63fc557cb3f60e8758b71ca5e3111be3c9710bac21182740811a82a959d597bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa738f00595f5fec5a31c41b0b218d2b_JaffaCakes118
Size

182KB
Sample

240819-lcgypazalj
MD5

aa738f00595f5fec5a31c41b0b218d2b
SHA1

81ac4116a13f65e62d8019b4270fb259cfa2a25d
SHA256

63fc557cb3f60e8758b71ca5e3111be3c9710bac21182740811a82a959d597bc
SHA512

ae4a2e6689499b5be32c03676baafa362717a630be1d45b71ce00de630687550c5106d412c1e0815c0c2be170e63261ce82320e3dd171b01d1f616b60de5595b
SSDEEP

3072:Q5Xvuh0GCMQoa6Dj7rAl5d7NmCvIP6Hba8c3lql+Jv+UMfnSEd9dU9hc:Yuh3RJUl5pIP67dlwv5MaO9Se

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  aa738f00595f5fec5a31c41b0b218d2b_JaffaCakes118
- Size
  
  182KB
- MD5
  
  aa738f00595f5fec5a31c41b0b218d2b
- SHA1
  
  81ac4116a13f65e62d8019b4270fb259cfa2a25d
- SHA256
  
  63fc557cb3f60e8758b71ca5e3111be3c9710bac21182740811a82a959d597bc
- SHA512
  
  ae4a2e6689499b5be32c03676baafa362717a630be1d45b71ce00de630687550c5106d412c1e0815c0c2be170e63261ce82320e3dd171b01d1f616b60de5595b
- SSDEEP
  
  3072:Q5Xvuh0GCMQoa6Dj7rAl5d7NmCvIP6Hba8c3lql+Jv+UMfnSEd9dU9hc:Yuh3RJUl5pIP67dlwv5MaO9Se
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $TEMP/Window~1/Windows Aktivierung.cmd
- Size
  
  4KB
- MD5
  
  5260a7a4acf1355002474ae32da0633a
- SHA1
  
  f1a30aa5cd408af5773f433795a0f7807a5ff085
- SHA256
  
  bea0b1c648e75ad32191df4647f7092006fdf9acd1a5bb85c5dc970444ac9ed3
- SHA512
  
  10e92f11ef391e3f4bb04f1f73ed47eb06c032efbdc801917bd184624df77d46837be38980db5a555e6819fe22930f3c74844a449740d829059dfbd11cc600b4
- SSDEEP
  
  96:N3RejTMM3j4dB7hB8/nafVuB92Jt3Df/B1Ah+1wDhaeNLNXQApVFbkvbkYHcJQyK:N3RejT+diMuWLj0h1NLpQApVFbkvbkYP
Score

1^/10
behavioral3 behavioral4
- Target
  
  $TEMP/Window~1/bin/bootsect.exe
- Size
  
  110KB
- MD5
  
  1112d43d607be21d31866cce7792242e
- SHA1
  
  6eded2dec2e413b470c87c04b56cae53dff86b20
- SHA256
  
  7592deac6f3123eb144c4cc2bb7503f05a19958cf458749dea3a2fce67ef68e0
- SHA512
  
  d86e09a8727f728ffb92a24e57f2dbc1357be0cd554f837614fee054eba6d6c17a0f4612c7c7475278d183d84aa6d55a9dc6352f41140601e60d70a7d87d2503
- SSDEEP
  
  1536:4RAmC9M/u7ig6XwL1Itg1XCxfjhLBD6f274DsV9XFj/+5htJcf:4WkVgd1Itg1XCBjh9t7wQ91jczGf
Score

1^/10
behavioral5 behavioral6
- Target
  
  $TEMP/Window~1/bin/x86/bootsect.exe
- Size
  
  95KB
- MD5
  
  d8b8d28830226e96a800584c6a9db9e1
- SHA1
  
  b0cb47eee3667c8c24408927e952015c2081501e
- SHA256
  
  0025583cd9657d16e661c14c104ce904ed60d38b60422a623664e4241a5e50a0
- SHA512
  
  49574a97df915a854123f8eeddfba4312b716395eaa3f2bcfeb40c29fc2f140bf32cf610d98d9bfb9ad9bb9cda087eb06246d9765b232e30069ff90a38287797
- SSDEEP
  
  1536:5YbyrIO05nZX+SQleQKdsN+jiy9WElg3htJjR:vIB5B5ueQKdsN+jiynlg3zb
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8