a48a52f0cf3a293b6884bf44248f4a68a0a1273e95a43906160b9e1c85bb33f8 | Triage

Sharing

General

Target

78ecdad49ddfca74f98d9457a1627198_JaffaCakes118
Size

33KB
Sample

240727-vtfxdszcrk
MD5

78ecdad49ddfca74f98d9457a1627198
SHA1

401b4fe59c6da738325ded58a0b94ff63d8d3a07
SHA256

a48a52f0cf3a293b6884bf44248f4a68a0a1273e95a43906160b9e1c85bb33f8
SHA512

da74675d9ba0fc80b6ad5c5a03bf3b130cb115263d689f546e6d0571f1778ff2d98f19927220239ebddbb4cfce2d1dfec6e2ee63dd48d6120cfac727e9857b63
SSDEEP

768:Edz0ufb9d5c6Eed2p7Y3HV+c54a4cjqF2myLoNkuMRo3BD+wyM/:sz0ufhDc0d2pa4sqF5k3RoV+wyM/

Score

9^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  shmnview.exe
- Size
  
  38KB
- MD5
  
  c4b47de8b6bbb0cfb4e4b15d327bc9a5
- SHA1
  
  c176ba5ad79b9d2063b0a4b64933583fc0607353
- SHA256
  
  55e0eb71fce7f084b9442d2c27ca036e624d9fdc619d95a725aad77512743900
- SHA512
  
  b3bd4093e4579cd43f965478afce98a756464f575efec7ac9269fc27b722ec4a23c8b8683311566beaf4e006ac00d119f2c63e9d9b3b44083a9baa4c1ac6c6cc
- SSDEEP
  
  768:RyCpPFfUHZBICNFPC39XTbn1ck71bVQ4+OCxwha54Q:5tfUHZBFFPCNXTBck71bt+K7Q
Score

9^/10

discovery
- Detected Nirsoft tools
  Free utilities often used by attackers which can steal passwords, product keys, etc.
behavioral1 behavioral2
- Target
  
  南方的雨博客 - 原创技术交流博客.url
- Size
  
  176B
- MD5
  
  b1dfc300594c3fe4dd5ff532089feef7
- SHA1
  
  5f8e2582e84d7ab2e82405945ec67df4ce80e31e
- SHA256
  
  ac77b1cd98b74a3a1ae1fa4531e8b70aef3cf20dd81077380c46f2a34c006ddc
- SHA512
  
  9e5c87286c20e1d6d752a687199576e50727beaf2cb7f58f075bc20ce065f6b241dc3cb676e234f639552bae2c49c8bb1479a5b65d4bb0666b648340ed2bd67a
Score

1^/10
behavioral3 behavioral4
- Target
  
  新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6