66637624bd2ca8299a1cc7a157a7613efb80b417568e01ccd9cdb592ecdd4a66 | Triage

Sharing

General

Target

abca4ef2c95f01f840c9ecef8ac29257_JaffaCakes118
Size

3.1MB
Sample

240819-t9pzkayfjr
MD5

abca4ef2c95f01f840c9ecef8ac29257
SHA1

0ac01e891274e53731135058eb8637abd1699c2e
SHA256

66637624bd2ca8299a1cc7a157a7613efb80b417568e01ccd9cdb592ecdd4a66
SHA512

d2bad9fd38f0c2d89df99e8376f6abefe52b0671df8a701cf342c6b9e108ac5a1d454ba89cf5420126edb09e31caf2ef665ae9c4ab849ae74b28adce5fb87b23
SSDEEP

98304:VmWSzYCIfMfNNJQuYotaUZ08Anr5GTLpBh5k6ML:nSMCIU1aK05nr5WVu6ML

Score

7^/10

discovery link pdf

Malware Config

Targets

- Target
  
  abca4ef2c95f01f840c9ecef8ac29257_JaffaCakes118
- Size
  
  3.1MB
- MD5
  
  abca4ef2c95f01f840c9ecef8ac29257
- SHA1
  
  0ac01e891274e53731135058eb8637abd1699c2e
- SHA256
  
  66637624bd2ca8299a1cc7a157a7613efb80b417568e01ccd9cdb592ecdd4a66
- SHA512
  
  d2bad9fd38f0c2d89df99e8376f6abefe52b0671df8a701cf342c6b9e108ac5a1d454ba89cf5420126edb09e31caf2ef665ae9c4ab849ae74b28adce5fb87b23
- SSDEEP
  
  98304:VmWSzYCIfMfNNJQuYotaUZ08Anr5GTLpBh5k6ML:nSMCIU1aK05nr5WVu6ML
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/AdvSplash.dll
- Size
  
  6KB
- MD5
  
  13cc92f90a299f5b2b2f795d0d2e47dc
- SHA1
  
  aa69ead8520876d232c6ed96021a4825e79f542f
- SHA256
  
  eb1ca2b3a6e564c32677d0cdc388e26b74ef686e071d7dbca44d0bfa10488feb
- SHA512
  
  ff4e6e6e7104568fc85ef3a3f0494a5c7822a4ceaf65c584ad534f08f9a472a8d86f0a62f1f86343c61e2540b2254714b7ea43e4b312ff13d8271ff069386fa3
- SSDEEP
  
  96:6hNSXIcmYjkvTS6MnBNZ1BMjDfhkkEkkXstWpPwoS:JXIpzTSd1BSk/kJtWpP
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  a4173b381625f9f12aadb4e1cdaefdb8
- SHA1
  
  cf1680c2bc970d5675adbf5e89292a97e6724713
- SHA256
  
  7755ff2707ca19344d489a5acec02d9e310425fa6e100d2f13025761676b875b
- SHA512
  
  fcac79d42862da6bdd3ecad9d887a975cdff2301a8322f321be58f754a26b27077b452faa4751bbd09cd3371b4afce65255fbbb443e2c93dd2cba0ba652f4a82
- SSDEEP
  
  96:2fiqP7bO2qHkAC40KhvSE+6nrxtMn0iGd88qRLqtJ1tbRhElfRx2:siqP7OHX1Q4xtcf8qo/ttgfRx2
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  7579ade7ae1747a31960a228ce02e666
- SHA1
  
  8ec8571a296737e819dcf86353a43fcf8ec63351
- SHA256
  
  564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5
- SHA512
  
  a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  bin/agena.dll
- Size
  
  366KB
- MD5
  
  31ca38642b28927a96a50c9ec692bdd0
- SHA1
  
  cadf826ac122b8be331e504f1bfcfcaecce408cd
- SHA256
  
  9930307cbe031a30905a3ae96972063bd50fb548fec7cbf42afce622a00d5980
- SHA512
  
  b3cb6f14c53291ac8200f8e4bf06d8075d36e8ade91e71f01606b5fe44c46a00473cfcfd721dc433e5df48d9b729e1d4513a3e23e72320b80e33d8d3426c480f
- SSDEEP
  
  6144:Kp6nL92s2uH6KNq+KdSHj4aFd0aB73KA05:Kp6nLHJNq7cHjHFd0ap3305
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  bin/agena.exe
- Size
  
  16KB
- MD5
  
  8a1c0f25bf17a3b03cc6bcabb749d0de
- SHA1
  
  c7677b36443ecc358c582d370f392709b2241b3c
- SHA256
  
  46e5f213ff9a94cdecc380d25bb781acde28d6c20fd02f2ea99f2bdc3d323e55
- SHA512
  
  3f2c2410662a2cfdb5ce09481b4937cf8ea1b7d3eefd0c67a8a713a5967a2cb149d58434471ae56b7acbaa2a6a447a08e27e8c68ff7cf395d300ca59913b74f1
- SSDEEP
  
  192:M4taRYfTcyUk2bnVZrQVYJn1hcITMov7JKb2mRFsvUIf4EWw2Y91:M3YfTtorwYJn1hhdKb30stwz9
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  bin/agenaedit.exe
- Size
  
  936KB
- MD5
  
  9c3c4fae438ec4c5ec16c3608c93384b
- SHA1
  
  465e76bcc901bd7bd46316acd719e95cfee3a330
- SHA256
  
  9ada64151a6e1c537ca4fa9407b21111c38fc56a0dd339d4def06589dca6f0f0
- SHA512
  
  e14d6fefb1724ef2cfad023d4a421ecb1dac7852f658bf026a8e1e6e062b3bd2f89ea496ec32c918c4e1a9d1cfb82238349117dcb7c52d61575db12cfa6757e0
- SSDEEP
  
  24576:8nbNhIoxU9VU0ZwzCMJhPaSnHpMgwsYv6UnA0fgPB:8nbNhZxuuzCWVJMg+A0fgZ
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  bin/freetype6.dll
- Size
  
  450KB
- MD5
  
  aa1de93e1ffe4f5ac87726a854517206
- SHA1
  
  8c5918815bf6fd1514220f49eba029f18a9aa848
- SHA256
  
  03bf3e6f1e85af254b1fff83e96b282ab75bd3b891eab67826363b2e2b3b783a
- SHA512
  
  60dc0e7a21ddf7251edc019d7eff8476bbc887487a7a7758274a2bd0cbf0467da30a604f5e18392aed345f3860ecdbc6ff6b4f4b1e899917643ec88c8af4d742
- SSDEEP
  
  6144:V1G9RXwIcfU00JE4227qoOvxsZEROxJzuRUPKDMaXtHkCnE+W7gJ6tU3fVYvBFBJ:k1whs00IDfvOejmPKDYSV4MQb9aK
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  bin/jpeg62.dll
- Size
  
  124KB
- MD5
  
  96995de4513551d49808b34b40ffb26a
- SHA1
  
  1daf57aaea01d60bdb7c63faf18a419df955e321
- SHA256
  
  f0d0157b4f1f0fa5aa0c4682ec659ce5e1c61585e631a14536bea10faf0b01ea
- SHA512
  
  cfd3b3e8250804d4d4c77bd49a3674ff910ac4c401fb21e5f6f6108916248f88971269202bb26d3ffd4aa987008d2dafd67430d1d55097610b8f907ffb398181
- SSDEEP
  
  3072:hFq5TfTnX3zl3Ygrda1EAK1OxjE/axozVXNdb:hFOnzl3vo1Ex17axoz
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  bin/libgd2.dll
- Size
  
  245KB
- MD5
  
  f4fd6f360de59f981e6d1e05a4cc074d
- SHA1
  
  bc192fe81890e6adb38d47571f285d34ce8336c4
- SHA256
  
  519aac0f838b7ec9f1b1df23654cb743babbc2a2c589460d9a0e2e60e36d83bb
- SHA512
  
  e094cad85e467b5cbdd8a87bac0e58ce4f6b50d8625dd269e360d1d84b2c2b4b2329e410686f3c2bc2d5d65203686b7213ec5a7630c4385cab5e5e4cb762add9
- SSDEEP
  
  1536:cBXGmzpUAbUEL3cPd0SMZX5jCHGipUYFMOzH+JAn1AZypXN:cBXVxbUS3i1MZX5+uYFZzH+zZ6XN
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  bin/libiconv2.dll
- Size
  
  877KB
- MD5
  
  331f570aa7c20bc93deb7b237b21cc9c
- SHA1
  
  2d9ff158ffa0161aac3aa2197c361bc56369a308
- SHA256
  
  3ec2d1a924ef6f19f2db45e48b9cf4b74a904af5720100e3da02182eee3bcf02
- SHA512
  
  89960144cef6ff89c11cc3fd14c62c2633f418919c72d3c9082143bf602d51fd9c6c8870f6f194cb2ccaaf4e19f5e13825bf036d5cfd3721cbd7514e890a87b3
- SSDEEP
  
  24576:Zf0TfklyKuJGavkg3Ny4WbbbVQMBAUZLYVgem:daayKuJGaXFQQMBAUZLYVZ
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  bin/libpng13.dll
- Size
  
  198KB
- MD5
  
  04865cbf31ff163a422d44c39747f011
- SHA1
  
  7e9d2d38156c5852f39ea6d3637286c8fdce60f3
- SHA256
  
  bcc18faee81a2362b2bebc58208ff23e8a9641dd5843dd6692c19f942e0259bc
- SHA512
  
  482047800227b283709b73d2d87b05e115913493cd37b08c4edf9921becf668d7e3eef032abb2b461dbcc629b93d7d10cba097c3bfd5ebb72a9394b2c1b49155
- SSDEEP
  
  3072:zvPGUvhvhp3RtiyfknBQweBm9aolmQ3McHjjZAEc1QREAeXlSf4r1o4v:7J3NGzeBm9McDeEcGe1u4R
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  bin/xpm4.dll
- Size
  
  51KB
- MD5
  
  92d6d0c05a303279bf6d2975a684353d
- SHA1
  
  c341c5a6ecec9470d9eff100af02596d34f7d81f
- SHA256
  
  cd1f0b9ce4a9fef9f847682d902980a1f82b635d161a34f2bde28eae24c77900
- SHA512
  
  7ff08ca7cd0c8205cc88e56c22c127bf61703ce156e75ed00d720e193b81bb0ac959fa3fe98dd2367b4836a103ccae77e6ffe0ed1fab13b8d9983e830f596b11
- SSDEEP
  
  1536:3t66C8ESe61+p6Cme3GZFYt8hkt233nztooo2U0DJpOtzyj:3EB8ESe61+PmYQFYt/t233yj2TJItzyj
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  bin/zlib1.dll
- Size
  
  73KB
- MD5
  
  c7d4d685a0af2a09cbc21cb474358595
- SHA1
  
  b784599c82bb90d5267fd70aaa42acc0c614b5d2
- SHA256
  
  e96b397b499d9eaa3f52eaf496ca8941e80c0ad1544879ccadf02bf2c6a1ecfc
- SHA512
  
  fed2c126a499fae6215e0ef7d76aeec45b60417ed11c7732379d1e92c87e27355fe8753efed86af4f58d52ea695494ef674538192fac1e8a2a114467061a108b
- SSDEEP
  
  1536:+4nToIf2W/nkQRZHaamLQHoIOah7Vryh7IO4cZlIXw6Epb:bTBfHdRZH9mLQHuaBVGn4FXw6E1
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32