Overview

overview

7

Static

static

7

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...PI.vbs

windows7-x64

1

云霞工�...PI.vbs

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

7

云霞工�...��.exe

windows10-2004-x64

7

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

云霞工�...��.exe

windows7-x64

1

云霞工�...��.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    25f650ee1062d81dabed6386a327dec7_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240704-x2e16sxana

  • MD5

    25f650ee1062d81dabed6386a327dec7

  • SHA1

    4d3258f03898e96830c5b0450a14f293187707a2

  • SHA256

    6f52ab619f70b64019b07867aeca2b46ff238cc19d1a247f478f12ad019de657

  • SHA512

    bab3ced9dcfadafa0d88d60317ee4cfc7590d1a9f127b5ca352206ac2f107afb9cc89273a63b6c02b34317dd3b60ad10a54790879852b122a2a9fa1801727fbc

  • SSDEEP

    49152:nEtbE/snXGd5cnGU3bygSM4+SLU7oQ4fmxmUwe2F02Eqbb2RX8:nCNnXGd5cnGUr0/LcoVmx7n8bE8

Score
7/10
aspackv2

Malware Config

Targets

    • Target

      云霞工具箱1.0/API浏览器.exe

    • Size

      17KB

    • MD5

      bdacfaabc73d5278d4079bfe47131c9e

    • SHA1

      1d9317b595fa776e4415fc146ffdd3ae517252fd

    • SHA256

      306d7aeaf2f85f1f2d8835d2800ef941fa6c8cb9266f2854d41e4a6f23f877ce

    • SHA512

      0a81510f69b0bfa53f210f03e2e586670469ce0fce3b919fefc216898bc32d61312bf9912275ae6452064e12700c9262dbf4666dfd12c9c581cdac9343e676a0

    • SSDEEP

      384:ePj37gV5n6vi2TpFbEAxvr6+e9Pfqbn1zCj:ebe96v1T7x+ha5zCj

    Score
    1/10
    behavioral1behavioral2

    • Target

      云霞工具箱1.0/QQ随意聊天器.exe

    • Size

      52KB

    • MD5

      2e1f94765882eecb2528574a42a982fe

    • SHA1

      79168c37f2dc8c2c2232b4b0e70a5b358fa719bf

    • SHA256

      915d0001b8b889a6fa19ebca5990662bb5fe653a635b8e3bdff83c84b6012616

    • SHA512

      7ba5a895acb58c1e84f80d68680e0e43eae94d191281eb05c33eb0751c07c7294308702afc66bd0e25cb18b63121e71dd3acd01741963d588723580b830b682b

    • SSDEEP

      1536:C8tdDLtBo1aWrt5qdvLCKr7yxXMgMQSX9x:C8j2S9B7U8VQSb

    Score
    1/10
    behavioral3behavioral4

    • Target

      云霞工具箱1.0/WIN32API.TXT

    • Size

      653KB

    • MD5

      2aad0a4b2adebac1d42b062aa0802650

    • SHA1

      57f10a1e79b6f1a083dfab190ccc3a220de09787

    • SHA256

      0b2cd585a364e3765bd2e8f76ee8be4f3c5240a86c3686210e739482fb6d6691

    • SHA512

      81ad3e809d5ecae57459adf0fc0877a98cbd712755fcc04d82eec6939efe8ab68637c9fadcc74939d8b74a32ec6020bfb38322b128da02fa54e5ca8e592be2eb

    • SSDEEP

      6144:K8cZpa5lcBV3A8Bi91TM/ebIQI4wSFx0SVm7YkN1MHp50yynrh9RvYUfMam:iWSBi9dM/GIZSF5VLM1MJ57yndCL

    Score
    1/10
    behavioral5behavioral6

    • Target

      云霞工具箱1.0/云霞工具箱.exe

    • Size

      1.5MB

    • MD5

      c3bee1ecbba3faed90d1643ad756fb35

    • SHA1

      1a51f1ad893d4cb8775c7e33739653d28e75e222

    • SHA256

      58fc7043aa452ed3b2db6c04ed40ad05b3286a7d04cf70ac8ac77e66e874e9ea

    • SHA512

      b4a1a4c120a1fa45d60b2fcfec93085c2f547ee3007ad0aee0c998eefba27f3af556a5e5a50771f9915efa54259d53452276240cfb88dfc53b260bc43e18232b

    • SSDEEP

      24576:5F662rX9dNA1oFGjllPBon+G4jXTnD4cQ807qKl7szbjNiYHsjgRveh:5F662rXTC1mGBlPBNGWnDRgqSsztgE4h

    Score
    7/10

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral7behavioral8

    • Target

      云霞工具箱1.0/区位码查询器.exe

    • Size

      35KB

    • MD5

      6e907fcb6e0a7d024d4d8bf97f53a83c

    • SHA1

      80830a16e86c08d24f7a438fef1d3d338dc545c1

    • SHA256

      4ffd573198c0992a343008546dcce910cc30a6bd5f5f8465616a25f715ccbfdb

    • SHA512

      7bad0abe7ce8d80996e8d2c8b73f7a472a3519bb90586d7d9ad529420c37be31f5a4f0540a7ab500a6dd33fe781bc3ac0254a7b7184e7999df11b33056fab79d

    • SSDEEP

      768:rv6PCVASkuATwY++OAL3xC7Pxeha5HJi1OhI6+:QCZn1X+/9C7kgJiZF

    Score
    1/10
    behavioral10behavioral9

    • Target

      云霞工具箱1.0/屏幕取色器.exe

    • Size

      49KB

    • MD5

      99b4fae483b28e59de0cd568b8c5537d

    • SHA1

      72181b6eaf25367a21c474fe409177f62ad72d4f

    • SHA256

      db482ad4750f837321886b9996161fbf68a5a0bd2641554d21480b473b64a2fb

    • SHA512

      1b361afa8512116580e43a7041c798b887bc20abbf10a346ab72fdafe3aa221d17ab1a6b5d304cbf1c0983b6c14037c34bf2ad7ff43ba62dd99ef59a691f93b4

    • SSDEEP

      768:HBdJCajY9KW6p1FHWscm/f5bqdh9xOha5YI1K9lJ6i:H2eF2dyShOLI1Fi

    Score
    1/10
    behavioral11behavioral12

    • Target

      云霞工具箱1.0/文件加密器.exe

    • Size

      32KB

    • MD5

      4769150faf160b4730536788aeaff918

    • SHA1

      9bf51b5a91a693ad2998153e1f081f3041349a6e

    • SHA256

      792366e323fe542fbaa0cf628560f7b1f881db66e491cc56bdca282edba77860

    • SHA512

      f91d8b025e8f20d15d1177a3539f3b092009c52246c81708b7b5f6c793f5abdb60aba3c8b616c5c239f8ed52f9059a97e00dc6611cb5ce60bbfa552798ae3b0e

    • SSDEEP

      384:9Nchi3l9WD0SSy9aUj2gL0dWsjAxPr6+e9Pfqbn1Hz9egWLD/u:giWvOI0os0xeha5HzOP/u

    Score
    1/10
    behavioral13behavioral14

    • Target

      云霞工具箱1.0/普通密码查看器.exe

    • Size

      189KB

    • MD5

      9636d654ff6ad73a7613708b686dc7a6

    • SHA1

      e1f36aad9303a6b1d76c12284eec28fcba274623

    • SHA256

      9b8b2354fb99df62f2d313b0f1526dea395e205d8e6863f1912c48f855aff7f2

    • SHA512

      1e4358725fd43f473616a4be925faa67e1a010d5cf64fdf3a1517c283305062a6a1b29d8a098acea53f94b4c796cc9299c4e33db9477d32c46e75be9164a8ccb

    • SSDEEP

      3072:Hk9UHOozKY5iZM+Pz5fARZPNzfRtC/PdDRSL+dw+:xHOQKY5Y5fAHPNzptMPdDF

    Score
    1/10
    behavioral15behavioral16

    • Target

      云霞工具箱1.0/游戏存盘文件修改器.exe

    • Size

      56KB

    • MD5

      79512e129d85270c93c3147f160916a0

    • SHA1

      877eaab629d1ae09c1e3988b0847871db0532037

    • SHA256

      f1a56adfd2b6b69caaaf5dcdbd2d58c137a03d8422e238cdcea09f09a70ce269

    • SHA512

      d1e348364c5f33062c5007edf79ee04b1d786ffcaa79cebc20b0b1109b777655c415f97699fb2339a06d915609f7fbaeb8a6ed1bbca4e09a5a02eee172eb5c79

    • SSDEEP

      768:kZagBjMQkYBHGam/aKi4f34tz4gZom0BxCha5V7v4DuQQIwXZ:kQgBcJaeXiEotz4gZom0uK7v4DW5Z

    Score
    1/10
    behavioral17behavioral18

    • Target

      云霞工具箱1.0/窗体控制器.exe

    • Size

      15KB

    • MD5

      855c9ca2bd0f26326d1d7f41e87ef4e8

    • SHA1

      289667bae4b64c6ea7c75b24df61df376e79cb95

    • SHA256

      9072ff2b0f974ca708946541a25e73ee2362d9421ef319fa357eea13672e7cd3

    • SHA512

      91da57d82bb922acc0b8ce87ae78aad4a9de09181856f799e4f23cc701f585e66131f3c144893667bfaa3342a9c5c04d1ed8e25a2e69ed30e08aecbd7cfc0636

    • SSDEEP

      384:wDVLYu8YPih1vhNDhZAxPr6+e9Pfqbn1HI1:wDVLkh13DhKxeha5HI1

    Score
    1/10
    behavioral19behavioral20

    • Target

      云霞工具箱1.0/音乐播放器.exe

    • Size

      46KB

    • MD5

      10b5a0d555f60ec3fc1aa080d58eb4f6

    • SHA1

      5e4d89110b518ae6d47fa96be6546b877f745cfa

    • SHA256

      83fbc4b6a9b1180e925c77f508d79fb613b40429cbda0e2106931776580453a6

    • SHA512

      acdd3c2eca13d73f693cbf04262ed7a1f2ddddd9a3e2b0c8d8e256a94e51bd2643bed6c8620c093b57799bc95a35a79cb072633b8ccfe0269edc4346eaff441c

    • SSDEEP

      768:EUJ+s52Yq2HjiTCi8goWlHZb397emV01MIf+AMGzoZmJDBFLxSha5DJw7V:5j0Cg3b5HA+AMGzeEzMmA

    Score
    1/10
    behavioral21behavioral22

MITRE ATT&CK Matrix

Tasks