9d893f74e470e16642396f15c823a860094689d225a7e16dce2ecb926e05a84c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

896c52c742a872a99759860784dab201_JaffaCakes118
Size

856KB
Sample

240811-hq6x7atcqc
MD5

896c52c742a872a99759860784dab201
SHA1

b11f40f0e840a1b476d6787b32c142a01dc146ce
SHA256

9d893f74e470e16642396f15c823a860094689d225a7e16dce2ecb926e05a84c
SHA512

6dbbc30fcff22ad3b6984630c4f22caf766d27cb46060d0dc3b1823251d008f5d02cd14b71a28e56565b1518d9f174612cb8adb4c657467e60619146f6b8ce4d
SSDEEP

24576:vE6K+S2tPnlEsOToKORoCvMfjN244A65fMKtB:vE65S2tvlSTdMoHpn0FNtB

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  Recorder_2.3.0/7z.dll
- Size
  
  843KB
- MD5
  
  d09e74a783e8b4e049ab3b323c73a71f
- SHA1
  
  236be185f9e9f51bf0d4b1f4646fa5184f1d2232
- SHA256
  
  d5cd7170f7961d18adb468aace23ab46caed8261a5494fb07add65ccaa87f6ea
- SHA512
  
  14cff0e4ddb64bc4020f7cb188c2f862afd2534b4df36e2e5edae83ef77ecd3b59202aa28940e6971a3d5cf7d3b84d5b295f7297a31b227b6c613d877b6f8586
- SSDEEP
  
  24576:n2FFH0KiTkPd3sdWljAcjkULPm6AaJIc1mWo:2FA8cdCj9memcwn
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Recorder_2.3.0/Cab.dll
- Size
  
  217KB
- MD5
  
  bf069525c2471cf2c5ce7cd3c59feaf6
- SHA1
  
  49a654675b5763e85e92b88d75011507128ed91c
- SHA256
  
  dbcd501aab70aaf52dbcacb696272daf9ab09ef47745832a14d1170e5792e5b4
- SHA512
  
  d20476a54c466721b5e6e505e218626ae5c7eeb914ec65dadb1cdd7172e8e8a0b9185108d3be1dc34bc0bcad11c534a591ab3c55f4561b6f7ee11b0d197f21f0
- SSDEEP
  
  3072:F/ZQkwrVXgCM/tNWs91H7HcIBXJKh57+VNRO+bPwDOuv9Z8t32VVL1I:sk6VQ/Dn1b1lJKhRuNQ+bPGOEqq1I
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Recorder_2.3.0/Drivers/XiaobaiFsRForVista.sys
- Size
  
  96KB
- MD5
  
  1a3bcc9a5f6e58a705c6cb908bc5c87a
- SHA1
  
  6bf1318343ae64ff0f989ffa39b50119720d08a1
- SHA256
  
  132dcd5b9fd4fb9d3c18ba5df7e942c9e742af569c8f366232786431e853973b
- SHA512
  
  e8617aa556c1107d0ec84f2f70bf9379b28e4a62ec72dad10918ca484d7cad5fd982063389d3bc65569a7db5a5b14f9b7fdf522ffa6d0d98a1eff5dbf115abb0
- SSDEEP
  
  1536:4DQne/51VxdtMdj55Ncl0s6DwzSlz5eI3o2nEV95XojVVwFaO:PnK1lCdjtcl0th5NVa/XoRVq
Score

1^/10
behavioral5 behavioral6
- Target
  
  Recorder_2.3.0/Drivers/XiaobaiFsRForXp.sys
- Size
  
  97KB
- MD5
  
  ab09e1f1060fc50e681934ff01de5dee
- SHA1
  
  4c61a77e222d1760056678afe26d830f9cf83e94
- SHA256
  
  c1a5245eea57e12fcf94c9b8a2e00f0ab30744be25cc4e077daf46fe0eab081c
- SHA512
  
  31949a91d520ad63ce9cae3400cd1524bc6a90685f005dcfd1267e9a6784817db7c6968d369b9c81c1d992d4fa91305f34fc1ee0e4db1654a0180ce16855cd7f
- SSDEEP
  
  1536:cF/IiL7w6iSNGJ15FFDwO3XX/j/Tz5eI3o2nEV9GDbI/El7BFaX:cF5wDSNG5XDwOnz5NVakbI/El7a
Score

1^/10
behavioral7 behavioral8
- Target
  
  Recorder_2.3.0/Drivers/XiaobaiRegR.sys
- Size
  
  25KB
- MD5
  
  c8054d3c4716c95b52e3f613db1b1a1f
- SHA1
  
  3a2cb4560636fde0d22f0f98d3deefa0bdd3d8d7
- SHA256
  
  f20da136d9d674a6fbfc23134289975ba2ca5532d006e77e7b2062dd61d64c5a
- SHA512
  
  b88c1b2611f993f4a83094be51243833af8e732deefe46282f8e45575c43783cc00865d904086bcc556479b3a34ca42a25e9b3ed3dd1c4394a429b8fe490087a
- SSDEEP
  
  384:HObJZs/pZCT7sLeBpICS5SoqJy5knGaeUYVmYf4a0hFRYJLh4iadwuWlt:HONiBxYS5QJ6h0hCLJadu
Score

1^/10
behavioral10 behavioral9
- Target
  
  Recorder_2.3.0/DrvMgr.dll
- Size
  
  153KB
- MD5
  
  b7e9c4cfa90b18aad3d872b47b7be573
- SHA1
  
  dc8408557156f375924b10f5024eab19ed98e1fb
- SHA256
  
  4cd06cf4657943a353ff56f45d8e1a491437f927c54ee2a14ef3ac0994814f3c
- SHA512
  
  2a41402fc8088cb3f4bf23100164c0267b3a8638abb684d72376084909d7051558e6dda0ca2a4ba13262910d9b0ba4854d9c20310a1f98fa3b268eb3c1e7f7f6
- SSDEEP
  
  1536:nbiU9dtRksY632HUXfVPz0QraACYvjU004ZkXAvekdOw/tZZ1AYYYYzIbmLFa9:nbF9dtRjPmU9AKbjsgOw/tdLbb
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Recorder_2.3.0/Recorder.exe
- Size
  
  985KB
- MD5
  
  b54c504cf9929ea35d1a1611a5cab80c
- SHA1
  
  bd53b4908559bb5e342ab780105008c1047307bb
- SHA256
  
  69727889513ffcc58616d9ffc730cb763fed61501aa3eedb3a8b718c41128c6f
- SHA512
  
  29d4b80183c6030fc7c79bfa317bf2ef8224dcfd17744e14fa46a59d0b0e3a09e0f3ecb2305210ee011aa7635d628ef4a7566075011f3ec76263f17e41d399f3
- SSDEEP
  
  12288:G+1SF8Xz8Gqx1Tgpz7uxWh0tDEA2bpkRJDP2YUYKOdZbPn4:9wWXzxqxpgpnACw8qj72YUYKSZM
Score

3^/10

discovery
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14