c1497026a7c84d52bc20219c0f77560b0dbb37e36d725cd499c4f48f7f72bdd7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cbc5eb1f3ffc3a9044f3482c53b8ef1_JaffaCakes118
Size

58KB
Sample

240712-kyevsawgnr
MD5

3cbc5eb1f3ffc3a9044f3482c53b8ef1
SHA1

9fa641270103eac03749d5f8599297b970f04485
SHA256

c1497026a7c84d52bc20219c0f77560b0dbb37e36d725cd499c4f48f7f72bdd7
SHA512

0e44c279d5bd594735c4675bc60191bb8445c2d5cc4d7c44dd0f100164b982d0a06343404cfda1f17e74eb5dd2a4c1adeb555e71c6f556091e8a085b4bd8bcb5
SSDEEP

1536:/LXB65939tY6HBg4sXJ2gdLeAyNDtAvs1eP/w4t:/Lk395hYXJ2ceA0oP/wC

Score

7^/10

Malware Config

Targets

- Target
  
  3cbc5eb1f3ffc3a9044f3482c53b8ef1_JaffaCakes118
- Size
  
  58KB
- MD5
  
  3cbc5eb1f3ffc3a9044f3482c53b8ef1
- SHA1
  
  9fa641270103eac03749d5f8599297b970f04485
- SHA256
  
  c1497026a7c84d52bc20219c0f77560b0dbb37e36d725cd499c4f48f7f72bdd7
- SHA512
  
  0e44c279d5bd594735c4675bc60191bb8445c2d5cc4d7c44dd0f100164b982d0a06343404cfda1f17e74eb5dd2a4c1adeb555e71c6f556091e8a085b4bd8bcb5
- SSDEEP
  
  1536:/LXB65939tY6HBg4sXJ2gdLeAyNDtAvs1eP/w4t:/Lk395hYXJ2ceA0oP/wC
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  32KB
- MD5
  
  83142eac84475f4ca889c73f10d9c179
- SHA1
  
  dbe43c0de8ef881466bd74861b2e5b17598b5ce8
- SHA256
  
  ae2f1658656e554f37e6eac896475a3862841a18ffc6fad2754e2d3525770729
- SHA512
  
  1c66eab21f0c9e0b99ecc3844516a6978f52e0c7f489405a427532ecbe78947c37dac5b4c8b722cc8bc1edfb74ba4824519d56099e587e754e5c668701e83bd1
- SSDEEP
  
  384:3rYz6grZodORNWATt4TBmlk5ooyzFh7BukAUdJoUtSOSR:3QggDWATWNCFh7BNddJoxO+
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4