d368f31b0bfab672eb798713bad7f031ff99eb9930d511975fe56800c0c141a0 | Triage

Sharing

General

Target

cbe93e3f31f2cf062b1655fed7cfedaa_JaffaCakes118
Size

420KB
Sample

240831-admd1stfqd
MD5

cbe93e3f31f2cf062b1655fed7cfedaa
SHA1

dfe1fafb9b1e3668885e3b6c74f088d255fb73fa
SHA256

d368f31b0bfab672eb798713bad7f031ff99eb9930d511975fe56800c0c141a0
SHA512

e89b1840c49cec7761d86b167e9509f2b20e5bbda2759492fae6d4aea7d7f4def891899f8906ee6e292130a5b3c0f26ea25d218376b8b6ecf90139ff5f470b6f
SSDEEP

12288:LF7EoaxmcfEnjRoVrRZPZ6Gu1mBPEdZ5mvGJYEXx:LF7GUccnVoVTZN7EnmvEB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cbe93e3f31f2cf062b1655fed7cfedaa_JaffaCakes118
- Size
  
  420KB
- MD5
  
  cbe93e3f31f2cf062b1655fed7cfedaa
- SHA1
  
  dfe1fafb9b1e3668885e3b6c74f088d255fb73fa
- SHA256
  
  d368f31b0bfab672eb798713bad7f031ff99eb9930d511975fe56800c0c141a0
- SHA512
  
  e89b1840c49cec7761d86b167e9509f2b20e5bbda2759492fae6d4aea7d7f4def891899f8906ee6e292130a5b3c0f26ea25d218376b8b6ecf90139ff5f470b6f
- SSDEEP
  
  12288:LF7EoaxmcfEnjRoVrRZPZ6Gu1mBPEdZ5mvGJYEXx:LF7GUccnVoVTZN7EnmvEB
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/7za.exe
- Size
  
  574KB
- MD5
  
  42badc1d2f03a8b1e4875740d3d49336
- SHA1
  
  cee178da1fb05f99af7a3547093122893bd1eb46
- SHA256
  
  c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
- SHA512
  
  6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c
- SSDEEP
  
  12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/[RANDOM_STRING].7z
- Size
  
  225KB
- MD5
  
  00f5af1ae1e5921a63088b561eef521e
- SHA1
  
  d6ff27af796e37254aa20fd936373bc2be61d200
- SHA256
  
  927a28404e20ce50a49ee4d0f34cd8d3bd37f4dd186f86ea4ac61113d651b1a0
- SHA512
  
  ac464cebf5b09ed4340ee4f52b1d8166ef7222c50629d0febe4ac43e00ecef779c6b1cf6d6c0f891126e363bfc61f02101e5f232d3d8d511b8da9932cb661254
- SSDEEP
  
  6144:3Lbii5bkgVuN+xSKV7Wkrsf7LsyeYPN60wD9jx:3XikbkgaISKVcNLUx
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  acc2b699edfea5bf5aae45aba3a41e96
- SHA1
  
  d2accf4d494e43ceb2cff69abe4dd17147d29cc2
- SHA256
  
  168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e
- SHA512
  
  e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe
- SSDEEP
  
  96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8