695718581438e27bfda6cfec46303d6d56dd477a705e99017c13849c75859087 | Triage

Sharing

General

Target

87b4a3ae34504952c4b00be3027bbe9f_JaffaCakes118
Size

1.5MB
Sample

240810-z46ysaycqm
MD5

87b4a3ae34504952c4b00be3027bbe9f
SHA1

0b00a5e837e9cc766f52508bad74f64a74410693
SHA256

695718581438e27bfda6cfec46303d6d56dd477a705e99017c13849c75859087
SHA512

70bbdc7588f25f17dbf699a7f48ed2c36622ad2a4064f3d0e965733a9020489711bf92c2b47e4749c6e6c04fba95806202d0833dd3173f31f43e4fc03ef8d89e
SSDEEP

24576:t/aICAgwZBn3u4BOy5cXqhJtjm6jmfbPis54XVGxdaTqLg7D35L:9aICZwZBndBC646y7cVGvIcgf35L

Score

8^/10

discovery upx

Malware Config

Targets

- Target
  
  Crack/Crack.exe
- Size
  
  697KB
- MD5
  
  f8ed7f883d62f8a534eeaec7e494a0bf
- SHA1
  
  332b5a002d663ab9461923edc7042eebd90542fb
- SHA256
  
  b6c86a0af7f1d97692aee4bce67071f0be6191872c465e43556f984134569400
- SHA512
  
  e9408947ec56b00fa15505d85c8845e75d2af4333b44f6247214d71de9f2ca9456a2c6f9207c5d49e490081ab71c065f70cae7248ae10358bd5ab5e88c5927e0
- SSDEEP
  
  12288:jrijABOifbVmYqncRk/5+gAOPt2KO49xoMTFcdof3uNlApUJds4b0HbaRN:HN5JmYqnccPIKO4PTFAo6A6Y4wHGX
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  Crack/Keygen.exe
- Size
  
  108KB
- MD5
  
  dd14dcdbc2c821fe759fac28a842802c
- SHA1
  
  843aacd2f4f621ab477f269788b82259d030ace5
- SHA256
  
  644704e8dff529053e718e7e8be9539573dd7f316b8ade0910ceffcd7941a6a4
- SHA512
  
  25dac16cc7d201945a4e64246cdf00c244116623ba1a70dd40b01a00cdaf4ff6a9fd21a6a76b851131a147e4e8dfe8a07835d2da63aa66a479a14625d123363d
- SSDEEP
  
  3072:2rYK4uPuSY5K5ignppnU2NjFkqBXqwSRV:2sVLSY4igppNam
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Crack/非常世纪资源网.url
- Size
  
  261B
- MD5
  
  7224ffb934111a8809741992c978930c
- SHA1
  
  b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281
- SHA256
  
  9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772
- SHA512
  
  5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd
Score

1^/10
behavioral5 behavioral6
- Target
  
  mfx.exe
- Size
  
  712KB
- MD5
  
  576f5615625177aeb25a4ee47382483e
- SHA1
  
  3a6197ac32f4c5d2345ac0e9fb4c3bb78c8cf198
- SHA256
  
  e5838c1f19536bb27cf1fded43c988606b74a6ae10cee1b603a13f5688fe84f8
- SHA512
  
  e655a6c567f039646768223863d101755dbeb28de55403a4b507b6eb77f8c3fe18bc734d0bdfa826487a73cabb2f1c9415598f811e79dcd1a8ac97eed499a257
- SSDEEP
  
  12288:BbltTdzpENTct8CtxS1eStVnW31TDYKK7rsMSyrkANU2XzId8rgYICTpO:BbPpSNTg8CjN4VQ1XJ8g2rV3kd6St
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral7 behavioral8
- Target
  
  非常世纪资源网.url
- Size
  
  261B
- MD5
  
  7224ffb934111a8809741992c978930c
- SHA1
  
  b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281
- SHA256
  
  9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772
- SHA512
  
  5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10