9196c41c4e14f98f88e8751b9509c21a8bb297ea1f1c3a672619d2fb179ab669 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78194a90abe74e99942e7ac44876b2f4_JaffaCakes118
Size

761KB
Sample

240727-nwl3vsxhlr
MD5

78194a90abe74e99942e7ac44876b2f4
SHA1

4afb2ac2e8292e1bdea780199a51d5a2985c5442
SHA256

9196c41c4e14f98f88e8751b9509c21a8bb297ea1f1c3a672619d2fb179ab669
SHA512

a7af105c2c90a78974134e4062ffe13bb8ae8ffe3f347cda7e56da97c6c59f65e6073f6e3b91cc6b54d13d36d512c382afbfbd5faa74925e7535de0f3eedcf41
SSDEEP

12288:xKhBRCrjMXQ+HutUXg9wCBt/OCzpAn7PDyOWkUhTtzdFaRG2YPpZ+ObW3mIy+c:8hTCXeBHutUQegpppA7PDyVTtnu6nQZc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cvery.com/32bssx.exe
- Size
  
  770KB
- MD5
  
  373f1df557289456562deb5e0b423c9e
- SHA1
  
  26209be00a0ef1c0583f534089e6db032393627e
- SHA256
  
  d1f7ea61f9aa05a45ee955668794523bfd46aeb6556543403eb78dddcb96b8fd
- SHA512
  
  beb4780c6f85ab4f3a787bd705716e88a3e744bf3367480376c06033ac787b028b2b3ccea3c07e49f730d3284dfcc9081099fcbb05cd718df076310a118b9abf
- SSDEEP
  
  24576:gUhKphemL20wpL2l+TUWEIhUqNgPFfs9Dima9pofOCo:Vq80wpgcNEIhFgn8fOCo
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  cvery.com/非常世纪资源网.url
- Size
  
  261B
- MD5
  
  7224ffb934111a8809741992c978930c
- SHA1
  
  b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281
- SHA256
  
  9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772
- SHA512
  
  5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4