b22faeb398c9a267f7da7e57c61edcbf119dc4a00a2abd24fcffeb14a73ecc46 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83d8e2a678ae2e00c1fd95f4d4f9baa1_JaffaCakes118
Size

86KB
Sample

240809-2nr6ssxckf
MD5

83d8e2a678ae2e00c1fd95f4d4f9baa1
SHA1

422d1a913e78697ad43579041aac74cb8488c8b3
SHA256

b22faeb398c9a267f7da7e57c61edcbf119dc4a00a2abd24fcffeb14a73ecc46
SHA512

890ea9836dbe96157a1f9c0a2fbc0831d9fd81d24e1d210f53f7584fec3e846b6589fae10a708cc3b2f0ea41d7c19a5aa6d5cbc7907160d07cb300480d677c20
SSDEEP

1536:j2cpuPRwiZl/dh1peaWik4onXfnwZFJHPt6DUvrLoFHFj1Y3wR28mq+pAtFn+9nR:jU7FNwwr1t6DEaHFcwRpmq++tenga

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  Zeus_V2.lordly.ir/LordLy.ir.url
- Size
  
  177B
- MD5
  
  4e33f77c8a1ed6857a9678497ff28622
- SHA1
  
  50c82bb8eefb1324d18133663a52974a7a9e3c52
- SHA256
  
  e5f015cc094909b56eb63dc0ac7d9d1294a20c56e834202351b8abe8a3017dd2
- SHA512
  
  ade8e7419a31a929f32ce5db22defa54d5239c82222d0bb02bfc9cdfc02b057769d769151eef6d6f61c9488988f7754c7ebd2f01b742f107c56eb1c449dbb340
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2
- Target
  
  Zeus_V2.lordly.ir/Zeus V2.exe
- Size
  
  244KB
- MD5
  
  422cd67007836b2208978d62f578c875
- SHA1
  
  102d17b69814d5113ad05b117c223486894b50fa
- SHA256
  
  29c5548ecca81adf8049b448dd179b4279407e478fa1097c8565d813f09d03a9
- SHA512
  
  8892f2b3e9d830b619bbc94782ea4edcda79cba56fe5f0ba5babf8d5efed82d35fb03675c8a60222099fb9340d7a3f37c07afa7ebd122c73d48a752d31ec1048
- SSDEEP
  
  3072:Ssjk1VADHICXt0+ULrLcnXPkUdfsmB//elAfAurssbm6FxPnzDUGpFCJl0xYrVri:SqFosE3mB//elAfTr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Zeus_V2.lordly.ir/prjChameleon.ocx
- Size
  
  96KB
- MD5
  
  a97e15ae38c44b2f7adc2483c0fcd232
- SHA1
  
  c374a51a73a33cb387acb0d3b31151729969aa90
- SHA256
  
  d268a14137e7b604987df2cd8b9831017a6dbebe53bf6c1adcd05131392a1e34
- SHA512
  
  076ab4bc46236e549f7394fb9711db99c001eabf8fee285298af9d155cf3ade45e9d379449a4cfc808a51c1f22256364e2e228e98be7e4b22f10bac156da64fb
- SSDEEP
  
  1536:hHwBXPVB/E2AWVkmO+ji59L8ZuGZlZ2BsJ68F6sHUB:iB78iZ7ZZ
Score

3^/10

discovery
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6