d7da206b085741953867b84b5cedd11eba843f35e1093384b8306b91c5a091a3

Sharing

Copy URL

Twitter E-mail

General

Target

4be13ac52504e560ca729ec5ad69534e_JaffaCakes118
Size

2.0MB
Sample

240516-tczgqscd55
MD5

4be13ac52504e560ca729ec5ad69534e
SHA1

d7a3197ccf6077ae5aecb73c2b09358515a1d525
SHA256

d7da206b085741953867b84b5cedd11eba843f35e1093384b8306b91c5a091a3
SHA512

4a35814a04aa5ae835f69fdc95b316ff9f8301e58c20737f4a90d16ed91506ec5436ee47f851c5c4233549c86f4ba1780796e67a7db938157c40ecb7aa64bb6a
SSDEEP

49152:iQAkRhHlShRKHTs/JW8UPuOMkFWqasbYF/kIUF5:bAkzMTVBW7PfMkFZzYF/1U

Score

4^/10

Malware Config

Targets

- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/ListDir.exe
- Size
  
  20KB
- MD5
  
  c75ab9682d5eb8b2719e332a0bdba5de
- SHA1
  
  b01feb3b01961ffdd9e822fdc3667038efc37cfd
- SHA256
  
  a8a60c97a24d9a410a58172d8875b3dd3210c8ce60b43292e8ba97cca83629cf
- SHA512
  
  103b5998627dff31f9b65478bcd7151f003467265a66a4566ed9477548ba4bf34f27d4d95985f788200beb011afae9634c98e31533397b879649bc60d9096024
- SSDEEP
  
  192:dqu1bO0CZfp+Qgx3OWoP1oyncphcGt02jdTJ:nt7UfH712pmGt02jdTJ
Score

3^/10
behavioral1 behavioral2
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/UFD_MP/FactoryDriver/Documents_for_SMI_Driver.doc
- Size
  
  391KB
- MD5
  
  69e50539ed3640a5233ad7963d83d779
- SHA1
  
  beb2d2cf8fa91c9b1f3350ec11704f25b9182288
- SHA256
  
  31ba4b475fbf247537245573f97e50ed946f57845282456c2fecdf94b0b73c48
- SHA512
  
  bf92f44570051246045d81928a545f3ad0fe6bb4c6982674d853397d80773972c19ddb64c06ae1d36709d2411a0d528aaebb3bee51a32b4d6e75914c5c64b249
- SSDEEP
  
  6144:MiVi+xZo/mAKBGLU9xYauC6p3qvte3Vm2mWQNgD1UsX+Sm8CA4ialo8Ij:MiViYZ0GQU967C6p3moVmJNLsX/PCAO
Score

4^/10
behavioral3 behavioral4
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/UFD_MP/RegCleaner_Ver1.002.exe
- Size
  
  144KB
- MD5
  
  133e44f6692e92834c1cae3eeda87842
- SHA1
  
  3c797f965e1449a570954dc4f6b133ee5a36cbf6
- SHA256
  
  47ca0d54f16eb9b8c2b4a9b978ffcc1e6b1183e0e2a54e7d74fddc9a18381ac9
- SHA512
  
  55df3bdb8b78c22a0483afff85fe4c57fbcd2e7209096f086d7085da0bf8bd8bfceb6ea929475189a0b08ed44fe51fb16bba59951fee0d3f288421c636066c5a
- SSDEEP
  
  3072:mpIEdf7vNWCB9nnDA+Nh4oUoMEWx7Erv8F+UxvliAPPLYmB6o8NnThaak6/ZDb0E:KISzNWce8T+bUAw
Score

1^/10
behavioral5 behavioral6
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/UFD_MP/restartHub.exe
- Size
  
  40KB
- MD5
  
  b94018273a032852e3319ea9b1d15ddf
- SHA1
  
  e7bf96eb90044f8e56b050c70f380552c09485c5
- SHA256
  
  aff95b455ef9a80b4fecd22a38efde92b933564db5b83bbc4f6ea7c004617b2e
- SHA512
  
  3705eab328176c28246978a3cd0d7cff09ee9acb654afe6a8c666d98311f99d90e44d94a618ff467460dd91b142a1638f2e2e88b366431815a86245924da2740
- SSDEEP
  
  384:BVVD/FkygqTh3FsgdkSoq0kaUrRkVbIOR25WvqY3ilTmlrrvYZv+/ly:TVD/ey1J1oNkkVh25WvqEilU/aKl
Score

1^/10
behavioral7 behavioral8
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/sm32Xtest_V2.03.08_v3.exe
- Size
  
  1.6MB
- MD5
  
  cba2b9e9c8603c3f6149903003dc5701
- SHA1
  
  80a96e2adb213f6719a30f8f62e5afcaae3dc72a
- SHA256
  
  2bc3e86a3fc1e0393d99499971da605fdcda62e1598e6fcb353bca80b17c6b15
- SHA512
  
  f13b66f3b724ad839fe8c2c67f056da364f01463843abbe33f1590e4956f69b620ad62a36dde4bcee4a13a43545d751fcb58388df13986dbdf917e786b670972
- SSDEEP
  
  24576:GLJIlqPTzziCn0SnS2bdrWNtl3bqZD96pOypL9Kd9LWgUfTELDxe6/clHM3dkaLn:GcET/v0WS2qs56pnd62M3dk8bxt
Score

4^/10
behavioral10 behavioral9
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/sm32Xtest_V2.03.32_v4.exe
- Size
  
  1.9MB
- MD5
  
  c2caab38c7ad349fa18b08e2e135b918
- SHA1
  
  89c839666208f3b90d6d4dff9fdb32b578f91fa0
- SHA256
  
  ffe8c13ba865969bf118b37d019a2bd4ddf2e5327bcddba4484560296bf3fbbe
- SHA512
  
  7b4392b55a96744e5e93264226ae0eaff400e9694d90bfdcf1a3306ab9f8d9d510d3864c6a0402b001640a08a8697bbd41d4f6f3ce777377d4a7921ea7ef8c44
- SSDEEP
  
  24576:n03XBEMI12ziUSULTzn1HhzCL89Ys1RPo5oQzPDNyYdZfmU4GY38CJ45eoeAUfX0:OOMI2fj1HRCgToiQjJpyMkPK0boxt
Score

4^/10
behavioral11 behavioral12
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/sm32Xtest_V2.03.50_v5_K0928.exe
- Size
  
  2.1MB
- MD5
  
  31b659e1bd7806be119c01117eee0b21
- SHA1
  
  9c3e74fd7bf4a3200aa0859d5d0dadc5637948cb
- SHA256
  
  89f44007912dee30e9c56587d4863ad66e45c7e8b0f26902c1e63ed3d0a02710
- SHA512
  
  e4911f384557ca5084eb38f4939ecc90a9955e6c3383dcf9344093618c19f050c2b3367d347baba8a712dc21769bea5189aae5ee6b9b4326c1cb75b298f44559
- SSDEEP
  
  24576:fN5MOBKqTbsvt6Yj88peFZ+cK8GEhf+aGOGDqD5E7aaXUJo/wi0DPOPCR2oo0UnI:NBZbsvgYwu2tqdeqrCm0Unrxixt
Score

4^/10
behavioral13 behavioral14
- Target
  
  TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/sm32Xtest_V2.03.64_v3_L0104.exe
- Size
  
  2.1MB
- MD5
  
  acf381761d8069885a110b43a8659f39
- SHA1
  
  32cdd6dce3aad16bc58c9e06e8c36c6521bdfbca
- SHA256
  
  075d3bf64b107b615693ab8390524b58e6075b5bbb4433911536036bd61e80a7
- SHA512
  
  70410af5f49a716432e7bc749f5fef489cfdf6ede72ff3fcccc125104211c456e0fee84c603127af44ebe39f76b93fe20f8dc5d276cbfa89fb64605ce403c005
- SSDEEP
  
  49152:+p6Vdob/hjzy+4MYC4P5kK5KBdV9+z2SyBZlz0xt:+idoj74MYC4P5h5KB7E2SyBZt4
Score

4^/10
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16