- SHA256
  
  b99bd7f4ba7a8181a3950275f19a18a1eff37ca771c87723896ff7e24f6231da
- SHA512
  
  a2ee47240fac9b94ae17fd3322e2856f94ca9d4b11f419ded939e0235c41da711c0d48a5e1966f9df04d37b18ec2070149c82f36385e38af0146acdcfc70acda
- SSDEEP
  
  384:QYq9zc57AcHx5qkjbYJ6iGnDBcCF5wBTD9pdWzjRxFO7SHaLcEL9t0Ciz:QYq9Y57dR5qkjUJ6iGn+CF5wKFO+6LFk
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  theworld/theworld.exe
- Size
  
  1.4MB
- MD5
  
  b2f6a7a6051c4696e4a6ecad392dacce
- SHA1
  
  8279e73a3629f7c9602ace12cf613b378b2cab48
- SHA256
  
  c0aca9426db1c9edaa1c74495f01bb73f7c8c30be9f0ea1fe5c064bdefde6ce6
- SHA512
  
  1b86a3b66488038e8ce21b370b396da893dd37522036f79ea41c9e180f5d6fa1ccb0ca628d0b99181223394afb2e260a66c52abdb7714add20ba446fdbd58e39
- SSDEEP
  
  24576:1KPRGCmOTybrPjgFMMJHrx9xTOITPJbCSsTMBPTA2GLDCZ8uvcT:1Jwy6NTOITPJbVTAtCZ8uvi
Score

6^/10

bootkit discovery evasion persistence trojan
- Checks whether UAC is enabled
  evasion trojan
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral5 behavioral6
- Target
  
  theworld/淘宝返现武林.URL
- Size
  
  326B
- MD5
  
  6fd5df7cc6c1e2d74b2b7ba39de1d1ca
- SHA1
  
  649665809da764d8925d4d044ffc28a9b4f51a4c
- SHA256
  
  f583dc5ca2e7203079381c51cdb6cb1882defaf23d2dfe56a6fd576fbf31f37e
- SHA512
  
  24aee11ce506052ee828d07e9393c505cbf05867655d2ebaff61a7fc371aa627ca93c11a9722e26c6be5d5885af74c179e22aff1ab4d8584155f1d7c07eba8f3
Score

1^/10
behavioral7 behavioral8