18d3ee5ecf45fc7d523089fbe3a942feff27e45fd0022b3cfd7a2d1c09a74cf1 | Triage

Sharing

General

Target

96dd11116c4f072553c47bf5a8fb18db_JaffaCakes118
Size

4.3MB
Sample

240814-vbnvaaxepm
MD5

96dd11116c4f072553c47bf5a8fb18db
SHA1

9050569631af056734130f26e6d89612b4d4a652
SHA256

18d3ee5ecf45fc7d523089fbe3a942feff27e45fd0022b3cfd7a2d1c09a74cf1
SHA512

eed8a89f199b237750c31c5fc3f1c8f5191ea65810b4f25a179f0e5a4539fc4e1e6ccdbc0bb7aeb414c0357031a897df7ee6842995a544d438f270e91c624e46
SSDEEP

98304:Du6FDtPx+KO7kJv1ptkZS+FRrJgHbS/89yoevxpEuVRMJgTD0mPY:5FpJ+KO7kV1ptkZtf9/8revXE8RCgMKY

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  wineim_6_setup.exe
- Size
  
  4.1MB
- MD5
  
  d6d46c23c735a4cacb2ac43fae0d49ee
- SHA1
  
  4b239b8ca961f317a88416e77b0b8f9efdef1544
- SHA256
  
  2f8cafb50226940e73408e69720ca901ebd60239c0c8f3f9a70aa1e074323560
- SHA512
  
  76f7cdfef303729dbb48f17a15825543f163af2ae57157eca3be35f3669057a8bca64ab514ae8bf68c5dc258d14c78204277f9e7083d1ebd529a844b7054f0f5
- SSDEEP
  
  98304:50oamX0kLjCznIrnDwZmuBKCi8zM5HFsZ3SaHdqbtqymy0H:507mX0k/CzIrDsmFpXHFsEaOtMR
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Banner.dll
- Size
  
  3KB
- MD5
  
  043f3f323088d2f10ac942ef6f393a7d
- SHA1
  
  56ae6d5e477b879b85222c35f64ac0eea3f67549
- SHA256
  
  de59f8df95ca5d886324927b23b2c4de3baf828fa6a2fb18d7e266f99569c312
- SHA512
  
  ba5434d058bc2c031ab5b84e45168f7365d8863b662db0cced1ec2e5912b7ba6f7641a3f09632a1756ddf1880af13138c06de68176a1d408d4abd2acec3d07d0
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  b3ebe1cb6bdd529302c121dd4e2e0d00
- SHA1
  
  305f022e7e3ef0ae6cdc5f18bd6adc3032f64304
- SHA256
  
  5a1696f9892567b3339faf2bf4df5eb1d2d886c49807529028b65f0f493e79b2
- SHA512
  
  6f6ea4aec1588bb6f7ab4f8422942ac0acbddb8b916af2ead039b434bec6db4d0bf64deb3b8d6cc33666cabd70024a1208411ab6e0ee10bcf98c47951f8d359a
- SSDEEP
  
  384:7Klm7i+c3QW6ckPhyDEaLnu2bbBBIXwZ:mqi8BcyhEhLjbbTI
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/Splash.dll
- Size
  
  4KB
- MD5
  
  281a695d64d136356ebf3c359d487cc4
- SHA1
  
  bdd621c9e92f7616d86fa58e4c89592c7ad2f856
- SHA256
  
  bacb0cfab8aa26a7123e3dd0df5d538bde48047099e884464ae6e91e170bb9d6
- SHA512
  
  9b6d4531e39c5dceec9ede506908341e1957047ebf7bdd7eb39e5d782e0c85f63c8fd16a41f519127077d14eaa7cc87fd043aa0fe886d04be0eafc61abfb9075
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  16ae54e23736352739d7ab156b1965ba
- SHA1
  
  14f8f04bed2d6adc07565d5c064f6931b128568f
- SHA256
  
  c11ffa087c6848f3870e6336d151f0ba6298c0e1e30ccddf2da25a06d36a61fc
- SHA512
  
  15dbfcdc5dc34cb20066120045e3250f8df9e50b91de043f2ada33ac0235907d98668e248828a7ed9c75e25dfb5103b7248867530ce73ee36f6a35c30b4afa9f
- SSDEEP
  
  192:HO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1a8gMO:GKAFERdlxhGRYUzqZa8
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  GdiPlus.dll
- Size
  
  1.7MB
- MD5
  
  b2b7b98c94b6356b91144df9bf594829
- SHA1
  
  cf58f10dafa77393b90bd8d3b5641362a88d7c8a
- SHA256
  
  c35b0f920a6533a2462939b09fecb312da2f9497c3badd0ffdacb9b8725fa450
- SHA512
  
  9a85ac4ddea1ef359d4a3899662891aec10fd868966d69bb5e5fa5bc2f70003f02d9c258e8ff3fa2f6a7a2092bdaaf3db69f376ac52e397f2165c282355eb220
- SSDEEP
  
  49152:0RZce7qA+upU5BZk4QrSR59yXKn/9XlQ5K:5yKZMk9yXKn/Bl
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Uninstall.exe
- Size
  
  55KB
- MD5
  
  ad777a2d7829833eb1142371d09347ad
- SHA1
  
  399a7b7da6499bae94f401256d9e6ed0ce9c6174
- SHA256
  
  797522e9df12d121edffea893f6e67803e6d3ce260eb6953c54f55d4514d0753
- SHA512
  
  8d1716e793f14605151a0194d913b8aaea81a6653157cadf79ee0a7781fdbfa5ec2f6b4f3210d8b447e203f02305a74ee94454193385f7879b9a7864d0d37111
- SSDEEP
  
  768:01cVhpQI2EQK0iPDh84nScF15GYbWjXO3XJBa0QjmPETWLIebodVLSnFq:SQpQ5EP0ijnRTXJQDSP40cdVL2q
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  b3ebe1cb6bdd529302c121dd4e2e0d00
- SHA1
  
  305f022e7e3ef0ae6cdc5f18bd6adc3032f64304
- SHA256
  
  5a1696f9892567b3339faf2bf4df5eb1d2d886c49807529028b65f0f493e79b2
- SHA512
  
  6f6ea4aec1588bb6f7ab4f8422942ac0acbddb8b916af2ead039b434bec6db4d0bf64deb3b8d6cc33666cabd70024a1208411ab6e0ee10bcf98c47951f8d359a
- SSDEEP
  
  384:7Klm7i+c3QW6ckPhyDEaLnu2bbBBIXwZ:mqi8BcyhEhLjbbTI
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  bin/imhttp.dll
- Size
  
  131KB
- MD5
  
  8607810444ea7e1ba9a972236d0601a9
- SHA1
  
  e1ee78f7c5a36503d9af864cb1b9152e08919c48
- SHA256
  
  4f574164efd2595acaf15b9b8038afd7d88bcfa5fb6517355f4011df3409350e
- SHA512
  
  735e8db1c71eecf428802dc7662d889a2879ec2b726ac36980d76e87b46ef0e66a7c1dc252c13ee7c68ef39a85a32319c435edb6ebda16b9ba73416b473c51dc
- SSDEEP
  
  1536:yliA5b7otaJiVA9zepiyW6gRZIB5r4m2Lzi6jp7p2akjXVSK+gf1KdVnY5pdnW8:EXosiC9HAi45qzt2pvCdVnY5pdW
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  bin/imie.dll
- Size
  
  134KB
- MD5
  
  008a0e0fddb5ca9fc21333e56f5f49b4
- SHA1
  
  bc5a1315e810aaafc502099111bfdfcf6625d334
- SHA256
  
  a98b0c64d35058d24e742d4a913f2132d7f677bc10c4446a4a755dca85b4e359
- SHA512
  
  3843e98399fa1549d40a5cc1d6a1650dc1754764fe490fd56fd6b093b4d336d6db226bf8220e4a38498ecd7e705665519f7c65bc9046cee78d900782239c3259
- SSDEEP
  
  1536:LW586cWeJRo0p6TnQ3Yg6TJHecJ9y6sKigfBemkjJ2risfkwm2P4rYKMJt574C1o:Lc863ot6LdecouUQ3kA4sKMJt575W
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  bin/imload.exe
- Size
  
  43KB
- MD5
  
  429446b98dd8f5d6664e89d2c01947b6
- SHA1
  
  fe9607f961fe2dd472612f69b4f188c4f30180da
- SHA256
  
  6a23cddb8e3803ff028b71a1a7dba65487d6e4afd491356e904e237d0488292a
- SHA512
  
  7b47824fa118911707856546a193b5c8665416fd98271964cd1d890887f6755db747e41d589c3e28ca7bb6a50b5c0632cbb644ed225ef0f595fe59577529d238
- SSDEEP
  
  768:vZzuybFuv27MMUYZ1LGd1DJJ5zDGZ7yRJk5JRjD9pv:vZnFjM5cL+DJ/z1Q5rjJpv
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  bin/imres.dll
- Size
  
  94KB
- MD5
  
  df11c1c500dd46b735c59413e408a77a
- SHA1
  
  9a44fbf42b8e813ab97ba705034976162c74be34
- SHA256
  
  b9ef22c55f50118db73a8aff3fe2a370eb7cff75a67458903357fba76237f278
- SHA512
  
  c4d4f1a16f9ede108850738681063617e85bf6e41305f1e5499c9c8c4a277ee01d7a35941189d4d6ef3548fd489a246c48f260b45e7094e839b583f34d86941a
- SSDEEP
  
  1536:Pbsngf5tYeCQZ4aOMRh0/359BVVJSEHhFpg9q6jU9PkKMYLO755oxD:DsnK5tYeVi3q0/BcEBzMYI5kD
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  bin/imswp.dll
- Size
  
  81KB
- MD5
  
  207c5d16485e0ecb62c40c18277b908d
- SHA1
  
  9f65c29f1cd4ff4f6650c534c0df031344e217b3
- SHA256
  
  9e85ae1720666ba8cbf41f112fd1c1d9cd12734b120c348db0f8ce27682a1803
- SHA512
  
  3302ad224019f1cb95e0a9ba2964323900d36e2e44b99718b97cea130f0c66379c1e7a728ee56ff51af9a69dc1d93859a21c9dca3c0b40bba4c40ef480510a04
- SSDEEP
  
  1536:Q1/3gCbrJkmG3k4gh9EVkTcuV4HHp8lc5j0gvac:E/3gCbdMe9EhI4HWW5j0gvac
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  bin/imudp.dll
- Size
  
  74KB
- MD5
  
  1ce7753e24128a57d092947732b5a5ca
- SHA1
  
  2b2b6b27e0ce040aca234a688044bba088484518
- SHA256
  
  5e356ee306e90046ec23a59a8b057e4c71276e79c549af813dcea6091261dd27
- SHA512
  
  2b614da68fdc29cbb2df9049b9077b037765201fcde69ba823076431094e677523d4581c1ddb43f5068ec4d7444747c4f4ff08456b8c6d50552e4b6db17e12e3
- SSDEEP
  
  1536:0RP/6n+0gLDZkNSpocfeXz2CX++UtRaTNd:EP/6n+0qDZkNSpoJ1UtRaTNd
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  bin/imupdate.exe
- Size
  
  110KB
- MD5
  
  7cb532caa55268fac14bdbf40908ca26
- SHA1
  
  401aef9f0ed03e9fc6341fd747fd115017450573
- SHA256
  
  490ac0823ecf7b12d0927bda461d85525f09cfcaa330be5077f1c82e20b2a51c
- SHA512
  
  bec6a9373425107207a4cc589a3b74920c0a1ed47d243137d594a437ca1989384026dbc5afd9dfaef47bc6a3523451a37a9744324cd4ec81ef76e181f7ea7cd9
- SSDEEP
  
  1536:lAz6EN9uC0DJP5mKN11RE0Lxy6VLdAZGcJWIZSHvGx+v5WJQccW02+X3:l86EN9ulNIFhyLktYPGAv5WJJcw+H
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  bin/zlib1.dll
- Size
  
  120KB
- MD5
  
  d3c19084c087441379c1cc59c75297bc
- SHA1
  
  e588bb8ad8e90c5eb48cbc2c35ad234c52e572b2
- SHA256
  
  5f7f6a57466cf5f3dc06d8a9210d097b6d08224317c2266fa078fafe17fb50e5
- SHA512
  
  5574a7e533f48e5dd3308e625fce850cd82c39f4e86af4887e807dbc2f90f654f96c8348dea1e529c8ee627d67666c0e278c0bdb22c9219feaee6cf522e8d224
- SSDEEP
  
  1536:eUNAwt3N2hn9cFkachHRX3aUvPRylXpBPROIIOlIOanToIfg5V72VXU7:XXN+6FkxlqcIOOv2TBfg5V72C7
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32