aa05c706355e6962c375ef629d1c147ec5cac6ffa415110acd1f77c562b71cd5 | Triage

Sharing

General

Target

70dd8e4fff55ddc14d7699ff043c4bfc_JaffaCakes118
Size

361KB
Sample

240725-xvbeeascpa
MD5

70dd8e4fff55ddc14d7699ff043c4bfc
SHA1

3f88aa7eccf24374666480f98906f68e1af941d0
SHA256

aa05c706355e6962c375ef629d1c147ec5cac6ffa415110acd1f77c562b71cd5
SHA512

f8a4a4e1c46b86031e95fe2f7045b6b43a29402a55152368448e63101d1722bf7a07526c5e5251887f1dec77b1e22fcc840d0a4120bcdb7bc7459820264e592c
SSDEEP

6144:JQ6jHaGcfc6mSdIGZVfjlPjCsYcTxitW4k0OuGCn:JBHa91mA9ZVbluWktW4k0DGCn

Score

4^/10

discovery

Malware Config

Targets

- Target
  
  lanhoologin/Login.exe
- Size
  
  351KB
- MD5
  
  cc2dabcef32a7653e835ae43af62e428
- SHA1
  
  e82694382011f8349e36f41b855db7d236fb27fb
- SHA256
  
  e6bb60fece1d0ebbf6090dd8a44db9aca7cc4a61af0cdf51c03daa41a427b4f1
- SHA512
  
  ca94d656766845f50bab95bb4a86dc73101328c3bc1bfbc3d6e433fe1f04dd9fe287e6ac3d02c682497837fd04a0ef4295e6eed2c87ba38496cd02ac9104c9a4
- SSDEEP
  
  6144:A5sFtPWXnHiz7rf3yJc+pyBzLXxITHcxVXXwdO9Ca8ymNBK1T+x74:TWXnHiyDpxcPXx918dNBK1T84
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  lanhoologin/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4