3f8455fca4a5d4c59faf94f1bf44c08a561cb67b11f280c9e7785a22ecc42cb2 | Triage

Sharing

General

Target

b3672ad62711763b72ec7b2a37747abc_JaffaCakes118
Size

11.4MB
Sample

240821-pb8xka1dqn
MD5

b3672ad62711763b72ec7b2a37747abc
SHA1

7cd41c80d406d36774a7cbf663e95ab7c15a6c0a
SHA256

3f8455fca4a5d4c59faf94f1bf44c08a561cb67b11f280c9e7785a22ecc42cb2
SHA512

9a34ca85d823546157ffefc8ef84232cb9187fed9d6d87e58d8c95b3d793a1f30660c61690907e7d5ffaceeee0227ae0e4ab8cafb40ec7396547f0b2e45ab9b3
SSDEEP

196608:LORhZb/8FNYgD5VoTVRDfjS9e3NLuN9qcL5V8k6oQbC5N3m8UnPfjuuu4kh2c:LOnZ7yxLoRZS4dM2okP8kPxu4kIc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  rmaildxp_v1914_eng_full.exe
- Size
  
  11.6MB
- MD5
  
  f35abfbb5b669ec5c81cb081271d0902
- SHA1
  
  92ba34d14835dbbe7a6e9a21e231f0ee0c6a323a
- SHA256
  
  07f7044c0e0cbd5ba2ce6eaad44e57022068c10dabcec402164fb04041e452f9
- SHA512
  
  1b251105fb5f5590d44ffd02b787b0529a06575a2d7de666330ac2d56ad855c64415caaeae09906bd088e8301ab6317d6e3449d3018c34a4929511aad45ac282
- SSDEEP
  
  196608:p1k8hzr6kvCB0nyivptNiHTUvP82reUe0kbC83rMAefIVvSnZN:pjhzr6kJyivptNizUHrX38UN
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $_14326_/$_14326_/uninst.exe
- Size
  
  370KB
- MD5
  
  2fece3cce90a48d1533b06b07ba8b910
- SHA1
  
  77b4b2250eef6386746a8843e55caea784b10ba3
- SHA256
  
  125f3f83a331977f7a05e4769d445e51a749c702787a761046cbd4e636e44d2e
- SHA512
  
  70cb90bd495b617ae452fb5860b93fe9df6551f8a658e0842d7bbc6124e1b5abb9f6ffc3fd6ee70a2f53ea4dc997d1672be90fe1594c7857a58b39dfb706253e
- SSDEEP
  
  6144:rJ1P9uoTeIVrawjoEisjrlt18LTIFbq7icgas+glzWY94IJ03oLYTBd4w6sQV2jt:r1DdrNR5terovvJeksNjt
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $_14326_/Base64Helper.exe
- Size
  
  809KB
- MD5
  
  db21481f9f0838574236a642966a469c
- SHA1
  
  a0a21f57d0a6583ad2cadc1df9f46577496eb757
- SHA256
  
  f814bddf62904b4622af655daf97f3b7824afac41c218fe7d18eed287435587f
- SHA512
  
  721d9f40ab3901aaeb84264399035853b3279c9472a84fbec90b31324588c512b77702cfb396bbc729f1c997b880e62f7fd5fec953487f0b588c52bb2573c4d3
- SSDEEP
  
  24576:wsGiUiyhozMTHp5v+zKdpDJD2vofYMH2uk:wniTYTHC+dlJQohk
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $_14326_/Help/Index.html
- Size
  
  7KB
- MD5
  
  07b788ccade690ede943468a13b50e73
- SHA1
  
  c5b55c2d561c9891062a493ab06c87f940b850d6
- SHA256
  
  371cc9058c95eae49d075be9c569f87026e99d2842327c2132e2deaca7f649e0
- SHA512
  
  f3f9808b2da6a46917a76833062bd4aece4aff547da0163ef259311495d24b09f77839f561bc7b7ad6befe4cb717d6e49f98db9cf4b038dcb3c21c5ea2aae1e2
- SSDEEP
  
  96:EPHCideOK1PLtcxsJRnnQFVK7MnmsEAfxupTUCLrg:IluSxC99MnZEOuVq
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $_14326_/Help/advanced.html
- Size
  
  13KB
- MD5
  
  c1a1e63fd815f24951ee0c3677c2116c
- SHA1
  
  1ea584b222d359209dcbc5dae9755dcb534c3abc
- SHA256
  
  d664e3ce79957058060fff3652dda6a14856f77cb676cb924ed744f825b4f7dc
- SHA512
  
  517c09c5b3bac2366be58f420283d92bdf5ce930f7f824f7f668261cf8603f7c313a30726a24d9be70df84cb173df395c557a94956cdeae48833f1342c1d8cee
- SSDEEP
  
  192:ECKK/3YIqdJMaiLy+LwZPJdSOMsHJMJPClT5HTB:QK/IoyxXMCXht
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $_14326_/Help/help0.html
- Size
  
  10KB
- MD5
  
  ee8b6004e06a9c07abdc90b388de3490
- SHA1
  
  7b19c10b3de27e0c00b0128c8a3a60906968fd42
- SHA256
  
  dcbd09256b0fd8089f729c1443924edd1bb25a183d45b0acad1a7aab80323194
- SHA512
  
  344ada782f854de12eb9d2a51f61a15ad33e130b3d898480e96bc6f48f2c59a82c23fed12828cce604a8d14655fbd3c6610b6fe3c03de966be6a06e43902e1f3
- SSDEEP
  
  96:IPHCirktJPkD83OaGMmbGIhkGfQFcyro+ltJSa6p0MLGD7lfdwwXzgoK8ZMPyCJy:Ef83rGPSykGfQRnlS9SflfC+TKQB
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $_14326_/Help/help1.html
- Size
  
  3KB
- MD5
  
  8d60bd1ee5c16a31a012e0f3bf40e31f
- SHA1
  
  0e227c117ff99e6e73e52d65582586fbfba72d7a
- SHA256
  
  b1329722e6cfbb081554484159ddcdd94e429281652ba9619afbfa686472089e
- SHA512
  
  d51379ad2c10ce298c3f9ff0a284ae45c3324c54bf5bae6984ef3ab14d959b1b41da81f77687bdabd7173d4eb9baf4f33f272b81b75753e3d3e4f20f6ab748e9
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $_14326_/Help/help10.html
- Size
  
  4KB
- MD5
  
  6bbf3fec866f0f1718b99effa5b0c794
- SHA1
  
  94836e7ce34a148773b5bb37640a85cf5eb45bd6
- SHA256
  
  3ee782caf3f7aa490c5eb202da57d66cdea6c115c4d0127b9cc2d9c7fcbea710
- SHA512
  
  cb5c596f0ec2038fa69cab4947a1a773dadbfbf0ab507a212629f32862142203f184970d82382fbb58624c6a2c854380512a40ae767fd283cdcc172b3eb12981
- SSDEEP
  
  96:IPHCirYtmPkV6FY15S8vRX2Ic84rpgtMPyCJy:E+AoGraB
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $_14326_/Help/help11.html
- Size
  
  2KB
- MD5
  
  aff7769ad832742c655292c72c2c4d89
- SHA1
  
  952b7616c5067a2cbaf07248c32ffc28d1816e7a
- SHA256
  
  c79b5973803638d06d35998229e2ef7c625a2b913dd7f5517a9817d72ceb3ee4
- SHA512
  
  5ba69f3e851d0d1915e1409094735ad203b979fa4842f2c1440485bd805dc518d2ff01f1dee2416dd323553c25d09fb3e78554f8b896ceea1f9fe251b3a97a3e
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $_14326_/Help/help12.html
- Size
  
  12KB
- MD5
  
  e629221d39a78b46820383b369262b7b
- SHA1
  
  4ddb3354edf3e13134c01ec6dadeb340737bea98
- SHA256
  
  98c453787c351c9c26f3531ce3a73e5ff68013f968860aeb2cc77512b65ec63f
- SHA512
  
  3519008946ea66168267e23a1a0fe9e10de30d36fb59e093791b3af15c5e4a8c41ac514b457ec204aa8034cd6a869678fd9263e043f43ba28f907f4739efe096
- SSDEEP
  
  192:Eqkf/UaFytDGvnxCXyeOk+NQqHhGuVVc8vKLIT:1kfsaFytDGvYXya+fHouVVc8vK2
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  $_14326_/Help/help13.html
- Size
  
  5KB
- MD5
  
  e4224e4700374ab4c6a4fa45b9d337bb
- SHA1
  
  5db8d1631053fdd1968e57be114d30e6e24efa58
- SHA256
  
  75233e5e652d4d8be6a87928008d14f98d4321b6dee06447daec36d5be0a8397
- SHA512
  
  dc5cef565c110e83ed779434074c5a89c724e9b7580f7b468d07827762734ba10bb3578db5c557e6af24ac7cfe5af7e9e5c8a4bdfbd91aaa6bf5c3c18c261e00
- SSDEEP
  
  96:IPHCirLtXL9q9uBFh7gj8qQzP5e5c4i8pORpB2qQzNAQz6eAQzUeAc1MPyCJy:EhL9qYz1gj5aP5e5cXaaaUaUTc1B
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  $_14326_/Help/help14.html
- Size
  
  2KB
- MD5
  
  db0163b89d0ccbe66a1fc2669b26f4fa
- SHA1
  
  cee803936dc5c76065caf6e328f62c91ac4a36ad
- SHA256
  
  9bd10188d6a6ceee64e63bc626890ec420cfd83a1d065043fdc474f2a95853b6
- SHA512
  
  7447624d1fae413ac5207f5f6426737fdf090645653e9183ddf595377416d08abec9092ef398bbec9a14d740701690eaa14e0cf4a3756c826c62d90b3f19171b
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  $_14326_/Help/help15.html
- Size
  
  4KB
- MD5
  
  61ab2f8ad1bcbcaf1a303652a3499550
- SHA1
  
  7884a7d6c74626fc2b27da32b5d4058cd50a0457
- SHA256
  
  1eb9840ce935d021a1e987ca0c1efe8be6da33d7946f9c12b6bb6a619c941652
- SHA512
  
  208543d8a606ef4566e034d191df589dab8207203538c7f337972c8cf277982151394863967a5aab94592b995e8d0687b6ab7be8672f705d09f48063d791b706
- SSDEEP
  
  48:ZqPHHQrr30mDtBcTbOiGDYWhmjpKWcNlWCipDSA/6chZ6saBGAWTPLWU2DGtWAkc:IPHCr3vtIC9mjpONI7nmmUhsMPyCJy
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $_14326_/Help/help2.html
- Size
  
  38KB
- MD5
  
  7511118fbba150c69c98026f494dd6a5
- SHA1
  
  84bc3ac0b26cae40fef4dc96aa27c1ed5b8d5798
- SHA256
  
  b2d6061af7003572b3f4665ec6c8a418018fc766ee584715a4418b46498ce990
- SHA512
  
  7cb38a106a9dd776696e7de43c4fdc3fc6914be2317ee058f890007e56f529284c836421fc495c9d9de624b65447dbdffbc7e05fe26b6eec7ab094d61ca4b0c8
- SSDEEP
  
  384:+OQKOM7/eLj9/c9b2/beP3sMl53B8/dCQTltlhQMdpnvKKnh//U:6jM7/Y9/c9azAldBadCaPvHnv5ls
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  $_14326_/Help/help3.html
- Size
  
  8KB
- MD5
  
  ef6a011f42358b1b32ccbe97ec72377c
- SHA1
  
  51fcaad3a8f93a09dfd1df6a7c32d3bb86ef364b
- SHA256
  
  7955438aa85eaf7e3883d69988fb304646446a468e65cf4696ce6579d26eff75
- SHA512
  
  c97dc0aea55d7412d9bccd901065e50a2b800ab9159e0c87fe33439b64c06ad900c4b1f4e612645f0c2de9df598b183ffe04945148413f0c31eda71df0ddb255
- SSDEEP
  
  96:IPHCirZtwL64hIU35k4KBLReCFyiCgCC/zoKQgX+Q0QMPyCJy:EgWG935k4KB1e7e6nQ0QB
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  $_14326_/Help/help4.html
- Size
  
  2KB
- MD5
  
  90b76b3f81ca273bdef239e48067d250
- SHA1
  
  df4b030c4258ed22692a7f8ab0441b9afd380145
- SHA256
  
  877ccab6efbdf9dfddfe898a634db005892eeed71a32401f023c6fe53e6b45d0
- SHA512
  
  49485e5a826991539379edc20bcad17fbd794e7108b9d690a4ac5f6f63c13200db7a467ce40657a34c0fa115542cb2004fcb8de7068612f2372151b5a7f4c05e
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32