General

  • Target

    c7f06d387d2ef1bd1992285be181a492ca3257adabedb8c0d5ead45c6ec4972e

  • Size

    4.1MB

  • Sample

    241112-kgmt3a1rfk

  • MD5

    15332c467d50151c67691176ee6fd99c

  • SHA1

    bff209297600e24915d9ba7a5bf16688fc3d5334

  • SHA256

    c7f06d387d2ef1bd1992285be181a492ca3257adabedb8c0d5ead45c6ec4972e

  • SHA512

    2413c650ce0980c947a590fa39737dccaf7cd9cf195d56db908e8189b39d88b361d8a2f40a84163a29a93d4c48cc4031d33da4d5953e065591bcd76798dc3754

  • SSDEEP

    98304:aFokAwsff8PWhhijooSC8+XW4IV02GFQk93W8EaKEw:6AwsfkP4ozW+GfK2+Qw3WpZEw

Score
7/10

Malware Config

Targets

    • Target

      HEU_KMS_Activator_v42.3.1/HEU_KMS_Activator_v42.3.1.exe

    • Size

      4.1MB

    • MD5

      c0e634bfbe34c9a4a6fa46e69ba104da

    • SHA1

      dd621d3672a2188b9195eb7ae8b67a48c48132ee

    • SHA256

      262031f52a2eab8b0794c548ec3c5b24e27dadca7faa63dbc803a42b43628c62

    • SHA512

      ed08318f2e1da7b7d7330d78ac2e521e6b26b7fb858a39d9153f4f9602324261ace0254e67dbe4085c36e1f0ed04ad50ea4731c421941f8a1e6f08dde438481d

    • SSDEEP

      98304:u+S9bgXa7fsVsnpwlCIYS6SXUiMTa2sRyk7V8aeOq8:VMcXa70VGCrCSkZe2+y0V8fP8

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      HEU_KMS_Activator_v42.3.1/爱纯净官网.url

    • Size

      239B

    • MD5

      1010347dd74981a705f9fa2f0ed23aee

    • SHA1

      19b3f51cc469be8ae0245953d3cc8d403bc5b0a4

    • SHA256

      88f334cdc26a2adf5c75080973c4ff5d306b3d28c569fb8fd0349d4bd6dcf5a4

    • SHA512

      a6e5d8d9d4c638f39a9128a21c5e23c8e140f7a70fc63c202eabb3ff166aaf948f134326a70c9cfd2d6fd0d810dd00b98803fcbdac33ebf57ec91e8b8a4663bc

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks