16ee76168892a9ae9d3a7496114664f4bf8db4218b73f23762c2dbcc50837531 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce8900bd0256aedd98f59424c4f5798e_JaffaCakes118
Size

4.4MB
Sample

240906-dx8m5stcpk
MD5

ce8900bd0256aedd98f59424c4f5798e
SHA1

648f7799455ed1816cfd9a87c90f72642cf1c3ed
SHA256

16ee76168892a9ae9d3a7496114664f4bf8db4218b73f23762c2dbcc50837531
SHA512

a5e70ad13a5b9a8e4208fa8fc5609f93fca2e681757154391537c15a7fdb1b8b19c2526b01b0dda1774a47b1fa3bce40b686975dd932e78609f17219de0b49bf
SSDEEP

98304:8U7A2RfCb8ujb8p7kOZczFaRmYUrIGUu0W4fPKQPsUdlc:8U7A2VUv8p7kRFeaKldlc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ce8900bd0256aedd98f59424c4f5798e_JaffaCakes118
- Size
  
  4.4MB
- MD5
  
  ce8900bd0256aedd98f59424c4f5798e
- SHA1
  
  648f7799455ed1816cfd9a87c90f72642cf1c3ed
- SHA256
  
  16ee76168892a9ae9d3a7496114664f4bf8db4218b73f23762c2dbcc50837531
- SHA512
  
  a5e70ad13a5b9a8e4208fa8fc5609f93fca2e681757154391537c15a7fdb1b8b19c2526b01b0dda1774a47b1fa3bce40b686975dd932e78609f17219de0b49bf
- SSDEEP
  
  98304:8U7A2RfCb8ujb8p7kOZczFaRmYUrIGUu0W4fPKQPsUdlc:8U7A2VUv8p7kRFeaKldlc
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/AccDownload.dll
- Size
  
  307KB
- MD5
  
  6f7d9e111a17fab195efe0bbd3a0442d
- SHA1
  
  edd85ca305b1d7944ac78bc6f32160f1e981d2d7
- SHA256
  
  4f52e34fcae2f080a6f99ebf447f210d607cb51c8461ecd631dee43386f3187d
- SHA512
  
  78f6e1cef00d3ed3457eb92c013fb3bac2ccc8531e26e763e2fc9776e662d5db1a8abf89b9d41b64dd89548577fa306e5b4423b647e213271912a61ce746daa3
- SSDEEP
  
  6144:Tlpmq5TzS+icbXrcoUhbu/EUT5sSjOf+mhX8evc:Tlpm8zDicbXrwh6B5sSjOfvTvc
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  a436db0c473a087eb61ff5c53c34ba27
- SHA1
  
  65ea67e424e75f5065132b539c8b2eda88aa0506
- SHA256
  
  75ed40311875312617d6711baed0be29fcaee71031ca27a8d308a72b15a51e49
- SHA512
  
  908f46a855480af6eacb2fb64de0e60b1e04bbb10b23992e2cf38a4cbebdcd7d3928c4c022d7ad9f7479265a8f426b93eef580afec95570e654c360d62f5e08d
- SSDEEP
  
  192:aVL7iZJX76BisO7+UZEw+Rl59pV8ghsVJ39dx8T:d7NsOpZsfLMJ39e
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/jsdrv.exe
- Size
  
  3.1MB
- MD5
  
  5ac7378ffa3ed58b207d833e9d1b4b56
- SHA1
  
  f3433069291e8a9b30ac14dc84348848f3d1856f
- SHA256
  
  564d70485184b1da964ce389700b89362de66ca1fff9232e3c5fd34f29b8e97c
- SHA512
  
  8f78f5cde8598a8b066c96cefe02a0b77ad5f5115a781553932e6f9c1306eb5007de521ffebddbbbb6ed5c39b9f012cb7f6f9a35d2df21e1492a4acb7ab21743
- SSDEEP
  
  49152:kKqZg0DDi3Vb1dKdo4spMdB0e0NyHlij35AvrvIR/W3Jb75k5CuHGqsnKmW0:tp1dKmd6dBzgyHlijJmvIR/uJ
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsProcess.dll
- Size
  
  4KB
- MD5
  
  faa7f034b38e729a983965c04cc70fc1
- SHA1
  
  df8bda55b498976ea47d25d8a77539b049dab55e
- SHA256
  
  579a034ff5ab9b732a318b1636c2902840f604e8e664f5b93c07a99253b3c9cf
- SHA512
  
  7868f9b437fcf829ad993ff57995f58836ad578458994361c72ae1bf1dfb74022f9f9e948b48afd3361ed3426c4f85b4bb0d595e38ee278fee5c4425c4491dbf
- SSDEEP
  
  48:iYXzAm8HGJLvwM8GJFd6I7W4JtT2bxNNAa4GsNf+CJ8aYqmtlKdgAtgma1QvtCSJ:lz2mJkpGR6GY74GQ1YqmstgGCtR
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  JSDriver/jsdrv.exe
- Size
  
  3.1MB
- MD5
  
  5ac7378ffa3ed58b207d833e9d1b4b56
- SHA1
  
  f3433069291e8a9b30ac14dc84348848f3d1856f
- SHA256
  
  564d70485184b1da964ce389700b89362de66ca1fff9232e3c5fd34f29b8e97c
- SHA512
  
  8f78f5cde8598a8b066c96cefe02a0b77ad5f5115a781553932e6f9c1306eb5007de521ffebddbbbb6ed5c39b9f012cb7f6f9a35d2df21e1492a4acb7ab21743
- SSDEEP
  
  49152:kKqZg0DDi3Vb1dKdo4spMdB0e0NyHlij35AvrvIR/W3Jb75k5CuHGqsnKmW0:tp1dKmd6dBzgyHlijJmvIR/uJ
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  JSDriver/jsdrv.sys
- Size
  
  51KB
- MD5
  
  d303957be351571941026a9eb16bed6a
- SHA1
  
  676f21a548c34b24ce7521abb14fc6773a9bbd4c
- SHA256
  
  dcf87367a37e2ce0d3aeb01de1ff5e0c05db09fc79f603106cbae1bebef4ad6f
- SHA512
  
  e2cfef2a9d0fbe71717522998ff7894221554243aea5e7ccd142d0a9f0cc41789aa6c6c519c4ebc99881061983808df5a396ba3debc5c56249c0187283124186
- SSDEEP
  
  768:ctkMoxL4I9TBJtqr9AVafBBZ2djcS3yCzElYtv2QXs2IjLH:ctkMPejzMZD8gE9IH
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14