2d5e652425785634a024b9c45c5f72b059cd5912f3e1ceaa533076a8f5243eee | Triage

Sharing

General

Target

6f8283dfc479216e8e5e82e3acc5c799_JaffaCakes118
Size

1.4MB
Sample

240725-pbenqaxgjl
MD5

6f8283dfc479216e8e5e82e3acc5c799
SHA1

11f2c3322e7a2e311daca9ab74b4d470850f6765
SHA256

2d5e652425785634a024b9c45c5f72b059cd5912f3e1ceaa533076a8f5243eee
SHA512

2c6e1d0fc59e43c4cea1d212af225e83f3e0118cd8cb7f82b0a46934ebb2010e3b25422fa7ed10d723d938f1c856acbbb5aa93e8b4d79baa24a311e2f98546ed
SSDEEP

24576:r8vWc8YxQVoQXQ4ipcS13h+5YmLxcuRYLwpr5VnD1GtLtWO12NoSEjMAtdWBJ+gE:r8vWcFSbIOS1x0lcBwL9oBsXNo7lwAgE

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  NzbExplorer/Helper.dll
- Size
  
  44KB
- MD5
  
  b420bf2dc387d9eb22c96b42a86eb875
- SHA1
  
  098e3c6a901bb03406e2b64e95f702ace06b4f19
- SHA256
  
  870dd0ba12ae7aefcd37be942265d8a906176394db5414d92582351897065e98
- SHA512
  
  c6e3bd90fe514cf7156c1d59a86297ef5015ead378407a0e60c18eca18fa9db5382c14782cd055322ac4df8b0bc5aa5e67cb8d208809da0a5a22dccb898a51eb
- SSDEEP
  
  768:NsXlOuiZoPpQ6YFiVbDDFduQx1MD92biyrob8hoTBfLlMjosjcZdF5onbcuyD7U5:Nn3USKVTFd/uSiyrogCBfWjos+dF2no8
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  NzbExplorer/MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  d9578ff8b495dc575e848c6670be85cc
- SHA1
  
  ef0b7a7859caa85bbbdc9cfc1fe2b6eb10db44d4
- SHA256
  
  a018a023d59bb76aef0b4dd6ff40aa16fd0783927972a9492b26a5e5d0433696
- SHA512
  
  08078f3c3d20e7887b0ce0f3a5aae195a30476f52b8b672e32217c9b515bad67304a91dde6a0c5edac26c2f0db70a0d31a52245fbe65f3430e1ee4a4454359ef
- SSDEEP
  
  24576:TvI5+k9ABzqwFqEMotJKC33aTjWVRGcaFHKC4xJq/6z/o:TK+kGBqErqC8PF4UWQ
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  NzbExplorer/NzbExplorer.exe
- Size
  
  572KB
- MD5
  
  6af0c584fa0ada00c89f1f77ef67db24
- SHA1
  
  5548c724093a927aae75f9152ba4471f241ba9eb
- SHA256
  
  a054a2513910a629c185aa3c5d5f52d06b7bfb12711ccacbedcc757e33c2070e
- SHA512
  
  621dfd333bcda01177619ffe317345e1d38049f5e1ee0c116e75545f15035c6852ae1965f22b688f16fa626154d7a788ba6713094cf77201190f4ea9ff7a51a9
- SSDEEP
  
  6144:qLXYsI/1KLPfSVK+mkCmGEboAlk0zbjVzmTpLtC5Hi2EuDn+5FL+Uh2Gl8NXFd0u:8YsaxCmnboAlz068uyPdhENXL9MiGm
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  NzbExplorer/NzbExplorerLoader.exe
- Size
  
  48KB
- MD5
  
  1d839466fa24355682ee1da84e76efe7
- SHA1
  
  7ff7979385945a54b40a72899cfba441302a1e59
- SHA256
  
  eb180f017e36b195d689916a819113373f9ed358e6cbb24cb4d0e0a5b6e458da
- SHA512
  
  97d1748f4b81124d2c4cca633b9ccb5082ba24a180a1946755d0760d22515be3560c762e136bf2960a9eee1446c2bcbdee3aaf086cd0473e3595ecf038d1a877
- SSDEEP
  
  384:zMxw9p8bSGMKopmEOFHbVMkla/HQLIxtzZpJWSeOdU2WES2vUj9vD3WyimE:zMxw9ybiK+OF7h0/HvxDWESpB7JimE
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  NzbExplorer/unrar.dll
- Size
  
  160KB
- MD5
  
  1b290d4e2d093cfa2db3c8f240838290
- SHA1
  
  0b2029a5002a90cdaffb9ddcd20bfbfd272c4a33
- SHA256
  
  8b4d5495ecd588e67cd428619bd89be03d0a1a577de0502d176475ea2d23ad80
- SHA512
  
  19d317400ddadf4d9e2a265aed46ac639cad07370f0da6ab707a1face13a4600724b65e4b4a68520f737aa788cd9f9246c9c3b8938bac0ae42bbe8d6a0ae03f0
- SSDEEP
  
  3072:Au/CS3cX/UnorDUbl5YwB8yPyoUnxR6dBFBdFQGnnqFFNPpc2AQQZONOkUiHP:3/CS3cXcRbow6xR6d6TPpc2AQbNOk
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  NzbExplorer/vbuzip10.dll
- Size
  
  140KB
- MD5
  
  90c34787f181708dc15233e06a275cbe
- SHA1
  
  94bbbeede65e4c51c3c2435ad4a0378627e8a412
- SHA256
  
  6343b6c89d9dce1dd0c320d68a650ed053e31d3eecea75d376947c4cec222ff6
- SHA512
  
  eedc45e715a4232b5dab9b3d95ddec6ce526cc410066991e3dc3d26e4b2c68bae3b3e00096af2852a395c19363dbbe552b7795a330c357149a08e9c5ac391483
- SSDEEP
  
  1536:PghaiMQlhsKp/Eq0zRwV3ffBbwQYCeWWRP6wPF0TOJZsHcT2toSg6yqGauU6VroY:PghL+KlExzRkvreWMF/snIBasVro8/b
Score

3^/10

discovery
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12