772b8c81e38d063eeab2d42f10d8b086e45b75fc50ea278bc0c048516eda4ed1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65ae779acb8d8e372c8656245aeabf53_JaffaCakes118
Size

196KB
Sample

240723-b9dx7a1bja
MD5

65ae779acb8d8e372c8656245aeabf53
SHA1

3c2f4c1ec187add2fb64b7a9e9f247563991add8
SHA256

772b8c81e38d063eeab2d42f10d8b086e45b75fc50ea278bc0c048516eda4ed1
SHA512

5e61c2c7b67494e282d3b648861287fb8cf786019982ea197cb98dec456143d991eedb9a08ec153611e379da96a4767827b31ee933c96aa2b971368fb98bd316
SSDEEP

6144:lBo2lh2lK6Z8a5PDpScD7lwqzMCHvdirzJRh:Q2lhOK6bN1ScD7lqCPCRh

Score

3^/10

execution

Malware Config

Targets

- Target
  
  samples/hello/HELLO1.com
- Size
  
  931B
- MD5
  
  c895b8a78a7a7749fc9678ab2413cd81
- SHA1
  
  cabd37b53b56b601b7ed9cb829575b8f61de0db9
- SHA256
  
  3d220adf1d33c99c893035b76567ed69eb274ae3a6d6de1bf5a15838b10b5ffa
- SHA512
  
  2a44e9d25f61be34f8ffe75ef34cb419700bd7cade5c0a89bad076170359277ac8cac3c45c3f9d8d960e2837c6e21043d50135c31075dfa82b772bd89029b4cb
Score

1^/10
behavioral1 behavioral2
- Target
  
  samples/hello/HELLO2.com
- Size
  
  919B
- MD5
  
  fdb88a645d092433dfe9f81eeac98bda
- SHA1
  
  afe3c87e433587fcef5422462d0f134db0e59ff6
- SHA256
  
  8e85e2f73ae5db366e5e00470d22245139ac6c4bfd92d336a9c885ba1481ab18
- SHA512
  
  1e932f99f6e497a737434a09688bc637f0ffd5fe4d98c43f64f8067031cb040f24018103c516bc75ee214f0b520b947b78c874bdfd72e1349eded7a7b9702c85
Score

1^/10
behavioral3 behavioral4
- Target
  
  samples/overwr/OVERWR.com
- Size
  
  1KB
- MD5
  
  f613b7d7f353ac0a624ef8de2a7c64c0
- SHA1
  
  d526494e2ededc41ed4dddc9f39a66e80ffaa30d
- SHA256
  
  8e898d3fa7748fe72db7fb5a56541da3863f74bbe15ab181fe1f8097a52d5caa
- SHA512
  
  3f6c87091987ade8114ab44a6605bf40674dcd6e5e3f9f8ace134fc9dd2bef43c98f4d42b7be6e77818c45df3f1b27d74d3abe6b100e90b03fd0718a4f318592
Score

1^/10
behavioral5 behavioral6
- Target
  
  samples/overwr/overwr.spl
- Size
  
  3KB
- MD5
  
  ca3b709e81616d853750beb361520e00
- SHA1
  
  e65dce198697fa733f6d3ce4d70eb763f609d18c
- SHA256
  
  4ae5dcd99ff24e8a2fcf05df6a25c212d76460d10a332dcc2ef952135c010bbb
- SHA512
  
  0a6500f9a296546bf011705991d968fa737f049c58702c2c0125044b322b89b20c084d6dba0fa605ecc1718d726c727a78c8753753de53cae736d46b7ac66836
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  samples/thevir/THEVIR.COM
- Size
  
  835B
- MD5
  
  209af5d626e5ccb3a9ae5ed46ebcf3a3
- SHA1
  
  52988a78ad5c5cb7f3b8da569d4e16c39f30c3e4
- SHA256
  
  89cd08c5537e86b7392650cc8b1462c01de4045e72da5d5ed878d42bc3898305
- SHA512
  
  6c9fcb027c8ed6275b7b7f8bcc0e403cdd9f8fdc9517ef1fa25266e11e4dafeb21f8105d0dc533b05d7a43fa64a94e7e1f7604281c1cdf6bc3f55bd9e393c6df
Score

1^/10
behavioral10 behavioral9
- Target
  
  spl.exe
- Size
  
  341KB
- MD5
  
  29545280fc0e5565f7e0bbb1ce9b8b4f
- SHA1
  
  e31c0af270989df6357a7f8a8d36a1f08e305e54
- SHA256
  
  dd59f916cc83881f727a48687a31ccdc1328b968bf07116fa2030382be5356ad
- SHA512
  
  13515f3ce98933edd1dd44a9f4c24edd6684f7aa3b99348f17bd6e65c209e143971651451524d9cec57ad53573c4ea99ac350d1e9c0d85fc795300c5ed5dd591
- SSDEEP
  
  6144:lGCqUW586CML/D4HTav7cfIdvvs3e/6J6fmcg/XvhAI3Zyy11dLcsIKVbI:lGCqUW586Cg7AaTcfivvye/xAhV3Zywq
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12