933d0314a5b3d5c507daa1032039bfa35ce96cdfb23e8d08043388e87b24b613 | Triage

Sharing

General

Target

0d0d75cd56055ac9d79962ae10740d50_JaffaCakes118
Size

98KB
Sample

240625-hapnzavdmc
MD5

0d0d75cd56055ac9d79962ae10740d50
SHA1

190890865c81f99de19a0023c68089c41007d7d2
SHA256

933d0314a5b3d5c507daa1032039bfa35ce96cdfb23e8d08043388e87b24b613
SHA512

b8e13ec41867e04ebf7a903c084de557a96ee6f757fd5168643bf345a90858cc34dac71078aa011dc7762cb071ed557eba9a967da6d91ffe555a5bdddc688c4d
SSDEEP

3072:9QIURTXJZeqgKJ+BCMCEYazYO3EpZPiFX:9sdgKJEYhpJix

Score

7^/10

Malware Config

Targets

- Target
  
  0d0d75cd56055ac9d79962ae10740d50_JaffaCakes118
- Size
  
  98KB
- MD5
  
  0d0d75cd56055ac9d79962ae10740d50
- SHA1
  
  190890865c81f99de19a0023c68089c41007d7d2
- SHA256
  
  933d0314a5b3d5c507daa1032039bfa35ce96cdfb23e8d08043388e87b24b613
- SHA512
  
  b8e13ec41867e04ebf7a903c084de557a96ee6f757fd5168643bf345a90858cc34dac71078aa011dc7762cb071ed557eba9a967da6d91ffe555a5bdddc688c4d
- SSDEEP
  
  3072:9QIURTXJZeqgKJ+BCMCEYazYO3EpZPiFX:9sdgKJEYhpJix
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/downloadmr.exe
- Size
  
  88KB
- MD5
  
  38322ae1f6f4a54afdb66a65a0ab64d6
- SHA1
  
  40eda2bce3848408c61a69e133966955c18fae2a
- SHA256
  
  bb307f8551c62fc7e86d981fd19b392b9cc08c47aeca0769e72d127965385685
- SHA512
  
  dfcdc72ec6f98fa4f871391ad441b21f227e4a98b0da638848455e2d788ab62ff87a01bcfa3e59a60308c6e94e6bf98040108d8e56b308764941303e405717e7
- SSDEEP
  
  1536:GEVExeiCRrtplsggiBhNyolVRCfq5h7wjVgKJYcYs8Rglb:GECxedhtplaGf5Eq5li7JYUIglb
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4