9f5103474797077a40d98c4a012bf38058fedf18baf943290d24b7db2e996672 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3d88e62b2ecf8f0111b327ba1371aa2_JaffaCakes118
Size

2.0MB
Sample

240821-rw1ssstelh
MD5

b3d88e62b2ecf8f0111b327ba1371aa2
SHA1

45a18fc01c8961d723d95588656dea9ccdf3cac1
SHA256

9f5103474797077a40d98c4a012bf38058fedf18baf943290d24b7db2e996672
SHA512

1ef47cfbe7ca4bdf42643373901524b54549bd16e7e2cf54e6a40df2a74e31e8a785ca33c800642cfb4d4657b836d18ee5301057ee70decbec4f77383a5b5ca8
SSDEEP

49152:FgkH3oXqe8FYVOHkyCOmT6jC/UbxUT3Z9ktN2gFiBbatzUPK:F1Xo6e8FYcEyBmTgbxU19KN2g0wt7

Score

7^/10

aspackv2 discovery execution

Malware Config

Targets

- Target
  
  Mp3dllPleyer.exe
- Size
  
  1.1MB
- MD5
  
  a7545d0b1cd14b7cd6f10b705b67d8d5
- SHA1
  
  38daaef971454d840a04b5c29c533e9c648d89a0
- SHA256
  
  5d13fe97c9ad1fb76da25296aa4e3c9cfc58b9842de69d691d15a80db53ce1fd
- SHA512
  
  cc53df387a4504c6980fb881317cacb47ca6e2148e3f133dcc2767aac6328ad4b3a917ab921e000cf7fc309a5d241559d50132a478df29ecac3e5a7d1a52e499
- SSDEEP
  
  24576:AxB3tgOGuNQGZe/oUXRkrjp3OEvRX1hoJ:AxB9TRNQIe/oUhdARX1ho
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  UMp3dllPleyer.pas
- Size
  
  31KB
- MD5
  
  88443925104be732112b482a2809083f
- SHA1
  
  3eda81ca1a6fc27aa5f7965f4a2c6d8ee8707742
- SHA256
  
  384b9053485d0654ce0deb550904ecf9073a4f52046df2f741a8989eb4ac3250
- SHA512
  
  e11feb21b204eb1391caf5e67db737e5cedf36821c5dd0bda011d33c120169e04da81735d405af5377c84ad18c86dc57958e8edd2e74ee6c7f08142900938e86
- SSDEEP
  
  384:CvcwTJ1WnxaYWoO1ZJySQ2I35eavkqfYYTC:Cvcu1jnwSQ2I3fC
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  WinSkinData.pas
- Size
  
  57KB
- MD5
  
  2760b2213e2a74b90efc567e40dc85e1
- SHA1
  
  8d55e6e250c41bd3aa6eb8357d01223921a763f5
- SHA256
  
  34d0969628f603423f8ab75c24a66e3d53675f8d29f76e9ca2d623c0dd047c89
- SHA512
  
  55208d24fc15cc8cfcf1bac97a5efd3f02f74d51b467af92f75b1b263f3785bba67a13e2b599b4432ae87b1e3567558985b3f81edfcf8e6801cf093bb7153c70
- SSDEEP
  
  768:zq4+EWGjT8LFqT+dFTkMbK5/aDCnKpB6OuAtupYEsncG7/LOSeaVwE3uPD:z8GEDdFTkYX6itumEsVySeaVwE3g
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  mp3.dll
- Size
  
  264KB
- MD5
  
  d61d477039bdf99c405a0b952fd382cc
- SHA1
  
  83af14c073e297c52f0456b3a7f8322baa7eb8a0
- SHA256
  
  ea2cc28429543a8f2372beef07e2745862d7a7d5bd4e62ac0a681745485cb32f
- SHA512
  
  5e57234d0ffd639b8aef2eea431bad358faaac9923323fab1b12b4edd1bac8651ae7d67b168b04617949169e1079a5225d3f23170db2467a0f66841ac35cb0a4
- SSDEEP
  
  6144:BXIpLpYED06dljyPu53GJxhJfOMBfcB8:BYYED0UVR0f9Oy
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  pvmp3.dll
- Size
  
  264KB
- MD5
  
  d61d477039bdf99c405a0b952fd382cc
- SHA1
  
  83af14c073e297c52f0456b3a7f8322baa7eb8a0
- SHA256
  
  ea2cc28429543a8f2372beef07e2745862d7a7d5bd4e62ac0a681745485cb32f
- SHA512
  
  5e57234d0ffd639b8aef2eea431bad358faaac9923323fab1b12b4edd1bac8651ae7d67b168b04617949169e1079a5225d3f23170db2467a0f66841ac35cb0a4
- SSDEEP
  
  6144:BXIpLpYED06dljyPu53GJxhJfOMBfcB8:BYYED0UVR0f9Oy
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  新云软件.url
- Size
  
  261B
- MD5
  
  af534adca72cbb40fcaba6adcf4aa0b3
- SHA1
  
  486f64259c45baf815004b6ffc65301e82aecdee
- SHA256
  
  1bbc2bfe53979f537c179995a1d1b5030db3ad6f2e46b258421506a3fb0fc296
- SHA512
  
  21d4b21c0d228498275640b397e8adfcb92dca4996cb59b035eeea523c5fd0594b0c8bc66d557265343bf6e7cb35350790fcac323db841c0cd4fea6da38b70b1
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12