General

  • Target

    51fc52cb3a9e0d755c04068ef860fd208d264bc4a16213159fe8cca5e74f6573

  • Size

    4.1MB

  • Sample

    241024-zjbxxatdqd

  • MD5

    8f3929b51d0b101319edfc568d8cd94c

  • SHA1

    e95bbee883ee4c62275ead8767299f76996ac2ae

  • SHA256

    51fc52cb3a9e0d755c04068ef860fd208d264bc4a16213159fe8cca5e74f6573

  • SHA512

    098dd6a849e46d366d8d7361566178771113aada6ff78d3b0a6835c8221a2a3171f9c530485908d9b4188cfcc423a7f01188b0ea33e9afb8806bd5a08c1e2a73

  • SSDEEP

    98304:xH7CH1kZfNLkdiMq26+GMpaWRxDSaXOeABO2WzWk97+tagKYc:xH7y1kZFLk9ZBREa+pA2AWY7+EjYc

Score
7/10

Malware Config

Targets

    • Target

      HEU_KMS_Activator_v42.3.0/!果核剥壳 - 全网更新最快.url

    • Size

      121B

    • MD5

      9998fc28a5e1bfb9889153d60e548139

    • SHA1

      f73d09911141e784b4380fb394466ec4cb819834

    • SHA256

      1f6d66e3c6150ddf23d1137fa9d4b3f86e54c19e29294df76fa5d5d9c05bf003

    • SHA512

      1fcce1ff3a1addb539724fe596995682e6518b6674f0ebb8c2b8af41cc79d67097dbb17f787360db9d6170b4a143f5cfd7f0b18c9f04a694967797493976d5d5

    Score
    1/10
    • Target

      HEU_KMS_Activator_v42.3.0/HEU_KMS_Activator_v42.3.0.exe

    • Size

      4.1MB

    • MD5

      440dc333c4a37d73d2c630045bec12f9

    • SHA1

      13e3cc79b9e6e3b886ad03f66c9d468df6b50b80

    • SHA256

      a8ef5fe0ef18102e7976ad264da9a701595b91b39d4d69ee1cfe5aecf436a9a5

    • SHA512

      70e3463ab620999ccc7bdd16ee0a277a38bd96aefe591064fdcaba5a9597f28e364c79ca2347db649233fc9e943747d0da50f07d241d1c75112ee69488de956a

    • SSDEEP

      98304:T+S9bgRa7fzRedEuW2UCYMza8vTp6SXUiMTa2sRyk7V89eOq8:yMcRa7bRePh7vESkZe2+y0V8EP8

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks