1234fca475092501d14959a1150d53c1817759cfb3960376640065467590cd66 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

6a37efdff3...18.exe

windows7-x64

7

6a37efdff3...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.exe

windows7-x64

7

$PLUGINSDI...er.exe

windows10-2004-x64

7

$PLUGINSDI...BI.exe

windows7-x64

3

$PLUGINSDI...BI.exe

windows10-2004-x64

3

$PLUGINSDI...cc.exe

windows7-x64

7

$PLUGINSDI...cc.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ed.htm

windows7-x64

1

$PLUGINSDI...ed.htm

windows10-2004-x64

1

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...lp.dll

windows7-x64

1

$PLUGINSDI...lp.dll

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...ay.dll

windows7-x64

7

$PLUGINSDI...ay.dll

windows10-2004-x64

7

$PLUGINSDI...te.exe

windows7-x64

7

$PLUGINSDI...te.exe

windows10-2004-x64

7

$PLUGINSDI...st.dll

windows7-x64

1

$PLUGINSDI...st.dll

windows10-2004-x64

3

$PLUGINSDIR/xml.dll

windows7-x64

3

$PLUGINSDIR/xml.dll

windows10-2004-x64

3

Analysis

max time kernel
130s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
23-05-2024 07:38

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

6a37efdff304091d8c708f2ae57be4ed_JaffaCakes118.exe

Resource

win7-20240419-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

6a37efdff304091d8c708f2ae57be4ed_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/$_354_/ProxyInstaller.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/$_354_/ProxyInstaller.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/$_355_/BI.exe

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/$_355_/BI.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/$_356_/DownloadAcc.exe

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/$_356_/DownloadAcc.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/BunndleOfferManager.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/BunndleOfferManager.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

$PLUGINSDIR/Failed.htm

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral12

Sample

$PLUGINSDIR/Failed.htm

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral13

Sample

$PLUGINSDIR/FirefoxHandler.dll

Resource

win7-20240215-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

$PLUGINSDIR/FirefoxHandler.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

$PLUGINSDIR/OCSetupHlp.dll

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

$PLUGINSDIR/OCSetupHlp.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

$PLUGINSDIR/execDos.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

$PLUGINSDIR/execDos.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

$PLUGINSDIR/inetc.dll

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral22

Sample

$PLUGINSDIR/inetc.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral23

Sample

$PLUGINSDIR/nsArray.dll

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral24

Sample

$PLUGINSDIR/nsArray.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral25

Sample

$PLUGINSDIR/wajam_validate.exe

Resource

win7-20240419-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

$PLUGINSDIR/wajam_validate.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

$PLUGINSDIR/webapphost.dll

Resource

win7-20231129-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/webapphost.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/xml.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/xml.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

$PLUGINSDIR/$_355_/BI.exe
Size

65KB
MD5

0781655ec56f48f0878cf9b8cfb96a26
SHA1

b72a9d7e146df7d10a3f1483c9a9d32c224b9fdb
SHA256

6122edbae7a047d7ea93fa7cf9383cbefca9e18b571c9f183f9a1bfd6d2faa77
SHA512

7d21d5d36bbd25cc63163387f70d4d01c68bbb99c94481ca33f494f4954c7e7e1b02c77d9297892373575751ec9825264b4af926c844f58abfb6a24ead5e1309
SSDEEP

1536:fVdePelp2Xy+tuQOzOYE5aXPnq9F8RSZ7dcZYl2:YweqOYEUXPnqsqzl2

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\$_355_\BI.exe
"C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\$_355_\BI.exe"
1⤵
PID:1420

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy