1db20d00664e642ca69e33c4a4fd4e3b7ddcd468d1e021f6ffe506d15681bf29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ecc0544e2a1cf8326a70d73ff57b074_JaffaCakes118
Size

103KB
Sample

240712-zeyacayhkk
MD5

3ecc0544e2a1cf8326a70d73ff57b074
SHA1

5f696eb829e7c130fe7cb8904b52d88a6e5a6162
SHA256

1db20d00664e642ca69e33c4a4fd4e3b7ddcd468d1e021f6ffe506d15681bf29
SHA512

fd4a6af9fb86f9a8d8d86f421f74ca84d3576e84ac10047d43fff01e0bdbc668e00cbbe3d74dbdc97a9e0b2c88d61ecad44818c651fc8cdf0fc5918eac54275d
SSDEEP

3072:zQIURTXJ8eqgKJ+BC7CTN2XBmjnbMSBQb:zsugKaTsAjb6b

Score

7^/10

Malware Config

Targets

- Target
  
  3ecc0544e2a1cf8326a70d73ff57b074_JaffaCakes118
- Size
  
  103KB
- MD5
  
  3ecc0544e2a1cf8326a70d73ff57b074
- SHA1
  
  5f696eb829e7c130fe7cb8904b52d88a6e5a6162
- SHA256
  
  1db20d00664e642ca69e33c4a4fd4e3b7ddcd468d1e021f6ffe506d15681bf29
- SHA512
  
  fd4a6af9fb86f9a8d8d86f421f74ca84d3576e84ac10047d43fff01e0bdbc668e00cbbe3d74dbdc97a9e0b2c88d61ecad44818c651fc8cdf0fc5918eac54275d
- SSDEEP
  
  3072:zQIURTXJ8eqgKJ+BC7CTN2XBmjnbMSBQb:zsugKaTsAjb6b
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/downloadmr.exe
- Size
  
  115KB
- MD5
  
  c1a018663e675ac2d661495b5d96863c
- SHA1
  
  5250e62732e66a785adc4317fef62e8ee3334b09
- SHA256
  
  ef71f17193fcdcaf5b992bcecbf69f41177bb231f7adb567cae0f7c40b84fb2f
- SHA512
  
  bd3fcac6e892e1e6f5ed5e71293f6811ed5d8f437a07fd8d28f071c5a15e86c82ed027dd8b6b0bf29931ff691c0142fc448aa74d5f38d00dfb2e42442e42d859
- SSDEEP
  
  1536:vBvC63G6wAeSP1Fvw8H56XYnOZVLjThdmqqI7tPDt7XwmkOp3TacEjw:JK3Arw8Z6XtfTvmqqI7r7mOpW1w
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4