General
-
Target
a86dd6cd835414321897e4c3efc7efd1db9a9a82ef637bdf3d4492fb3f3314a7
-
Size
8.4MB
-
Sample
241111-ssayms1dkc
-
MD5
026938e5b61b509fed20f4c7dafa0dc1
-
SHA1
182a09b317eaf49ad9ba542b59a725c8a00f7322
-
SHA256
a86dd6cd835414321897e4c3efc7efd1db9a9a82ef637bdf3d4492fb3f3314a7
-
SHA512
ace80400f5dc1af35d217199bb9291f07af62149f7f7662a6aa99f05d018532db861b023d2936a0a54519eb6dcfdaab95c77ae5fc6af47c06f69a6bbcb1bdcee
-
SSDEEP
196608:nM4j32yUnz2Vk3zhXhtgFsXr6l7NcUkejPEtGzz:nrjQnymDhXhGs+jcUJA4f
Behavioral task
behavioral1
Sample
oCam v550/oCam v550.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
oCam v550/oCam v550.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
oCam v550/系统迷xitmi.com.url
Resource
win7-20241023-en
Behavioral task
behavioral4
Sample
oCam v550/系统迷xitmi.com.url
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
oCam v550/oCam v550.exe
-
Size
8.4MB
-
MD5
36e5becbfb576c0ec02a9be2499c262b
-
SHA1
928624ab016966becf891e0d629d99dd48edb555
-
SHA256
f9871b8486c70f0708a7d96576ce896ade436bfb3a8f461a7bcffa406b3fcd63
-
SHA512
bbbee06482f2939cdd37aeee6f90b776fcfa4bb4be959abc492210cbffde9f864a93fcd701cf7978c36fb18e668380662ff80a81da8eda4f3937c549df130d98
-
SSDEEP
196608:OYsSkbinxiHgBphhV1OD0XlA7drSo0q5oZQVD:pnIALhhVc06dSokSp
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
oCam v550/系统迷xitmi.com.url
-
Size
112B
-
MD5
557792810d58dcaae70dc8c89a556861
-
SHA1
5d19d7a8aad2bedc6b481d9a4b85126aba60ae13
-
SHA256
6d3813a3a39b6098b541e971f54c90b2c2c63132ac197596e1e37b8929b0a7eb
-
SHA512
0502b248d44d4ff43128731836f7d5bc6e890fdd9751bd40858d5470a449616130695b402537f0bbe76c467d0eb5d4692529b8226254decbd55cc87c076ef493
Score1/10 -