d30584c593369c188b887bf88dc444a8d0cd0587016684fd21fc8f4627c359c7 | Triage

Sharing

General

Target

a94e683dce885e4228e189e6725e1873_JaffaCakes118
Size

1.1MB
Sample

240819-dffk2azhqg
MD5

a94e683dce885e4228e189e6725e1873
SHA1

c88a908da6ce1618958d902504fa4a1400bf3ab7
SHA256

d30584c593369c188b887bf88dc444a8d0cd0587016684fd21fc8f4627c359c7
SHA512

14b380278c5083af7c3e56daad439f4fcce091afa8641a7f3bfbb5b8948b56e7b2a90786dbf8752bc0d85d1d2be3b03df8bca32f8910d73291f063f750ef5736
SSDEEP

24576:p/Mw/3kOpte56ejA9TgxwVotkj2dBmrd5Wtt8TSMw:dZpm61KFPd9ttaw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a94e683dce885e4228e189e6725e1873_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  a94e683dce885e4228e189e6725e1873
- SHA1
  
  c88a908da6ce1618958d902504fa4a1400bf3ab7
- SHA256
  
  d30584c593369c188b887bf88dc444a8d0cd0587016684fd21fc8f4627c359c7
- SHA512
  
  14b380278c5083af7c3e56daad439f4fcce091afa8641a7f3bfbb5b8948b56e7b2a90786dbf8752bc0d85d1d2be3b03df8bca32f8910d73291f063f750ef5736
- SSDEEP
  
  24576:p/Mw/3kOpte56ejA9TgxwVotkj2dBmrd5Wtt8TSMw:dZpm61KFPd9ttaw
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $0/uninstall.exe
- Size
  
  78KB
- MD5
  
  5fb6b31913e86124371731a2fd46aa5c
- SHA1
  
  9767a1bf828e635351525fc85dbed1e0ef400107
- SHA256
  
  48d55c3c39e2eb5bd8cdedae74bc68cc02a40dff19ff9e5bf4c9721f4fa2d2f7
- SHA512
  
  74bc56a76a309ba9a5618500aa6e66c291f47bf4400a0ada7598d460f5415f25bddd9ab0a380e4cb2ceadfc1906b6ab29c39ee21085f169e281496aff5e90dee
- SSDEEP
  
  1536:PEkjY1zy214Qay0DGkJ7qAELVigJIysjcpGdxYlcDRCqp2/D+:8kjAJ4dDGkJ+AI0AsgRcDRCh/y
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $0/zinkseek.dll
- Size
  
  980KB
- MD5
  
  01fd705aa879bb610bde66d35592f372
- SHA1
  
  51dc3e99e3e9b7b861cf380e8d00165f616af99e
- SHA256
  
  7e9fe38f1a90b37fb714b3bf218596ba20cb6885249464e9a9c892f1d1e44d1c
- SHA512
  
  52da333bfad9551e5d42bca9b3f24e41fdf7f33a3f61754e869aed65b99d1077a9ac4a16c499d3b3b236be4c0ea431025fc4a050396805a7817ec1d0b0477ee9
- SSDEEP
  
  24576:Xl5qT3nZBH4rYxIDcQ4vdN/Aiy8HUTivC2jnnstA4XMS+b3Xl2:XlQrnTH4DcBVhNU2v4KyMSuXQ
Score

1^/10
behavioral10 behavioral9
- Target
  
  $0/zinkseek.exe
- Size
  
  25KB
- MD5
  
  18da0caee8016da81064b4a315fe23d5
- SHA1
  
  aadc811427a0e3bec0c24eff4f6623481aa6ccbc
- SHA256
  
  3db331d5edd7c0c08e9c657bf451b98471bfbd805c07f771334671093a1fb4c7
- SHA512
  
  383e523a25b92c81e4d569b426158a4e4bab6f36a5e711ea9b844324df98de3eadf75db451b5e6f159ff7b4caf595ebdbea950e0dc800d3cb8fb8ffbb09287dd
- SSDEEP
  
  768:1sGZ4dGD89cYIVXAa9Dtj0QMn3RBgFmBal:mGZ4cD8JIVXAIDWQs33Ul
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16