8cc40c19153968eeee40ad9a21cc0264a9bba09e800f118160ad8f30db3d14f6 | Triage

Sharing

General

Target

7d112da57ff6f5411b5281c4b4cda45c_JaffaCakes118
Size

106KB
Sample

240528-qehefsef4w
MD5

7d112da57ff6f5411b5281c4b4cda45c
SHA1

0d13bcd4656409bd10a48fcd5408d0bb10d7608c
SHA256

8cc40c19153968eeee40ad9a21cc0264a9bba09e800f118160ad8f30db3d14f6
SHA512

a3b34ed20c85fdf220f6fa807ffdd543c00384e96bcec0c4639d4a352684ec6b057f7058463c843e216b7acdb70026295374a8ac28687460bbcc0a98f27b1c52
SSDEEP

3072:8QIURTXJehPjgg/7CELlqaJWabolOHjVEB1QM:8soSgeK0a8xlODV8r

Score

7^/10

upx

Malware Config

Targets

- Target
  
  7d112da57ff6f5411b5281c4b4cda45c_JaffaCakes118
- Size
  
  106KB
- MD5
  
  7d112da57ff6f5411b5281c4b4cda45c
- SHA1
  
  0d13bcd4656409bd10a48fcd5408d0bb10d7608c
- SHA256
  
  8cc40c19153968eeee40ad9a21cc0264a9bba09e800f118160ad8f30db3d14f6
- SHA512
  
  a3b34ed20c85fdf220f6fa807ffdd543c00384e96bcec0c4639d4a352684ec6b057f7058463c843e216b7acdb70026295374a8ac28687460bbcc0a98f27b1c52
- SSDEEP
  
  3072:8QIURTXJehPjgg/7CELlqaJWabolOHjVEB1QM:8soSgeK0a8xlODV8r
Score

3^/10
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  3KB
- MD5
  
  75e7351a0f836b8659e6f315683c29f7
- SHA1
  
  66b733d1c978d68cadc245e7efbfcae32807429d
- SHA256
  
  7ffc549e7f679a08c77fa230654b77cdffb3444296bb7c6b8b5769db374b61ee
- SHA512
  
  f03400798b07ccca5e12fa119a586ee9444deb0d2419aced24d93fd84a4702d66864a71b40a11b04b1dbe56e36481cd6a644aec0347bc82bc7375b27bc403fe4
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  a78507ea1078cadaa8b2ec1a2e1d874f
- SHA1
  
  77fe20488444ebbaafc5b2c0743251a94edc3b8e
- SHA256
  
  93d1e681daebfd24ff9fab3952e8ae94eddbdfb3650937988c1fd8085991610e
- SHA512
  
  0399452c7305f23576d4175ec198ad8da8a530215e9304632b20bcb41a38fa0ba2c1c0b0b734b9f887851c92c7f2cf4cdfad403ace84e63318c0694402e1f270
- SSDEEP
  
  192:8trS5c+oKreH53n2fUC1lfeTf9OJCzD4/IVqh88GrgU6H:/jrd09O3/IcG8U6H
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/newadvsplash.dll
- Size
  
  8KB
- MD5
  
  7ee14dff57fb6e6c644b318d16768f4c
- SHA1
  
  9a5d5b31ab56ab01e9b0bd76c51b8b4605a8ccce
- SHA256
  
  53377d0710f551182edbab4150935425948535d11b92bf08a1c2dcf989723bd7
- SHA512
  
  0565ff2bdbdf044c5f90bd45475d478b48cdbd5e19569976291b1bdd703e61355410c65f29f2c9213faf56251beb16d342c8625288dad6afc670717b9636d51f
- SSDEEP
  
  96:qD5UDaGxZH52QhtZafDP9BTS9nPg83UniV/zRzGEl1DMl1zN6LmeYt4dO:W5UDaGxZH5T0j+9nl3BzG0IZ6LqN
Score

1^/10
behavioral7 behavioral8
- Target
  
  $TEMP/ERKeygen.exe
- Size
  
  42KB
- MD5
  
  ae85d895b0cc0bcb03c8be29f91c4b6a
- SHA1
  
  18539473030e93d4ae2d7058ce856e930517b134
- SHA256
  
  48e481e70755761643bc3285e80c43b108ab54549e7d370d0970027c1ad96c7c
- SHA512
  
  f4290acf2dc9c26ff3d340ca8dc4ce265e7cc398ef5b9dfb2c13a9fc7a5c68b771c969ecca35c7411c1730bc244250cf1b020500574f768b407331b771ea6d72
- SSDEEP
  
  768:fPjekHS0y0YDg4XFeN2FYCU6lIvKTjXglBoM2vpu3pTi7ZnzrEXC:fCkyhDg4XJYvkIvKvQMM2E3pTi7pzgX
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10