c2d1d634206661c0070bf945f69344d35d82154d689593a853bbb228ed24253a

Sharing

Copy URL Twitter E-mail

General

Target

26ca9bfbe08f4ad8b6f7b26d577126a9_JaffaCakes118
Size

13.0MB
Sample

240705-kgy74axgrc
MD5

26ca9bfbe08f4ad8b6f7b26d577126a9
SHA1

c8dd204dc80e489b2366971d1cf28cfc8b4bb896
SHA256

c2d1d634206661c0070bf945f69344d35d82154d689593a853bbb228ed24253a
SHA512

ca612bac2b422fdcbf00626ed86a68026d2f2fb6af3f12a9ca4de3c75b6f0b266e7c8df0672aeade71a4ab26ec97519ffa09654e4beb21f1d0b6b1a3026526f9
SSDEEP

393216:v6K9wfESwqxVaKkzBZnSQwo2T9GECjlPJw:yKWsSwqxQ1cQD2rCjzw

Score

7^/10

aspackv2

Malware Config

Targets

- Target
  
  DATA/StarEnc.exe
- Size
  
  558KB
- MD5
  
  6313e34addd6081c3c5ed38b66c2ef90
- SHA1
  
  da230272833b0a58567f405d0bc3a5242efb841f
- SHA256
  
  f5eaf438dbd49418768cf803479d148876f9472c72dbce606e6b9fe3c6b4e35c
- SHA512
  
  18a6c269136079753f374ac73cfe0a258fc1b12e8ac50a09b5766d56ed7d98e529e16e259d0b38021591f546245d157211609ac84e37affb2241e12a0bc3c6bd
- SSDEEP
  
  12288:d8qmHg/OYv5evEMvefSxIekyLQw/PaMLXagdyoYqSkTu26W:SBAX5eve2lP7RyRBkx
Score

1^/10
behavioral1 behavioral2
- Target
  
  DATA/StarEnc.htm
- Size
  
  697B
- MD5
  
  4b9b1abee38919e08ef45ed719eda0fd
- SHA1
  
  482344a9b13ce10f0021b18a3e7ba1ddbbad5ccb
- SHA256
  
  7af3f052f5216613e87b3a9615c829afcfdf9bdd677373e9a7b4f4d5cf4ab304
- SHA512
  
  58e294722246d5f30741380d8462dd207747c7e0bdce47044cc4392c78d082bc5c930d624a87c04b6ea52fee26602cc811a6299f97fa3b9c0419fad1186f752d
Score

1^/10
behavioral3 behavioral4
- Target
  
  StarOCRM.exe
- Size
  
  3.1MB
- MD5
  
  4663a09d983ab650646fd6d20fecea1f
- SHA1
  
  c297600327fdfac69e07f56af5521a4a3911e4f6
- SHA256
  
  315394d39ed96273109d7fe6edef559cbcc4ad2b42577963c28cb110c4850a7c
- SHA512
  
  451ff7599d14c334e0833cb348b748e9fe92ad83ff6d87cb48be5c771b9488678073a6510d68378c8935d5500a4b54205f3666a18f1510261789dc7ccbcbed95
- SSDEEP
  
  98304:L0FXLChgdfg6Lw3sfjknCPr8GA8y0UcYkKiiak:Iddf3wKbdXKd
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral5 behavioral6
- Target
  
  Templates/Action.xls
- Size
  
  18KB
- MD5
  
  9e4bb1f32c3deac9ec235548b0299bca
- SHA1
  
  4532b9ad26c5407b31c8085725de193521ff6bdf
- SHA256
  
  b28aa179eb88cd7b028b9484972da41a64549d6aca3f249228b24c3e94ee8274
- SHA512
  
  387fb1521abb24ba931d0403fde46f23c9296f59fe30ad3e926748464957a192f0ef040e6305d8176fa9f477ce42e8a242f118b57ad95bd6f3a29f3ce6bdb8cf
- SSDEEP
  
  384:GpBtqCR22ro0QVeGbLjbtK2zzt1LHpsueTl8DqWAQ:GpBtqCR2g2suE8OWAQ
Score

1^/10
behavioral7 behavioral8
- Target
  
  Templates/BuyOrder.xls
- Size
  
  18KB
- MD5
  
  cbe5f4aba50e09ac96420e2310aeba3e
- SHA1
  
  5948e1687f7b13bcb802a9b198f313beaac9aa05
- SHA256
  
  f99353544da38ed2c1f10845d98d8febef4babf1220d1c8bc32e8c1b1f07ca2c
- SHA512
  
  c2bec8c5880f38e814fc5e3f8e9305971239f38366640b52501e678836b0f1114c26f68c78cc63c2f09701025fe595e977405636e6fc0a35ba0f4174b1e10abc
- SSDEEP
  
  384:4dZcPCinUGpLq2HbR22SgqcCDG7EoCTVn3ls6Qr:GZcPCinLpLq2HbR25lcr
Score

1^/10
behavioral10 behavioral9
- Target
  
  Templates/BuyOrderO.xls
- Size
  
  19KB
- MD5
  
  09cfd73fc0b1ec1c0527cbd34e954acb
- SHA1
  
  d11f3be3e25708ccef505567f1ad4b748741b58e
- SHA256
  
  c66d03d2b1f9fe438b37d178e98c579bbd7b54b14c1fff3b35b608d2c77b16fb
- SHA512
  
  5fa49f191ec50ea417e8702a3f44e7091c20e586928fc700bcda88ae49fe6876450ee4d3aa9e0e797f2a8867e7525c67e228c5e8fca51f57e62808de51e7c3d2
- SSDEEP
  
  384:OPZcPCnUGpLq2HOoR2PU2DQ7FLTWFuSeAGuu06R5F92X:kZcPCnLpLq2HOoR2ARD92X
Score

1^/10
behavioral11 behavioral12
- Target
  
  Templates/BuyOrderS.xls
- Size
  
  18KB
- MD5
  
  c7c2b3b1013f7e056b18a86c8006316c
- SHA1
  
  cca652cb991b114b15630d2a9c6e283f1d6d5387
- SHA256
  
  abcf530078b76587ba1a33617d99b76fc942de915c9bc2919c9d821e8bd46dc2
- SHA512
  
  58b550316e28c6bb1a86c0053a0d95bb51c9ffce71045fe7d59041675f087fee3a044eee33ba801f1b562e73d3c399ca51c7d7ead1b2f3a17a39300009ab80ce
- SSDEEP
  
  384:4dZcPCinUGpLq2HO/R22M0U27hPrWFuG8aWncLcloS:GZcPCinLpLq2HO/R2bhL6oS
Score

1^/10
behavioral13 behavioral14
- Target
  
  Templates/PriceRep.xls
- Size
  
  18KB
- MD5
  
  c5d95a0a672a8fceaa454056e291cf93
- SHA1
  
  c28cd3a62b152975620065d27833ba86211d5d3c
- SHA256
  
  0cf8e8e9f32151cc2b8a309190f2be14d9a126815536e50acae55859f75dab77
- SHA512
  
  3215a4975bf868ba48186e0a233e648cceb6963f8ce3f1011c86c97e5d3ab9b646bece17bce007e08fcd70894ca1764d5e78fb432b13a76a96a1f60d08fe5eaa
- SSDEEP
  
  384:4ZcPCinUGpLq2UR22+gqcCDGbVXmI8l2Vq23:4ZcPCinLpLq2UR2X2/3
Score

1^/10
behavioral15 behavioral16
- Target
  
  Templates/RepairCard.xls
- Size
  
  23KB
- MD5
  
  339f3cdf0842587ba585516db948fb2b
- SHA1
  
  daabfcf0541033671357a4a8483a41134519d1db
- SHA256
  
  d31ce59acbb6a545264397314f51aae95f6621384870e29da600705aa2f1f89f
- SHA512
  
  d268e0c4d66016ec53ee5403ccc258635c90e31fc4d163c37b3e9b4872ff8866a12e9a13212ffb303f95f7908a177ca4fb78e2225e19f8f6871915d84cbf75ef
- SSDEEP
  
  384:TBgqhVR24JwZgKm4lCAYg7Nk3m8FXArltVXIuVXr:TBgqhVR283mcXAxt2uNr
Score

1^/10
behavioral17 behavioral18
- Target
  
  Templates/SaleO.xls
- Size
  
  19KB
- MD5
  
  fe7411c2153dd5a1d46ad8e9c085c7f0
- SHA1
  
  7e1a6706d9d208ff92194aa5a6ee43037ae166cd
- SHA256
  
  3b4f3b28832566aa43872a7b84aa094860ee2c6cb0fd382bfdae91cf8efda3ef
- SHA512
  
  d33bbde2d0d1ee0781cff96f0f118c779dcfe5f30d4625f64351e62e3935ae6b6c9ea9f7c284443c6da0c99a216518fab54775ca33491dc3912e06ab7bcb040a
- SSDEEP
  
  384:OPZcPCnUGpLq2HbR2xU2DQ7FLTWFuSeAm6PVTcpUdw1:kZcPCnLpLq2HbR2pcSdw1
Score

1^/10
behavioral19 behavioral20
- Target
  
  Templates/SalePre.xls
- Size
  
  18KB
- MD5
  
  7619291582b55cedb8fed8281234a241
- SHA1
  
  28dcdcc80be3e8b6b096496c1fa3efe6520404b4
- SHA256
  
  3891cc3b1beba2725bdb9c9d4f94ef04f44cd472b34b881e4b3093d378557aeb
- SHA512
  
  bd95713ba4812e9877b479e252f674c2648fb2c5b2ebc6120310c8ce90953d3f0739fc221237e54ee2a1bc393ab3801b60615c8b3959e127da269c2ddf928b18
- SSDEEP
  
  384:4dZcPCinUGpLq2HbR22SgqcCDG7DH7GI86lsqhl:GZcPCinLpLq2HbR2gltl
Score

1^/10
behavioral21 behavioral22
- Target
  
  Templates/SaleS.xls
- Size
  
  19KB
- MD5
  
  54d4dee53b2c03c1d9c866a1dbc2f2d4
- SHA1
  
  ad18d14c49fbefb883db5d95a10c80a09e7bd916
- SHA256
  
  fb0b7222da66cefdebdf951fc7c9aa5985ed1582acdc8d082a8162d88015c60c
- SHA512
  
  6dee87e31400ef145e1505c1c1320857bb7db9b7ebd3ca1e88ebf7d6210522c7a61e54745c9d0afce524a05cb752ee36bdaf5f2a78981c65b2b79dff9983986f
- SSDEEP
  
  384:OPZcanUGpLq2HOUR2UU27hPrCfFu+78aWnkB4DFsqdy9:kZcanLpLq2HOUR2zauqdy9
Score

1^/10
behavioral23 behavioral24
- Target
  
  Templates/bargain.xls
- Size
  
  31KB
- MD5
  
  3f0c7b6600dd7bae3d41016d120a1c8a
- SHA1
  
  b61e70f10f08e77264f2d2f195716b80429cc584
- SHA256
  
  8ac696839d35271478c635c6c5a903ccbcb83c438247460aec77c6eff2106bfc
- SHA512
  
  e3af277bb15c818c843ab408c9426e84dd2303b6e73df5ccccd1609dd7051f0e19f468ccff484a2e2650935524881b61797c3873a01e4550f4b01b1cc47544a0
- SSDEEP
  
  192:0vHWgAYb8cR2J7lm+++X+z+1l+g+u+r+D/Y0beRAcClTQy/Js5Gq/kofqEtCI/ef:SAYbPR2tlP3OaC9HCzuClLofqU2HoQ
Score

1^/10
behavioral25 behavioral26
- Target
  
  Templates/bargainE.xls
- Size
  
  31KB
- MD5
  
  a8ab6c676af23b9d7ffe35833ec8e6cd
- SHA1
  
  32158b6e7635470a2092f6fab1f0f94258f73610
- SHA256
  
  e397d38eb26184bda752d5cbcf790be6b7eaeb8b2848c613d8b8335d080ced54
- SHA512
  
  afc80b92bf74715b737fbe2acaadaf8ace6e44c2fa3f01fdec7f190cea3976c7c338dbfd6e75285009d904672418e4821e144a26e2152c02054de4671507d555
- SSDEEP
  
  768:SAYbPR2PFumh4bqNEnGJgjSVsdRIr6dU3WZwzil8/+hY7KtkHmpADy1M0q+xoLaa:SAYbw4bqNEnGJgjSVsdRIr6dU3WZwziO
Score

1^/10
behavioral27 behavioral28
- Target
  
  Templates/chairtalk.xls
- Size
  
  21KB
- MD5
  
  52ba574bcbea3fbb42abc3ec29a75b3a
- SHA1
  
  4a7dab75e6c66767eeaf0f72007ed4859106a0e6
- SHA256
  
  bb3e788fcdb877d6febaf3674c8a6483163610213426f963a2c3ca3a3a35961b
- SHA512
  
  d66dbf0697aeb3292609aed44bfbc8a8c75c102a6b36df9b9d36d24e4d3f692aaeb18e9b7a28546640977a6717646cb5ddb47c068190032bdaf9bec80b582237
- SSDEEP
  
  192:UvHWdB8zpvR22+0+V+/+A+r30b76QpPtdlnSNR4xX0BHOK0Q7/VH:XBgvR2/xAGdriFpFdlnuRTR7
Score

1^/10
behavioral29 behavioral30
- Target
  
  Templates/client.xls
- Size
  
  23KB
- MD5
  
  44f8553782ffea41d19494620edb52d6
- SHA1
  
  892a68363a71b74aa88cb741a32871fb83fff9cd
- SHA256
  
  625184755cdfd4d51dbc76f32f1ee80aad892995a5516a96f58774dc6ad9e335
- SHA512
  
  d22d2c9d0a987c50a14b4b3da2c5f4614308fbfabfcc543b3e458b8370455c32858f5bf6ed8186f132b8565274a71273102f62d291518a2bb51b61c4b5f8c273
- SSDEEP
  
  384:PBgqOWdbG/KR2cAlLYjCA9gauJ49jfiU8ORa8888v:PBgqOWdbG/KR2qh6DORc
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Enumerates connected drives

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32