1b7090d5aeddc1a821f0f207347355495c956bb12dda2d45e2ea513b105a9e9a | Triage

Sharing

General

Target

74142192f5537c772f6f84cc1ec9ce85_JaffaCakes118
Size

2.7MB
Sample

240726-psxkvs1gne
MD5

74142192f5537c772f6f84cc1ec9ce85
SHA1

c734bd3086280fe9760515e19dd8239dc722b3b3
SHA256

1b7090d5aeddc1a821f0f207347355495c956bb12dda2d45e2ea513b105a9e9a
SHA512

92dac27bf4acf5e9ccad905ffa9ac6ce44a4d0ff5bda473c49672154c79954585f4a803ecc6793ec5ef388ed84e1dd9dd11e9e4515505e5db6d476f4dd18ceb5
SSDEEP

49152:BuqI4tHeyp6YNvI/kKXKf8WpNBoFVuCu1pknNsO/bnqQiFkNq+XPzLabmdZzi9VT:BXVheypZiXKLpbYYHO7qTFPUa6dZ6T

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  74142192f5537c772f6f84cc1ec9ce85_JaffaCakes118
- Size
  
  2.7MB
- MD5
  
  74142192f5537c772f6f84cc1ec9ce85
- SHA1
  
  c734bd3086280fe9760515e19dd8239dc722b3b3
- SHA256
  
  1b7090d5aeddc1a821f0f207347355495c956bb12dda2d45e2ea513b105a9e9a
- SHA512
  
  92dac27bf4acf5e9ccad905ffa9ac6ce44a4d0ff5bda473c49672154c79954585f4a803ecc6793ec5ef388ed84e1dd9dd11e9e4515505e5db6d476f4dd18ceb5
- SSDEEP
  
  49152:BuqI4tHeyp6YNvI/kKXKf8WpNBoFVuCu1pknNsO/bnqQiFkNq+XPzLabmdZzi9VT:BXVheypZiXKLpbYYHO7qTFPUa6dZ6T
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  4c7d97d0786ff08b20d0e8315b5fc3cb
- SHA1
  
  bb6f475e867b2bf55e4cd214bd4ef68e26d70f6c
- SHA256
  
  75e20f4c5eb00e9e5cb610273023e9d2c36392fa3b664c264b736c7cc2d1ac84
- SHA512
  
  f37093fd5cdda74d8f7376c60a05b442f884e9d370347c7c39d84eca88f23fbea6221da2e57197acd78c817a74703c49fb28b89d41c3e34817cc9301b0b6485a
- SSDEEP
  
  192:6KdqJ4Bhf1mdCMI26t510swClJOeFIsm7F1QuPs:6KdE4zAddwR0swqOeFxu
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  2c3c8976d729d28478a789217a882291
- SHA1
  
  10c18b23fac957419547ef0f8ec3bc1b10e91e79
- SHA256
  
  799f91bdd59f2133bf195c5b4ca685ee91666d981a6bcd8a6c45b7c8ecc96eef
- SHA512
  
  749c650974f94cc5009124d3fa3d9bb1ee5824a3fa0a76b81733e08379678a2a1b7c54b77d1709fb6de24c81c68c03c0ec3e9ec5ccad0d30d9237300794f1213
- SSDEEP
  
  48:aefTYzqi+/XC1aQbkMIwovgxbLuwOWd8s/d79C6O4MWNEYJvRZJ0dfh80:22XC1XkH/ohLZDSs/d799O4MQE0R4
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  3d_themill_unlimited_share.exe
- Size
  
  626KB
- MD5
  
  d9c5198f883cdfda020adb3b04d0553d
- SHA1
  
  0eaa704844012d98d00771473a568d492d14c7f6
- SHA256
  
  e1d2091de258c3383a5878a574637c31c0aa051789bf9424d40300cc74364548
- SHA512
  
  efef9163e66a01cee8fb01a4361e3cab011f0f254cd4ead1119a73d7d3c931ef3f36113370aacbdc8568c6f17c0c3f7fb04fcc643cc723f652a1eccf3644d5b7
- SSDEEP
  
  12288:2T+aYlxZYo1hWLA4tVyM9xgO9DpXEf0l7ELbB4Yp6kr8:plxZYoy+M9x39VXEf0lI+Yp6k
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral7 behavioral8
- Target
  
  3d_themill_unlimited_share_dx8.exe
- Size
  
  443KB
- MD5
  
  ad07eec0a2c1d06b6048db47d093304c
- SHA1
  
  76899d5b2bfe048791d34ff368691e74bead4ed2
- SHA256
  
  5efc9b5985dc4d7fe216964d412686ae4dc3e4c214b37e72ce28dc2da4946ccf
- SHA512
  
  f425b92fd5b92a591da91a7197244aa82b6bc1ffd91283c36afd478435b250c64d4c00e6c7da70f809ca73691391778093319e09f2d8f2107fec00041e3f0f23
- SSDEEP
  
  12288:X+s4ospKQKxEq9OfqLz04+T7vRQ3e1XVCf:l4oopVG02U
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral10 behavioral9
- Target
  
  DXSetup.exe
- Size
  
  27KB
- MD5
  
  8be20f1dd32be5635c6506ec1561b3cb
- SHA1
  
  04d2ebe163dd45544d15a3b9af92c0288b3100d8
- SHA256
  
  e4d421da3ed7c2db8fca9e54af834447935dbfa8f4f1b5903b843ea6b6b68cc8
- SHA512
  
  7ad716cf08bedc57e4a5de891d4687bfb9a72fd8b43a5de945e938c55b29db6755ab78f8266c5bf2a0a950a3e5759a6a734797bb11886e9d35755a29dab53f48
- SSDEEP
  
  768:pm38LjvDEtm0yt04Ds/JpOnC3tC4TFuu:gM5t0IyVCgQu
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12
- Target
  
  html/ar01s01.html
- Size
  
  2KB
- MD5
  
  5a3a6b7557c50957c0105d0072bbf9bb
- SHA1
  
  3e7325fd3d5335c035d73dbb56df94b338a89caa
- SHA256
  
  a8c8fc77d62c94e6dbe7b06b242d8033e66e1b8aceb62abcbfa8edc54f31a9bf
- SHA512
  
  93e570f76b38855fc6e85118b15add70b50faa974fee3eeae9107236219c8b3094694860e49048c6e352bb72829abc111bef0ae70480f5590e7c34c33a70f6d8
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  html/ar01s01s01.html
- Size
  
  2KB
- MD5
  
  4581850836a5574782e6c1d470571888
- SHA1
  
  fa6af6d49b5309985613b61f65b636114f9f765b
- SHA256
  
  f6f36408b43724826e7bc496b5d6f077f2ac786db3f8894f64377131daf0fbde
- SHA512
  
  5894d8c922fdd5307c560ccf495ee56a41cd9b296c628d48b173b8589857372fcfa5c630b01534a5e6989ec785bf61cd8eb22f379a6b0f1491f65cdc5ceba08e
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  html/ar01s01s02.html
- Size
  
  3KB
- MD5
  
  9f47452b16b19852ed02e441bee411bd
- SHA1
  
  8cf43592172dd39f744643c0c2a7e429f7cf9b5a
- SHA256
  
  6e8698d41b9e91ce1002af3c29669d508da05c30ac40e0d949271476d70f854b
- SHA512
  
  a6ad3c47d80ca4f67da2115da7dd28424a0dbc13a6f030e5501acc66024512e2991de3e39177790783683ae51002cbd228418f9d4f61bda3ec2bd1708838e061
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  html/ar01s02.html
- Size
  
  2KB
- MD5
  
  b133a79c65dafd8d7f48a0a641f9c098
- SHA1
  
  0e4e5db8ac55e2ddc47d9ec86703a0a06258a6cd
- SHA256
  
  f9d58a9a33273c14bba271c34091bf207ac4281161639788219e279ddac98561
- SHA512
  
  1c9eafdad79f78344ef934a7904b505cee5bc26032e8143b5771c470f20677d27756e80451c139633397497993385781e8fea6863abaae72187ac2bf5c4ec5b4
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  html/ar01s02s01.html
- Size
  
  2KB
- MD5
  
  12c3f0de57f45a5e97b06f8f1383f715
- SHA1
  
  f208a7f9f2425e6b6c02ff82f55f244e80c7e9b0
- SHA256
  
  8400ef3ba3c7241672dd8664f91c5540bce6f420549adee5c3f8d6ec0210fa54
- SHA512
  
  67d19095b57f2ed0ff084f4638c808d9bbc48e9bbd5af0c09b28edf4a217c4b2700b939323dbb6ed58425655d0c6171e649aae720d7b177dd61159ed221b5872
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  html/ar01s02s02.html
- Size
  
  2KB
- MD5
  
  882b7930730fc69a98c627c33b04d27b
- SHA1
  
  73cccf0edaf482977d1b0b935860927768498c62
- SHA256
  
  b592f85e70ef0291f2a0cff72f0f8d9ed379105a2e4ac0690cd2dd0b71576894
- SHA512
  
  7a695013f1de2949290b7d8b2021ede7b1e27016c6b9e708aa47cf7c19645e76b8dd5c8c1204a1c424caed844445d6a8f98ac07c989dac362e1d6a62f13920d3
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  html/ar01s02s03.html
- Size
  
  2KB
- MD5
  
  abcd759ed39345aa497e3375be82915c
- SHA1
  
  82c6716805103248f1e7eda9f613b18ce74828c3
- SHA256
  
  ff90ef6fd4b6b189ae91c715112a6d1d6fb4c7aa0ea07bac1458e62808194e95
- SHA512
  
  d9143ac2eb03367eff17f08afcd0865b2bb1b50cdb611a867c45ca682693041650020ca28500df54b9ec70c5c141431308aace375082dd2e05b9d8cc34a28c9a
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  html/ar01s02s04.html
- Size
  
  2KB
- MD5
  
  b1f13f93e54221a3114fd1a4c796098c
- SHA1
  
  61640e16105f5f2a27f1e7a4b4fa1e84cf0be426
- SHA256
  
  b35d45f9b3433cbc96c7a8ce31cce99f36110b63e3fbaecf9c556d7ca45ea22f
- SHA512
  
  97c2b71e5d2ac1d55e0f0ed3104f275f8639dea76ca62a781cc19b38dd90431037d69e2cfac334996a25f483e0d99c15943becf74b520088a84279c96511a9f6
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  html/ar01s02s05.html
- Size
  
  2KB
- MD5
  
  c23d89a25ead13b3e86a6e594dce23ee
- SHA1
  
  1cbfe326eca67c98614b8a3896339e1e2012ea5a
- SHA256
  
  c6b43cffdd67489f92e9524fc37f111d4f601e80cd015b9e1dc4df7893b034b6
- SHA512
  
  a88f5c881a93ea5d252ab4070695a2f6a6dc254485d227b29381c3f7b02eb9584375d3bb081a291c81b105406adc4a51b76a79c02d96c87485aef824095bcd60
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  html/ar01s02s06.html
- Size
  
  2KB
- MD5
  
  42c49931f21ba250d9336a0043a701b5
- SHA1
  
  e7a1740ea0dc5cd91679a24f3ae2abee08429e17
- SHA256
  
  d09f77581054ac93d640eaffa2f0b5d29290f3ebd91bc4c07baf951075fce633
- SHA512
  
  5903667f0709b9dae561b8c7267c43aa6489f47d173e9bc8612743154b67cd83d95f4939a09aeb0ec1a8b8719acf4fc489aafbfbd0923105dc256ec28b5a3d56
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32