bbe77eb3a05d29b10ad21cf884c06a8429e0549625a093f22cbfb5ca58303b48 | Triage

Sharing

General

Target

b9415f1e8eafff779be5c17a9b155742_JaffaCakes118
Size

67KB
Sample

240822-1kfg6azalh
MD5

b9415f1e8eafff779be5c17a9b155742
SHA1

025778eddcf8d6a71e44462383ffd9e332dc1cb9
SHA256

bbe77eb3a05d29b10ad21cf884c06a8429e0549625a093f22cbfb5ca58303b48
SHA512

81ca0864122df2a500acc719a5abf5b9f0e103d5e33d9c618f5fcb138061812ba4b5349c38448b0fb044bff26f99a54214d717f713f251a8cb20aeba8f5bb44e
SSDEEP

1536:vgf72xW3WSvfXs3F1Gnjblx/M4dcICdXJoNEvrEn+LJerhtqvO:y72W3hc3F1GnVx9cICdXelnCJNm

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  afrsu.exe
- Size
  
  13KB
- MD5
  
  b2f1725ad4a0734f7375a299bf77a160
- SHA1
  
  11a1841e8e6ef71dbf989c9cbd34cb12ae217314
- SHA256
  
  826a7d833d15fd5aad6ba9698456144d0c77ecb7c27d9801f8c83d1462ad5fc4
- SHA512
  
  6457217f19c283308382877ac22bc9b76bce36b994274b45f0ff68a6d55b2cca9410247547844342601fdfe442af2a208fc89fcfd91c1f98e1442aeaa0e25e08
- SSDEEP
  
  192:LmP9dBH9j/sAacftXQen27LDxe/vPp5elu7Br9ZCspE+TMIr3/bjOg+vtwJrx:gzacftAr7Hxeh5elLeME/bjT
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  asf.exe
- Size
  
  13KB
- MD5
  
  a9ece0c59f3cd12697c93bb06923fd5a
- SHA1
  
  d32f8a0144a5ce24fab90460d40e67916eab21e5
- SHA256
  
  2045c1489cfc83a34f44f82f636cbd5e5970be5db021a1546d059d869d3678a0
- SHA512
  
  798dcd7ab83a937dd77d9bef08ba024593afb3d6d2d430704d6b72e0a7d353aba567d4cff408c3427c08d261dd414578b921526cbe9d77bea30221ca324caefa
- SSDEEP
  
  192:L2M9dBH9j/sAac1tHQen27LDxdjB7ylRr9ZCspE+TMwrRmK+vhOr6h:3zac1twr7HxdleM4mN
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  asu.exe
- Size
  
  13KB
- MD5
  
  d14adfa81a4e2c68b972608a6e695395
- SHA1
  
  954a05c56c9836402ca24979536e57d3c723c237
- SHA256
  
  77ccae5322443acf2a9bada7212e537a28b8d008fe7f2f4dede4d12479423fc5
- SHA512
  
  afb5ff3c48253475143e15ee710965a13ab7943d05c695c5f07987c1af5a8643f65f09fdd40efbfcaa25f49bb0e102bdb9f44e098a7b316c775945e14fe83412
- SSDEEP
  
  192:Lxy9dBH9j/sAac4aVSxjQen27LD9yTEGr9ZCspE+TMwrRmK+vhOr9TuG+:2zac4aVSxkr7H9yw/eM4mETG
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral5 behavioral6
- Target
  
  asuf.exe
- Size
  
  13KB
- MD5
  
  af0a0a416e476ecff84c218cfc919870
- SHA1
  
  80913841afd890cf64b36cfe06d33efdc549cff1
- SHA256
  
  9aeb88c0c9f4687fcfb59668fc71a57e368669c98511297a3d1ed0969c8582f7
- SHA512
  
  e71f6cf23090e3f1f0d5f678e13398ad03fecaa1340c37ec7cb60fc1b9fdc79b9fbb30dbf51795bdccc5a2ba6d4b69309fd58a9da2faf9c05f0a3848bef1165c
- SSDEEP
  
  192:LUL9dBH9j/sAacntGaaQen27LD+cOFMr9ZCspE+TMwrRmK+vhOrUd21:mzacntDr7HOPeM4mv21
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral7 behavioral8
- Target
  
  frsu.exe
- Size
  
  13KB
- MD5
  
  4c49677e80c4bc831ab50fefc7079a44
- SHA1
  
  038d23a3bec8e4225d9b3029af5ab98a83d5e532
- SHA256
  
  1827caaaf4f9286ad28339bba1a9e45b54e358e3a335defaf9e940bfb265fefd
- SHA512
  
  4d0d43b798d74311e4f10d8cdc318df03933d2b1bc1ba91276c19d57acd66588afd2c5eb6a07fbf2c610feaffe1a54f434fbd91c161e5ae8785aeb8473bdd473
- SSDEEP
  
  192:L89dBH9j/sAacK4oua7Rt77iztuO4Wu7Br9ZCspE+TMIr3/bjOg+vtwJrGTU8YNm:2zacJe7GBVJLeME/bjH8YNm
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral10 behavioral9
- Target
  
  sf.exe
- Size
  
  13KB
- MD5
  
  6fd780a4d61d62fab8ff6e92c23f6874
- SHA1
  
  030f57fbe9a4c6f2ee0384657312f040d2538f58
- SHA256
  
  6449a55c5cecee3e63042056cd4d82a28eacf1ac96b81e1c357b8294831adfe0
- SHA512
  
  aab96fdacc771a1aa85d87f1f43f1dddc2736b218f9420531306bc15f81cfec0d978dc436f6a6f070142b5a92ff955bfdff446d99297b90efe82da47f6fc1fed
- SSDEEP
  
  192:LC+a9dBH9j/sAacYaoLa6Qen27LDjojazr9ZCspE+TMwrRmK+vhOr8O:Qzacxlr7HMZeM4mlO
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12
- Target
  
  su.exe
- Size
  
  13KB
- MD5
  
  a7baddaf16a50c6e47c61e7e887afee3
- SHA1
  
  d52a9a92518fb839ba03d0ca9191ff4caab727c0
- SHA256
  
  505bd330d28b2fb6235419c75effe296eb6531b888b9e33bc2200a04f4249a0b
- SHA512
  
  e61703c2891dc6cad92ab947cb3854e1b46c8cf5bff5bc633a2792f82736caea1f852d6749e760a921504ed3b6b7b84786be32eaa6aac65961a0a12fd07788cf
- SSDEEP
  
  192:LFV9doAxILsUHz3EyvypDa/en27LD/npmalr9ZCspE+TMwrRmK+vhOrXG0l:1+AxILTHz09Ar7H/peeM4mcBl
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral13 behavioral14
- Target
  
  suf.exe
- Size
  
  13KB
- MD5
  
  0ea90ed8134609e3b4d709d51dced5f9
- SHA1
  
  776ce1db63e5990100e3bc968ea198836092077b
- SHA256
  
  2cc0aa1b378d2be7f401da253fe7e08088ba210d0cc4f5fad47db64268dfe08d
- SHA512
  
  d5f8cf60c3a15b7bca87ef297622140c983047865e5cd4d8b37d65cb87124de8d8258408f8e980e66a317b86372e907ead2584d9bc396e6df5b156980412c442
- SSDEEP
  
  192:LFc9doAxILsUHzrK88g/en27LDcaUJr9ZCspE+TMwrRmK+vhOrWQ:A+AxILTHzx8Kr7HbbeM4mG
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16