ef73060d6752d1aaf5bc2484f7e49921e7894b4235c6b978c429f7e551ea121b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72d952d60c8de27f00e73d6afaa3021c_JaffaCakes118
Size

6.3MB
Sample

240726-grlszazgrq
MD5

72d952d60c8de27f00e73d6afaa3021c
SHA1

0f37e49628c418890ef34e5d19c7f4d13674d08d
SHA256

ef73060d6752d1aaf5bc2484f7e49921e7894b4235c6b978c429f7e551ea121b
SHA512

f584632496497aa6223242e809a8211ade7940adc102bd0e088fe3e518d3b7e5f18d9ef3a0b903f3c91bbdccb03bc16b328d1d4366235554e3e40b5993fb955f
SSDEEP

196608:ejIjHt9rKqk9IUCUfVjcn07avUuqaxwm84oIi:ejIjHtZzQVjhSwmzoIi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PR35-DEMO-Setup.exe
- Size
  
  6.4MB
- MD5
  
  2ce2788f9733494323a8904d862cac88
- SHA1
  
  7aa4343ea8de8935bd19df1905cf7f45af1e0420
- SHA256
  
  3eeae5f12072907bbe3bf6308b86e81b3df525e2c496c30c8dd6caf125df6d8c
- SHA512
  
  3394240928395e7ef14f41a12dbe12c2344d30587043199c3c8ba5f9a5754027da9ac295c71ba6bd04e99c995e92fb8677dd9ac36e8676c7b327ca5d0b4ce89b
- SSDEEP
  
  196608:ePCKrErt3vEemicYffYRwcityQ9OsPHkJngeJ1:eP0r9EyzffYRnw1HkBv1
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  photorecovery.3.5.5.0-patch.exe
- Size
  
  131KB
- MD5
  
  790cc825331f44509022f253a8ba5790
- SHA1
  
  9f2a799ba89bca5e460f1f68d4d2c96a2b846255
- SHA256
  
  90cec4cca87636584de9ec6348bd4358ad381afb525c81e45749272524b31223
- SHA512
  
  65ab610a568176c383f12c3e68e445fa201ae1e104ca63038d0b6faa7e1db20f60edb8c2a62c1ba7796bf7c69d2773baf6bc0918d6e782fd78b8a614465e8bb9
- SSDEEP
  
  3072:IJj8VuOHkekLzhLLZ9OGH15aUVwxoD6HBq/qyeuemNSrH:IJj2uOHNYL5GUVG06hq/l9
Score

7^/10

discovery
- Loads dropped DLL
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  新云软件.url
- Size
  
  261B
- MD5
  
  af534adca72cbb40fcaba6adcf4aa0b3
- SHA1
  
  486f64259c45baf815004b6ffc65301e82aecdee
- SHA256
  
  1bbc2bfe53979f537c179995a1d1b5030db3ad6f2e46b258421506a3fb0fc296
- SHA512
  
  21d4b21c0d228498275640b397e8adfcb92dca4996cb59b035eeea523c5fd0594b0c8bc66d557265343bf6e7cb35350790fcac323db841c0cd4fea6da38b70b1
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6