8f0d76feec404121f9cb16a494267b21d5101ae6d44fbf613fd7791e9627af9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5be808a014c2deb6d5dd63dd4a30f64_JaffaCakes118
Size

997KB
Sample

240822-bdcegstflk
MD5

b5be808a014c2deb6d5dd63dd4a30f64
SHA1

3cb66e86d998d1160e55b79c81355b9768950d51
SHA256

8f0d76feec404121f9cb16a494267b21d5101ae6d44fbf613fd7791e9627af9e
SHA512

46b1a6815377c42372346b274bf03eba3bb9f85038847e10851e8ed593a1bdd7996f65cf98378d13bd120c011dea0f81b1f037d603347347bf6c5379086ce4aa
SSDEEP

24576:pt8P+bs5c8RKdZJP82BWLHwm3rghrbaH9xeJDo83SS:A+mRKdXPPWLQugJmCtv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b5be808a014c2deb6d5dd63dd4a30f64_JaffaCakes118
- Size
  
  997KB
- MD5
  
  b5be808a014c2deb6d5dd63dd4a30f64
- SHA1
  
  3cb66e86d998d1160e55b79c81355b9768950d51
- SHA256
  
  8f0d76feec404121f9cb16a494267b21d5101ae6d44fbf613fd7791e9627af9e
- SHA512
  
  46b1a6815377c42372346b274bf03eba3bb9f85038847e10851e8ed593a1bdd7996f65cf98378d13bd120c011dea0f81b1f037d603347347bf6c5379086ce4aa
- SSDEEP
  
  24576:pt8P+bs5c8RKdZJP82BWLHwm3rghrbaH9xeJDo83SS:A+mRKdXPPWLQugJmCtv
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $0/questbasic.dll
- Size
  
  868KB
- MD5
  
  d93d2308d16af850804f7f10db278cec
- SHA1
  
  c12e27a8596c6a666a90c5940b42bfeb50c9491f
- SHA256
  
  4f1b249392547fea000655d224a77e0d84b8128a4fd97144935cd15fa46d59b0
- SHA512
  
  198244d5af1acfc5788073e1890d7c32ab10b786f51e66cc6775db60d78f57086679ed0e6c9bd611a389d9cf6da45a39e81f080cf9a802207df43c1a77c5caa7
- SSDEEP
  
  24576:ZL2Y8D4A7dJRDRvxATYFf0k1G+8pmMs5ie9:ZL2937dRvxM00k1G+8pmMs5ii
Score

1^/10
behavioral3 behavioral4
- Target
  
  $0/questbasic.exe
- Size
  
  22KB
- MD5
  
  b56635e4bf253a1fe2bfb92ace769c9f
- SHA1
  
  708f32cff37e2ad43eff7682f37840a896f7c80a
- SHA256
  
  17092ea043f53b9763e4a0dc3067651ffaba9765d050dbe4f00021761fdac372
- SHA512
  
  0df110ef29398f6c2183adf192595986c72b3150cb63d5a3bed6895ccf66f55d896d6e625f037162a36fd0d74c1d345e5b7458920f9053e02c89fc1c9922270e
- SSDEEP
  
  384:OXgSD8DnvyGK0RDIgPURCblLVM1Ejo/q/ClKuY3vJml:9SY2F0RDnFRhM1Ejo/2g5isl
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $0/uninstall.exe
- Size
  
  78KB
- MD5
  
  148bed8528b8b844c9c841a52b688958
- SHA1
  
  8cb372f2a0614c02ce427a02aca27832ddd30586
- SHA256
  
  1ced643428fc582c04404ebde06fa61014181b3b8ba03f2a42ac5fe59bfac3ad
- SHA512
  
  d142c2bbffe2cd0e77e0652b1df9843e7167d9e83900b223a102192b253881a53f19efd554a6c38fc215431774973b9c463d3c0abf72f177831026e1b6b8b750
- SSDEEP
  
  1536:PEkjY1zy214Qay0DGkJ7qAELVigJdcucpDCxH9TplS1N/RA2/DR:8kjAJ4dDGkJ+AI02muH9TpAN/RX/t
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16