6776bc8cae0cba8776838616c14d64e7f09b86888e1a29233f1880355dafbbe3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b51befd3558fa9ce6d05f167dcc3e048_JaffaCakes118
Size

2.2MB
Sample

240821-1a7tnavgkj
MD5

b51befd3558fa9ce6d05f167dcc3e048
SHA1

c33bf7de2de3bd8f5527c56547f536e8f61804c3
SHA256

6776bc8cae0cba8776838616c14d64e7f09b86888e1a29233f1880355dafbbe3
SHA512

1b5a6286199cc65ab48ce75cc0a404a9d6ec73e5ce17aad54fa2bfd2af56d1261fb36df6b4c5a12fb17b6d434c3587f7edf3e7b6f65f4454a94a77efced0839c
SSDEEP

49152:HJQPnVWL9pfhz1sp5RwH0DM/ObupyrdejLGeaMrBXrTK:HaPnVWLbsVgOA0eYMdbTK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  155绿色软件站.url
- Size
  
  219B
- MD5
  
  3a1f2a8a3ef08ae269517a69ea918b2c
- SHA1
  
  7d2e6719702bc8472e045e010efa6ed3f7df4b5b
- SHA256
  
  66eafefa8bb0155e60828476bde6068573fe64a4fd0aa052eba074dbe85d46cd
- SHA512
  
  22203a78192cadc02d0f887247675925273a69e3be82ec1a331197f892216a282cc8f37c3ffbfb578a708244181037277b8cc6a40d8ec70cdf0feac5d80f8576
Score

1^/10
behavioral1 behavioral2
- Target
  
  systools-ost-recovery.exe
- Size
  
  2.3MB
- MD5
  
  1f3cfc7807d77020d4286166b8dc7878
- SHA1
  
  ddc118d197b324d55b74be9d69cc1a77e4f44de9
- SHA256
  
  961941b66765abb20b4651375db92c9f8a01b101cc51fdc8387276bd47f6b1fd
- SHA512
  
  f7a8e71cba74e7d7b8985efdba868b3323f347f9da7b520a78f7a1e66418047e866bde2a26dbdbba789bdf2f788592bf97f8cd3142032d3e7db6f18ffcc2db5b
- SSDEEP
  
  49152:i22SdsdX/4zRr5NvP+RpPvzENazVhZ5olYP7YH/1JsROO:z2cscVDgQazVVolYDYf0ROO
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4