88249769f21cb9f7855b72f444517aa2640e13d6503e82b1d5d216ff37036534 | Triage

Sharing

General

Target

9420732ab6adceba7800e4338780d3b5_JaffaCakes118
Size

1.0MB
Sample

240813-wgrc2axgkf
MD5

9420732ab6adceba7800e4338780d3b5
SHA1

bb837541f187ccbf0731df53ca34b40d4ff9e829
SHA256

88249769f21cb9f7855b72f444517aa2640e13d6503e82b1d5d216ff37036534
SHA512

88d87147fcc65cdb868bda0ed9732428f5d362b9e08db41f4c37d83cd5c11bd338434aaa7a9df2423b42428c5e36b1ef7c2bd3427fc5e7912e23b0fd0842a9a0
SSDEEP

24576:J6iZTYuj58sf1PC3UtQ3Pu2pQC+iaiNteoqNycH3b5uzqDtX:1ZTYu5N9j2p/HqNxbAE

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  pictxt-v4.1/dll/Advp.dll
- Size
  
  466KB
- MD5
  
  5e3269e7f11e61449ff41635c1a1b6c8
- SHA1
  
  609c54721e561077f173efe6a00d0834774b5be3
- SHA256
  
  a397ed1de38312f504951869d95f138c515b31eb1198bb8b0dee35cda69acac8
- SHA512
  
  f2b3bbd80483be7dcce659750d61aff625174edfb08e62f12453a89108dbd7573d8c639b401fb72e1de7ab4e5ea24da2558cdf534811594c1bbe4701e3f6fde2
- SSDEEP
  
  12288:o6+Bf67em1xDGTToKjReevBNAio1JmymX:j+tHmuTzjYeNAhmym
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  pictxt-v4.1/dll/Common.dll
- Size
  
  87KB
- MD5
  
  0ce8c4c0873f46c6d681ae7bff4afb92
- SHA1
  
  3c805068f8a0b759d429d141fcf6389587176b68
- SHA256
  
  ce9e2ed0d11f2029cd0552938115b0be50473d476c62ff247b59ec3cf745af9e
- SHA512
  
  ef64a3329bdbb4c111d8978e18655f9d4b77c66302b580c5a55e2ec747693c0d095ccd4a13429ffc7dec027e56557090ce138243aa91000f5b10ee0bbad0f454
- SSDEEP
  
  1536:OjqjoQXOKuov5YlgP09KuCcN36/stozo/qW7752DvYoOjja0OacCQ9:NoPtg5/PIKja36/sezo/qW775gvtOjVO
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  pictxt-v4.1/dll/RegCom.dll
- Size
  
  92KB
- MD5
  
  2b7b4beb00b141aa7d68e9358ef4bd0c
- SHA1
  
  dae6fae835cdabb1e71c21383c628683ecc4d6ed
- SHA256
  
  4887a4fac0ab0c5e3d3b2fa869fca817d20f8675e1b517a7de00e8446618c2f1
- SHA512
  
  904c5d8b0be60bb227031a66b5e0da6fe7b01983424a64e0027fa0a7c340e2244ce26cde8f13ddc2dfeea9cd88986625c3900664553cb5f05df182828c16c5a1
- SSDEEP
  
  1536:4iaq5dUQlKk6HtBPnaw/TiOibmYtbJtHvmWgDrx4GMwGV4D9UM88/Mfbyb899:LdUEH6TnB/TfibmYtlhvmWgDrx4GZG6G
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  pictxt-v4.1/dll/SelectPanel.dll
- Size
  
  770KB
- MD5
  
  00db61d4f3bf5ba8f46c0acb88e4f846
- SHA1
  
  b41bb8778ad0f70249b4758ef9c38806c38c2e66
- SHA256
  
  daeccbacc4d26311e04642b672dd60f53a243f6981a055b4c511ed90269a1f49
- SHA512
  
  6a27a5558f8448fa1aa35f193cae3ee23ee15dbb4ab452324dfba08b71ccd2e22673e8da79b27b69fff6e9400127254ffe06fdb2f0a427f9f60563a870107af1
- SSDEEP
  
  12288:14fNsShvC6ajh/8KQYOpSM6DxGBR/6GhdcpmYzMDSVpO/Flv2e5iReuUE:w6ovkjh0KQjZyINYzlSFlZr
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  pictxt-v4.1/help/pictxt.chm
- Size
  
  159KB
- MD5
  
  1c4a76b97497ba4f95c9de00809b2e83
- SHA1
  
  01ff9f9a7ed4d56ca21ec6324f8172c9a95a82a2
- SHA256
  
  ec8ef519e632a6c78de6d3a36dfa4ed5032bf95c0bd287ec53ce992e6d61ecce
- SHA512
  
  aaaed954cc5beb57ef628c3a83927ba1d0ae00ff3558c5eff0d931caba7e4b2cbc67d54aa499bb9789fa978820b457d774ed7d7bad3e6149821fd85455de6513
- SSDEEP
  
  3072:TjY5UcCiAre/OvUGhIYSdFOT2ofGFdrWaieMd0/xWAcqODwUiP0Fp2rujzmu7DBm:TkD7Arr8N/OSofoxbzcDD7iqAu7dm
Score

1^/10
behavioral10 behavioral9
- Target
  
  pictxt-v4.1/pictxt.exe
- Size
  
  1.5MB
- MD5
  
  7118a9fae0b96326d5249f5809fbceb5
- SHA1
  
  ce6702151c47859e9eb3e333b7ebde761601495a
- SHA256
  
  101ce51bc5eb9298484ebc4696462d585f5680b680704b8b0edd157dac1cad6c
- SHA512
  
  2747c240d9c60e815e19ce668d4f764b2c49f2c84951eb61737f67b018f5adf8f324d4f3e71a4a42adcb5b094320bdf781388d40dc89e11f8f6646c58137ce9e
- SSDEEP
  
  24576:BNUhlWHVidAq9OxbgYxVnACjUnQ86idhku8EBhSCvrmNByy:HUf4y9/Y/Asz86QmEBhrvrmN
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  pictxt-v4.1/support/add.dll
- Size
  
  2KB
- MD5
  
  22737f595cdee071defecce8db29d768
- SHA1
  
  e57d103c4013b1a42b02b2a49514c2fcf4041594
- SHA256
  
  9cdc2eda9f5a269ec51ddba2cf0ca6d9f546bc57fb916422d715da56995cb783
- SHA512
  
  d829995ca85e2e36e9ba1a21e19bd3af3c1dad5f36832a532492bd74d414b22d35c289fee8c04785b7acc941c1103c1d6fca59c998144265fbb37f843519b50f
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  pictxt-v4.1/temp/send.htm
- Size
  
  173KB
- MD5
  
  41b7923ea68656b4ed7fa3e965e2ea2d
- SHA1
  
  2475bfe245b85fdc2d5b61fa29552bd44a5c2ba1
- SHA256
  
  00984efa24bea76138163ed9f6d18b9de2090a4e5e453961e1d0913e58d56c98
- SHA512
  
  dcbcd5952786bfca71cb785d773a3da536204873bc79c3d14d0eea0f41fb4ab387a15ea36d2723c83cd551d26bd28f23aea66b36af43c34ee0138204852b9f80
- SSDEEP
  
  768:egiTeb9varAmzlZsBKisIFhjEilZG90Zu8DBRZ+L:9zb1wTTgllVDBRs
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  pictxt-v4.1/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18