General

  • Target

    a86dd6cd835414321897e4c3efc7efd1db9a9a82ef637bdf3d4492fb3f3314a7

  • Size

    8.4MB

  • Sample

    241111-ssayms1dkc

  • MD5

    026938e5b61b509fed20f4c7dafa0dc1

  • SHA1

    182a09b317eaf49ad9ba542b59a725c8a00f7322

  • SHA256

    a86dd6cd835414321897e4c3efc7efd1db9a9a82ef637bdf3d4492fb3f3314a7

  • SHA512

    ace80400f5dc1af35d217199bb9291f07af62149f7f7662a6aa99f05d018532db861b023d2936a0a54519eb6dcfdaab95c77ae5fc6af47c06f69a6bbcb1bdcee

  • SSDEEP

    196608:nM4j32yUnz2Vk3zhXhtgFsXr6l7NcUkejPEtGzz:nrjQnymDhXhGs+jcUJA4f

Score
7/10

Malware Config

Targets

    • Target

      oCam v550/oCam v550.exe

    • Size

      8.4MB

    • MD5

      36e5becbfb576c0ec02a9be2499c262b

    • SHA1

      928624ab016966becf891e0d629d99dd48edb555

    • SHA256

      f9871b8486c70f0708a7d96576ce896ade436bfb3a8f461a7bcffa406b3fcd63

    • SHA512

      bbbee06482f2939cdd37aeee6f90b776fcfa4bb4be959abc492210cbffde9f864a93fcd701cf7978c36fb18e668380662ff80a81da8eda4f3937c549df130d98

    • SSDEEP

      196608:OYsSkbinxiHgBphhV1OD0XlA7drSo0q5oZQVD:pnIALhhVc06dSokSp

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      oCam v550/系统迷xitmi.com.url

    • Size

      112B

    • MD5

      557792810d58dcaae70dc8c89a556861

    • SHA1

      5d19d7a8aad2bedc6b481d9a4b85126aba60ae13

    • SHA256

      6d3813a3a39b6098b541e971f54c90b2c2c63132ac197596e1e37b8929b0a7eb

    • SHA512

      0502b248d44d4ff43128731836f7d5bc6e890fdd9751bd40858d5470a449616130695b402537f0bbe76c467d0eb5d4692529b8226254decbd55cc87c076ef493

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks