187d39c7d9ead2617bfbd940668bba0f54d6af211494195c653ca0d53a735d26 | Triage

Sharing

General

Target

4b0b2f35608e5b6500598bafe9844276_JaffaCakes118
Size

2.1MB
Sample

240715-xx9pzsxgqa
MD5

4b0b2f35608e5b6500598bafe9844276
SHA1

cd9ef3130dddbecd2c8f58128bb2d3dbc6a3f5b1
SHA256

187d39c7d9ead2617bfbd940668bba0f54d6af211494195c653ca0d53a735d26
SHA512

b6b56e6041974d8fc1739b62f8a0a571653e387e6d3a98e95e5a72a524c17aee582fd1de2d9cc24ab168075d27a031eeaf5728b488ddaa901030aa04a9ca353d
SSDEEP

49152:WmtIgbDib45NG04/qxg1bctfoCehYJIvnV:lt1bDiqL3iFuzeh2O

Score

7^/10

Malware Config

Targets

- Target
  
  mydrivers/LUCiFER/Keymaker.exe
- Size
  
  245KB
- MD5
  
  8ab96f4a7ba50826cf84ee00f2f2ec18
- SHA1
  
  9558b581f005c037ee1c7b63e55ada0a6010f0f8
- SHA256
  
  b19cabf49401f1ae288f40588e9203c2b5ac4579c345793eaea52a60fdd45370
- SHA512
  
  4d60614eb798ba3dac01d2d35a4dc823417c995dc931cbc6be09fc3955f49cdf8f7f4c197079a61908d9d6fd02bd7434e6c0ddb0cc0b5eaedb57f0056f932f1f
- SSDEEP
  
  6144:v7N4sjs2ONEJ4MjdtQGPjoyypYf6H4kjeWP:v62TJxJB3Et5
Score

3^/10
behavioral1 behavioral2
- Target
  
  mydrivers/LUCiFER/LUCiFER.NFO.ViEWER.eXe
- Size
  
  24KB
- MD5
  
  aa8f43e8254ff5701f8c12ccbded3ac4
- SHA1
  
  ecd6a46e80e939204f1d6861900e95075dc6faed
- SHA256
  
  f832c56057dc698d1b2dbe62d4c25724a92583a85068043e8cde88798cfb2324
- SHA512
  
  1762077b586fc0d50959dda655237ea6e87301be293af33a38a20df880e2d157bb7197e581cea4bd2e8e5e738dbc3e67822a5d0ce5b9fff56b983446637a6435
- SSDEEP
  
  384:zcEcPP1NCJbUkT5Yl7kIlX5BmyiH3+Y3OMQ5pggfnB1EzGPL9q4k4iI1c:zfcPP1YJbUkYD7m3ndQ5pgukqD9/
Score

1^/10
behavioral3 behavioral4
- Target
  
  mydrivers/LUCiFER/LUCiFER.RELEASE.CHECKER.EXE
- Size
  
  20KB
- MD5
  
  f232f644f2a314d88c26055616cc7fc8
- SHA1
  
  5eb2539cfb99d13783c48ae83b64df47272563a2
- SHA256
  
  dea7d73e0171f0fd744f97c6ca353e9810c61db7417c95b2cbc759f8aa804d1f
- SHA512
  
  1abf1688c6acef476af74a197ce7df1127b72e32eb67f56232dfd91b7383f2742054e86b81af114cb7e475ab78fbc14fb83896d9ac22e0f3bdf4553e149e58ac
- SSDEEP
  
  192:MlnkxDJDJQCl5eTpYtDFwIIl/+sGISjOZWX03ILQe1GpcCyX/t2W8:ie5qCl5PFN3bXcILQe1GxyvUW
Score

1^/10
behavioral5 behavioral6
- Target
  
  mydrivers/mydrivers.exe
- Size
  
  1.8MB
- MD5
  
  7af0d84f8372c39aeff2204ddc746f41
- SHA1
  
  beb01803061d0ecb42b842b7f9f089e29ecc809b
- SHA256
  
  0c97ccf5fffe8eb4bb50804b50bff7774140eed5fe2c2334bff5db7b0bf9e44a
- SHA512
  
  3a45bc6d554759a24408a1dd0b4789c117cf0c0cb5d86445d73bf301e17da28e23f189af6a2940639e51db58006eda61ed382c3380b8a3a6e5810d4634df6dde
- SSDEEP
  
  49152:sXiB58f3wJNqNPMZykdWyNB3k0Xk+9px/tsUcVAG5ciwS:sXn4TqNqdFH0p+9ZSVXci7
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8