9176d2e421c7cc43f0e3414fae2aab17db203647c2bc2b2d379d16bc8fe499c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3fdcf348463f398141f88a0930dde9c_JaffaCakes118
Size

163KB
Sample

240817-y3mm3svcma
MD5

a3fdcf348463f398141f88a0930dde9c
SHA1

8a91f467630bfbb2b12415ed9d078aeecb6f7623
SHA256

9176d2e421c7cc43f0e3414fae2aab17db203647c2bc2b2d379d16bc8fe499c5
SHA512

b77b6ebf0f984351b06d4c07689611e17d9317493092a9b721f15b8bfac709300607d20e0c7c60a5bf33925e4a6fce01c9b7cf524dc901ca7d2288fe744565bc
SSDEEP

3072:OQIURTXJsscv/q7pvh5djXeWoK/TmqiexUaEOpllVb:Os7cv/q7pvBOXK/TmTIfEOplzb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3fdcf348463f398141f88a0930dde9c_JaffaCakes118
- Size
  
  163KB
- MD5
  
  a3fdcf348463f398141f88a0930dde9c
- SHA1
  
  8a91f467630bfbb2b12415ed9d078aeecb6f7623
- SHA256
  
  9176d2e421c7cc43f0e3414fae2aab17db203647c2bc2b2d379d16bc8fe499c5
- SHA512
  
  b77b6ebf0f984351b06d4c07689611e17d9317493092a9b721f15b8bfac709300607d20e0c7c60a5bf33925e4a6fce01c9b7cf524dc901ca7d2288fe744565bc
- SSDEEP
  
  3072:OQIURTXJsscv/q7pvh5djXeWoK/TmqiexUaEOpllVb:Os7cv/q7pvBOXK/TmTIfEOplzb
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/NSISdl.dll
- Size
  
  14KB
- MD5
  
  88bbaee1059dcba83cce60777e90a423
- SHA1
  
  a0369b986bed181c9cbd70e573754d48f7930119
- SHA256
  
  19add6d77910f00709d52d1118765d9117246beb3d40ed227376e3a8380f8307
- SHA512
  
  9d6160ff34c6a7c9e91102374abd6611defc9588c7ce7dd8238d4023b2db79ff127aad9dbbffae68651de9e8206acced33b9960ca4a21eb7e6dcd6aa8c39c805
- SSDEEP
  
  192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPbsfA:6Bo/680dCI5adOjFOg9//p27uNw27o
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  24KB
- MD5
  
  1efbbf5a54eb145a1a422046fd8dfb2c
- SHA1
  
  ec4efd0a95bb72fd4cf47423647e33e5a3fddf26
- SHA256
  
  983859570099b941c19d5eb9755eda19dd21f63e8ccad70f6e93f055c329d341
- SHA512
  
  7fdeba8c961f3507162eb59fb8b9b934812d449cc85c924f61722a099618d771fed91cfb3944e10479280b73648a9a5cbb23482d7b7f8bfb130f23e8fd6c15fb
- SSDEEP
  
  384:XErRo4TdlKCdUk6qz46qu2vPqUcnlSHmkuPJOiya4fF0Ac9khYLMkIX0+GvBgK3M:XiRoW7Kc5bBq1qNlSHmkuPJOJa4f4CD
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10

discovery
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10