f37e12cf0bfb1907cdda811cb422e8b1b287ebf17b09b68038408c88d986d935 | Triage

Submit
Reports

Overview

overview

5

Static

static

3

ucbug�...om.url

windows7-x64

1

ucbug�...om.url

windows10-2004-x64

1

斩仙.exe

windows7-x64

5

斩仙.exe

windows10-2004-x64

5

斩仙控制台.exe

windows7-x64

5

斩仙控制台.exe

windows10-2004-x64

5

�...��.url

windows7-x64

1

�...��.url

windows10-2004-x64

1

Sharing

General

Target

5364c7f4cfc0865cf9a6a1a06bc94f38_JaffaCakes118
Size

2.0MB
Sample

241017-ygjz3asfra
MD5

5364c7f4cfc0865cf9a6a1a06bc94f38
SHA1

8046b6db8e78e5cd17c29ee0b35a551897d668b3
SHA256

f37e12cf0bfb1907cdda811cb422e8b1b287ebf17b09b68038408c88d986d935
SHA512

665b3bbf736f3e669ea4df1a157864c35e7f8a9d4ed69d0b6e1fd03a49e55ec40b6af052b6eb707c747182cd3e10b3cd5adea7255621983e7f9307b488754839
SSDEEP

49152:BHm/bviYFbbcgdSBWkfO0diLmx1mDBKGpjgO4qsZ2HQCY:BHIGxgdSAuO4emzmVTpV3sZ2Ho

Score

5^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ucbugϷ-www.ucbug.com.url

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ucbugϷ-www.ucbug.com.url

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

斩仙.exe

Resource

win7-20241010-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

斩仙.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

斩仙控制台.exe

Resource

win7-20240729-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

斩仙控制台.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

ucbug΢,ȡҼ.url

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

ucbug΢,ȡҼ.url

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  ucbugϷ-www.ucbug.com.url
- Size
  
  208B
- MD5
  
  b158389fd2a34f1582fc7e1a60a07fdf
- SHA1
  
  6e616bb706993e007e13ffd27b9b5a57a09f1de9
- SHA256
  
  550fa00b7933a2cde3a16dbaa9da15c0ee004417750e0c530bd4fc9f96beeac2
- SHA512
  
  49ba6eb59289853bc18806676062f2c468e04e4aaaf79822f8cb749a92a802aa755be6d0fb36fc1e6a2fa58126401ddbc4a790652646eb9c65f9ae812a347c52
Score

1^/10
behavioral1 behavioral2
- Target
  
  斩仙.exe
- Size
  
  1.4MB
- MD5
  
  b3ff091339ab18ebefe79ac066204e4d
- SHA1
  
  39f35da39b7ccceb2b2e432c10f7d687d18dd437
- SHA256
  
  e653b7155331822deb3e7ee312732442f1e8f0d26eb1eed1cadee7c632387282
- SHA512
  
  c41f7c1bd4d0c0607a0465c0be0dce87d2068dd0bc9fc92bfc02f211331ce269d0c659addd5d8a8f11938a3190b2c533cab2e807647f5cb65d8641d914fcae7b
- SSDEEP
  
  24576:DqNYTNhiugHCjvJov721e8DOviS2XjO5msc2/Ymluror8FrrmqzwOqOugf:Dd4yS2DxylurFXLzdq8
Score

5^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  斩仙控制台.exe
- Size
  
  2.4MB
- MD5
  
  db92cfe42aeff7f1c0b6f8fe189f801e
- SHA1
  
  7792a08860b736e37a776512727b5672357c3046
- SHA256
  
  3afd5ecd2d784de4d47ebfb318f8c191ee3227d0b2a0e90cb59d41252906f27e
- SHA512
  
  aeb8aee06692d4baab7c3e268625b0ab2da0fbb7e12533401662d1c4f9d88909ec12f93e84a5273cea4c3d78395ec29759907466a436468ed8a6352163340172
- SSDEEP
  
  49152:nAKkEzF5VPbGW8UO5oKZenU7CvCqLfqSH4BSbJ1vl/zdqC+k:AlMF5VPZtO7UgCKgSSH4BAJl1QG
Score

5^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral5 behavioral6
- Target
  
  ucbug΢,ȡҼ.url
- Size
  
  363B
- MD5
  
  5fc210616db5f37835dc320a144178d3
- SHA1
  
  bab1ca93ee008d7c3229ca1479186aad97139862
- SHA256
  
  837cee343c5d8feb2ee4d1e7d1f2aac1bed308eb2926e09565a0277b8ee45325
- SHA512
  
  1fdde992e01f3628124e8d70f94fef7fba18b3640426613f600373068f9f375844c5d84578e519ef76c8bb1987a65eb02c14ef7ad22eebcf323ece5efc8daa92
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

© 2018-2025

Terms | Privacy