CHINA-APT-Trojan (2)[.]zip | Triage

Submit
Reports

Overview

overview

6

Static

static

1

CHINA-APT-.../dlump

ubuntu-18.04-amd64

CHINA-APT-.../dlump

debian-9-armhf

CHINA-APT-.../dlump

debian-9-mips

CHINA-APT-.../dlump

debian-9-mipsel

CHINA-APT-...l1/ccc

ubuntu-22.04-amd64

1

CHINA-APT-...l1/kde

ubuntu-22.04-amd64

6

CHINA-APT-.../udevd

ubuntu-24.04-amd64

6

CHINA-APT-...ile.sh

ubuntu-18.04-amd64

CHINA-APT-...ile.sh

debian-9-armhf

CHINA-APT-...ile.sh

debian-9-mips

CHINA-APT-...ile.sh

debian-9-mipsel

CHINA-APT-...p/a.js

windows7-x64

3

CHINA-APT-...p/a.js

windows10-2004-x64

3

CHINA-APT-...yy1.js

windows7-x64

3

CHINA-APT-...yy1.js

windows10-2004-x64

3

CHINA-APT-...gin.js

windows7-x64

3

CHINA-APT-...gin.js

windows10-2004-x64

3

CHINA-APT-...l1/kde

ubuntu-24.04-amd64

6

CHINA-APT-.../udevd

ubuntu-24.04-amd64

6

CHINA-APT-...nux.so

ubuntu-22.04-amd64

1

CHINA-APT-...m/dbus

ubuntu-24.04-amd64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

CHINA-APT-Trojan/etc/init.d/dlump

Resource

ubuntu1804-amd64-20240729-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

CHINA-APT-Trojan/etc/init.d/dlump

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

CHINA-APT-Trojan/etc/init.d/dlump

Resource

debian9-mipsbe-20240729-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

CHINA-APT-Trojan/etc/init.d/dlump

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

CHINA-APT-Trojan/home/www/.Xl1/ccc

Resource

ubuntu2204-amd64-20240522.1-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

CHINA-APT-Trojan/home/www/.Xl1/kde

Resource

ubuntu2204-amd64-20240611-en

ubuntu-22.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

CHINA-APT-Trojan/home/www/.Xl1/udevd

Resource

ubuntu2404-amd64-20240729-en

discovery persistence

ubuntu-24.04-amd64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

CHINA-APT-Trojan/home/www/.profile.sh

Resource

ubuntu1804-amd64-20240508-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

CHINA-APT-Trojan/home/www/.profile.sh

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

CHINA-APT-Trojan/home/www/.profile.sh

Resource

debian9-mipsbe-20240729-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

CHINA-APT-Trojan/home/www/.profile.sh

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/WEB-INF/attache_temp/a.js

Resource

win7-20241023-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/WEB-INF/attache_temp/a.js

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/img/yy1.js

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/img/yy1.js

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/login.js

Resource

win7-20241023-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

CHINA-APT-Trojan/home/www/tomcat/webapps/login.js

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

CHINA-APT-Trojan/usr/bin/.Xl1/kde

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

CHINA-APT-Trojan/usr/bin/.Xl1/udevd

Resource

ubuntu2404-amd64-20240523-en

discovery persistence

ubuntu-24.04-amd64

3 signatures

150 seconds

Behavioral task

behavioral20

Sample

CHINA-APT-Trojan/usr/lib/libselinux.so

Resource

ubuntu2204-amd64-20240729-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

CHINA-APT-Trojan/usr/lib64/gdm/.gdm/dbus

Resource

ubuntu2404-amd64-20240523-en

antivm discovery evasion execution persistence

ubuntu-24.04-amd64

7 signatures

150 seconds

General

Target

CHINA-APT-Trojan (2).zip
Size

9.6MB
MD5

e197aac992348df4fc2c12cbee433f7e
SHA1

cdbbb6617d8937d17a1a9ef12750bee1cddf4562
SHA256

b938cc27a7964c045d6a614d174ae5b5a48448956a9ca495f02236c9101ce670
SHA512

ede1b934f01fd3f1ff979083de73e7165a5c22f7edba1a611a567d5a406f2a86f21bff59fcc8d2c0a4f662efbf17309eb89b2a581c5a13514f1f3b1667c2131d
SSDEEP

196608:fEhlwnz+BdrV2gKcTz362WpEhlwnz+BdrV2wKcTz362Wj:ilwz+BdhScTT5flwz+BdhkcTT5c

Score

1^/10

Malware Config

Signatures

Files

CHINA-APT-Trojan (2).zip
.zip
CHINA-APT-Trojan/etc/init.d/dlump
.sh linux
CHINA-APT-Trojan/etc/ld.so.preload
CHINA-APT-Trojan/home/www/.Xl1/ccc
.elf linux x64
CHINA-APT-Trojan/home/www/.Xl1/conf
CHINA-APT-Trojan/home/www/.Xl1/data/gphoto2
CHINA-APT-Trojan/home/www/.Xl1/data/icuio
CHINA-APT-Trojan/home/www/.Xl1/f1
CHINA-APT-Trojan/home/www/.Xl1/f2
CHINA-APT-Trojan/home/www/.Xl1/kde
.elf linux x64
CHINA-APT-Trojan/home/www/.Xl1/list
CHINA-APT-Trojan/home/www/.Xl1/udevd
.elf linux x64
CHINA-APT-Trojan/home/www/.bashrc
CHINA-APT-Trojan/home/www/.profile.sh
.sh linux
CHINA-APT-Trojan/home/www/tomcat/webapps/WEB-INF/attache_temp/a.jsp
.js
CHINA-APT-Trojan/home/www/tomcat/webapps/img/yy1.jsp
.js
CHINA-APT-Trojan/home/www/tomcat/webapps/login.jsp
.js
CHINA-APT-Trojan/usr/bin/.Xl1/conf
CHINA-APT-Trojan/usr/bin/.Xl1/data/gphoto2
CHINA-APT-Trojan/usr/bin/.Xl1/data/icuio
CHINA-APT-Trojan/usr/bin/.Xl1/f1
CHINA-APT-Trojan/usr/bin/.Xl1/f2
CHINA-APT-Trojan/usr/bin/.Xl1/kde
.elf linux x64
CHINA-APT-Trojan/usr/bin/.Xl1/list
CHINA-APT-Trojan/usr/bin/.Xl1/udevd
.elf linux x64
CHINA-APT-Trojan/usr/lib/libselinux.so
.elf linux x64
CHINA-APT-Trojan/usr/lib64/gdm/.gdm/dbus
.elf linux x64
CHINA-APT-Trojan/usr/lib64/gdm/.gdm/kdeinit
CHINA-APT-Trojan/usr/lib64/gdm/.gdm/pid

© 2018-2025

Terms | Privacy