181fe0ba8cdd526b16e07d71022a1bdf4e13e1e97c350f353621df05fe884989 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a14513c6eff33c8cf02a1c829a282fc2_JaffaCakes118
Size

652KB
Sample

240817-fkgd8sybjf
MD5

a14513c6eff33c8cf02a1c829a282fc2
SHA1

04aa047ede5eef5b32530d18811659b0275994f9
SHA256

181fe0ba8cdd526b16e07d71022a1bdf4e13e1e97c350f353621df05fe884989
SHA512

9c2f28c23d22d60af58e8ace4daa2e092b8c5da1394b3999928abf9269a2c7f06cb22b053ea43d4a291445fcf6e82cc4dda4604ee186727b437b4b7d9536caaf
SSDEEP

12288:svvolUCwTFnmLuNBHo2O1kcqQHWmX0EaQKWyO6SsVvaVd0t2:s4l7N+R6fNkEawyOTVdZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  UccPlayer.exe
- Size
  
  684KB
- MD5
  
  411b2bec716751b5732b1ec4919488a2
- SHA1
  
  045a92c4ae51aab78ab57bcd82e36d5d60b142a9
- SHA256
  
  181841f045e0eeb3944e9eecf2852552d202b49fc0ab95000f314e352b7e2c97
- SHA512
  
  fdc474501b9b9d60e003e62fb30c141a127169ba56e97ce91a03eaa1117d8ca8ebc55676153ff789a8be3a43825be6b50f7858dc7503c7a63d9edaea5d213d83
- SSDEEP
  
  12288:827/bTehEqclTBnsj7X5TIuCBHo5O1EqqQmWmB1EaQKnyO6NsSv6qGE42:8u/PWcFBnsXFe4WfkDEaByOmGEt
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  Woowatv.ocx
- Size
  
  36KB
- MD5
  
  3c8dd879e5dbbe66e4706136d362a5df
- SHA1
  
  5d0f00899dd03c9f57d9c77b0586b0721cb71af4
- SHA256
  
  e01526c68cc2ee105fceadc3d62f9cbe6524bde937a6f32ff791515afa092f86
- SHA512
  
  78e0da83325097781cdf7b1f529ffc1f7eddcbb8ffffd1f4e5e4577fd5bd9d5eca218e2e216831e2081bf16690ec2349e9f2572cd0eac8bef589c53e1e50dab2
- SSDEEP
  
  192:7HOefCmgKTzaK56ImbcbYn4Ungg1bcbYn4UqmA5CfKRgh6cMhZX/Rznw:7ue6ca8u4b44UP14b44UqvyugahRt
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4