Overview

overview

5

Static

static

3

通关新/haoi.dll

windows7-x64

3

通关新/haoi.dll

windows10-2004-x64

3

通关新/qs.dll

windows7-x64

3

通关新/qs.dll

windows10-2004-x64

3

通关新/...er.exe

windows7-x64

1

通关新/...er.exe

windows10-2004-x64

1

通关新/...3f.exe

windows7-x64

1

通关新/...3f.exe

windows10-2004-x64

1

通关新/....6.exe

windows7-x64

5

通关新/....6.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0f2fc1d712ebab0a642ecb2e34909c85500d14e8b4c4adbda7aa55a553480758

  • Size

    8.9MB

  • Sample

    241119-wkmt1syhmf

  • MD5

    a78dd09de5ba714f67149b20d35e6be7

  • SHA1

    57594032e07d5a3d0a8bfd3d1ecbd129745b0fbe

  • SHA256

    0f2fc1d712ebab0a642ecb2e34909c85500d14e8b4c4adbda7aa55a553480758

  • SHA512

    4c4776b6ff45ec189718b6152872faeae91cbc5f84996506ab7ac40864e2af3d85f53bc1e1a1f0f0cfa316366c24fd93e20534d1d5df76de1e3675ea8b0c2242

  • SSDEEP

    196608:jwFIAfzcMVhDd0cFO1F5Z3b8W8V2+4envXlATIP8IJUhruj4rI86tl2CJrwLWh:M++zhJ0cFOJZr8pI1Kz8R1uAI802Aw8

Score
5/10
discoveryupx

Malware Config

Targets

    • Target

      通关新/haoi.dll

    • Size

      160KB

    • MD5

      b31c03d9f4d28e6009637e5e06f05eb3

    • SHA1

      a96f8c2e8a97d19e15be0d6abba11c380ece43eb

    • SHA256

      0b53c47ddc88b7e3e5581446304c2c1bb3c9f71b09b75c8b0f70d63c8a08096d

    • SHA512

      01aabdf55b4ffddb63c389e3ec4db9ba0699f45cc9ecfd948ea8994cf210b9a784699fdaef68d0fa81ca6df256681d08c3df9ed0447e015b1a0f1caddbb97851

    • SSDEEP

      3072:I1rkvXP+/Vu4LesoDew+4PgTXSzurHRtyfWZZ7v3wvnCjcs21BZQJ2/hQ9bG+:U4Iu4Les0ew+zjnRtAqVqpHh/hoG+

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      通关新/qs.dll

    • Size

      14KB

    • MD5

      521621c73ec3b337bbec2610a4bcb779

    • SHA1

      5e46f3e157b91302b50badc15b424f1a48e21548

    • SHA256

      12f20cf39720740c8cc8f0c9e8463ca1aa8c78018ad900a467270acfaad70f15

    • SHA512

      89d65385e3fe9acf7ad97280df24244b7acb4c5c3a3227e47a1b3c8f68a693baedb24f6901b82a88b7d5488ae520dfcdd7a478c01f9c56b40f670cdb6c41e33b

    • SSDEEP

      192:RT62w6aetGe+spdQTvVckNUshPCIBH2ckTlgENyQ3+JvsXd10tDOj039jOhirmot:cFeke9kNUshwlovsXdmtKj0tj8voG1Q

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      通关新/系统配置/ProcessHider.exe

    • Size

      642KB

    • MD5

      5551b5f2a3f14636f8947f112a7ca6aa

    • SHA1

      fad4b84c8c2d58f88e0013a10d02417097ff2e84

    • SHA256

      c3bf1743cd48c6c3f8a705ffa96b7f005652f39fe359c25c443b2fb3f31f3858

    • SHA512

      6a3dd4b9d97fce3aac31ec050b9b637e3b835d76e15c3ed9ee03241e80148c569a15e45489a023fb600373b7352b38034da84f47a5ad1f20e5baea7bc012ef8d

    • SSDEEP

      6144:Fpf7IIyjAjrYs72FunmWN+b6qvbnnX74BXEpRYusJLnPFAKWBnZaQ:FpfF+AJqfiahnr8XEpRXuLnifBwQ

    Score
    1/10
    behavioral5behavioral6

    • Target

      通关新/系统配置/f2f3f.exe

    • Size

      117KB

    • MD5

      88aae879bc06c0d12973cbc23cfb33ef

    • SHA1

      1d5312d43ae6df5da9d8dbaf7ef1901008482c80

    • SHA256

      e0f62f22199bb5168b70b72b944f37d8367f33df4504ba8eb4a308fe54b30872

    • SHA512

      f7f9aab1f27777bfe1f9cd75a5317714b701955182a81ece0e1cdd3344c2d4eb34d7a27ebb7864d71a2e97424c1d458d950d52e9c11c3380af55820c995ab0f4

    • SSDEEP

      1536:ck/jSUVjwswSc8WX4q1GlvThB5RTJUl1nGDa9xrB49+VpCkBijn2:R+Eg4q1GJThB5RTJUl1Tjm9+VpRkjn

    Score
    1/10
    behavioral7behavioral8

    • Target

      通关新/通关2.6.exe

    • Size

      7.4MB

    • MD5

      e2bc947ef0865d9bb64d87f08f940ae5

    • SHA1

      b5559a975e0a6a330c516bd9a293516dcb417a44

    • SHA256

      bffabb058815957783a36b680cc1b73aae6ecfa9b2e7bb9b4d4a4bc58d92d2ce

    • SHA512

      ce318d39200c9edc03aad93490f1550108e616d24b1f10eda483a5b671f0ad1df3fba2ffe3e73fd60081ab4c9b0975407cc6bc3fd3e6fff44f0d25d13e62849d

    • SSDEEP

      98304:I3X8T06t60QV5aWQMijBmGV27dA9jlb1nia:IH8JiNi9TmdAnbNia

    Score
    5/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks