c4f10dda2c1625665bb71340d37065f963d6d446cb742b511a960b6769d52737 | Triage

Sharing

General

Target

a140220d552fc6e73edbb9064116877f_JaffaCakes118
Size

8.8MB
Sample

240817-fep47axhkd
MD5

a140220d552fc6e73edbb9064116877f
SHA1

8273c207dcbfeaf6fdafcec1e6369d90bb4a8d80
SHA256

c4f10dda2c1625665bb71340d37065f963d6d446cb742b511a960b6769d52737
SHA512

21c19be57b812aa979ef926fbb5a9e62885b327f9f9e04db42400672d1f9787a14d02df6fc9692e22fb5d1ca1fa5a529358a04cba1a2c7f1499e499a2722cba8
SSDEEP

196608:7hwOFiaQ7LL287KpLOA8KjBFqM1soug61TAEnCe8H498ekBFJ:lTwaQX+pLJ8GY8F8AECAYFJ

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  a140220d552fc6e73edbb9064116877f_JaffaCakes118
- Size
  
  8.8MB
- MD5
  
  a140220d552fc6e73edbb9064116877f
- SHA1
  
  8273c207dcbfeaf6fdafcec1e6369d90bb4a8d80
- SHA256
  
  c4f10dda2c1625665bb71340d37065f963d6d446cb742b511a960b6769d52737
- SHA512
  
  21c19be57b812aa979ef926fbb5a9e62885b327f9f9e04db42400672d1f9787a14d02df6fc9692e22fb5d1ca1fa5a529358a04cba1a2c7f1499e499a2722cba8
- SSDEEP
  
  196608:7hwOFiaQ7LL287KpLOA8KjBFqM1soug61TAEnCe8H498ekBFJ:lTwaQX+pLJ8GY8F8AECAYFJ
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  FreeImage.dll
- Size
  
  648KB
- MD5
  
  8cdaae887b036d5805b904285a039db1
- SHA1
  
  7d7fafa3f68a29ec4e95f1b1a537391c2475f517
- SHA256
  
  f90472bec5aeaee95b152d0c7bdd7afbb29ea91a11b865d6d5b6c520eafa2a90
- SHA512
  
  8cd0205409a4d832fd0880daee75677c38b78a885bb8d2650a9c051b90d3b97f314503e51103502d558d6e8becbe1a87f666866122ca9366a9d7521356522d84
- SSDEEP
  
  12288:Bu+2lpZf8QCmgRGnCIGzSVMbaan9phMPjgsu3jbu:J2lvUQ1gRLIGzSVMbaESjgt3jK
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  LUNAClient.exe
- Size
  
  1.5MB
- MD5
  
  cf973f6292741a60d0141ce2adfbef5f
- SHA1
  
  8370565578cb1969bed2e33061fc4c24a11b2ec0
- SHA256
  
  162d893b6c41fdbc7e82ed4e366d846f5da43b90da2e0062d5af48837210f66a
- SHA512
  
  3938531937400923e2cfe60127a5ad4407867b055a9dce1a86ee7c24575369b1c591e80d8b6b60f3ddc2ace06c6824db54e403eed51b6c9ab5374f4ef623154b
- SSDEEP
  
  24576:C9P5ZJLFSCfo2zJz8e3lKT8KPetq4mfIbJ8GuCFgmWbLilRNQ2MZ:CXZJBS2RNQAlKAKPE2cZImWiBQ7
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  LUNAPatcher.exe
- Size
  
  2.9MB
- MD5
  
  0446e2c34ef01b92e34c64779c332865
- SHA1
  
  386b91f2bf1afcf0dc9fdc8f31f1b528de80472f
- SHA256
  
  6c3bc2e462940d5c4dce7331736d4c6af1ed2ec5e83c0db73af085e51564ff00
- SHA512
  
  40505deba8db48ad2377c35df5049b58089154d639524e405c156dc24f4f5c89a8018053476a7a509b8ef9b05fc744d46970e6123ff0e349b6b77134bdb71407
- SSDEEP
  
  49152:C2rYz0MYQ1yuD36SVdQdsJ22Au1A0UxYqJcj+gT8TN69imKyLRZ3gMm:C2rYZYQ1nPAu1ATmqJcjXFY
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Options.exe
- Size
  
  648KB
- MD5
  
  5cd61e6c718c575cbd0fc1117b033937
- SHA1
  
  ad2820d4e5c3b7e5606132795144603669628188
- SHA256
  
  568baa5a910a2744c90d90aecccb3fdef3b55c856a9b4d512f8f93c202329070
- SHA512
  
  94ccb6c4cc22185e1a93c4905c71299c7c1ac1a9763bfc5daf1e2a5ef26df0ac991635964d964b70f3e74c3f86d797d0762017e7548187bbe80c182fab5deb80
- SSDEEP
  
  12288:Rc/GcMCsWedvWYYmFtmRRGKSM2fyrjT1Nw/hc5Gd0eC888888888888W88888882:O/hMC9edvWYbFtmurApyZRl
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  SoundLib.dll
- Size
  
  64KB
- MD5
  
  27d6a0d0e5fb6f84a3417777ac2021f0
- SHA1
  
  15e3da68e5a4257650df4c17375886c48492a735
- SHA256
  
  c5c8336b9d8c4cdad07c42c3ef18941a7c326f19c42ccf2cee6add57f653534f
- SHA512
  
  bfa3506ef339093b6dd01b9af7e932c2b244f54de9ce7cef27bb27b5edc321070fe8ed0dacc03e9d16357c7b1c7699790736ab9e861e923fc2e47a08ac57674d
- SSDEEP
  
  768:6HVadSV76dtct+zJBb/2KWW6Y6aBuXnLZpwz7ag9q/OCegEl2SJrfaS:SVZdKxp+NWT4nLzwf021l1l
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  atl100.dll
- Size
  
  134KB
- MD5
  
  36d7d05505951f542922df4c725cc57d
- SHA1
  
  074902ff54d30ef6ee2fd6ebe475526cac84670c
- SHA256
  
  74b7c86b75cfaf5121554bd8cc4dd8e496458311070fa43b9b4fb13b4d8c8eab
- SHA512
  
  4c7f9445703fc79f595739cfc0d4e24dade4c9959f6cb24840b020e98943f4dbed9c2937187165452215ab0a683d1159c4d629e22bffa625bf08286fce657889
- SSDEEP
  
  3072:XGAbjYAiKWDEvB+55/Ho4y6P5sxQ2euRA9ot:z+KWovoP/Ho4BP5wdUS
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  msvcp100.dll
- Size
  
  411KB
- MD5
  
  03e9314004f504a14a61c3d364b62f66
- SHA1
  
  0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d
- SHA256
  
  a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f
- SHA512
  
  2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d
- SSDEEP
  
  12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  msvcr100.dll
- Size
  
  752KB
- MD5
  
  67ec459e42d3081dd8fd34356f7cafc1
- SHA1
  
  1738050616169d5b17b5adac3ff0370b8c642734
- SHA256
  
  1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067
- SHA512
  
  9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33
- SSDEEP
  
  12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5
Score

3^/10

discovery
behavioral21 behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22