f1a35e14ac13a6e686195edb94f749f4b256e74f38c03e450535765a179efcf7 | Triage

Sharing

General

Target

d2fae0d5d89d46506bf9fc63e2089fdb_JaffaCakes118
Size

6.7MB
Sample

240907-2kp72a1hna
MD5

d2fae0d5d89d46506bf9fc63e2089fdb
SHA1

5e3371c6fadc50146e6ce8fea22cfab9468b7ce1
SHA256

f1a35e14ac13a6e686195edb94f749f4b256e74f38c03e450535765a179efcf7
SHA512

9c8b640604cb7b9cdaac27a08d5c99c63661804581d0cb7a7f8f661540635fdf484e2556a50c691c02d746d3b20758f5dea10554f32876c7fc3bf1b4e85ea827
SSDEEP

196608:imv+TxhESPKjByg33WzOWMQn9cyFNQnZLG/dFzU:iueDEUpORQaonQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d2fae0d5d89d46506bf9fc63e2089fdb_JaffaCakes118
- Size
  
  6.7MB
- MD5
  
  d2fae0d5d89d46506bf9fc63e2089fdb
- SHA1
  
  5e3371c6fadc50146e6ce8fea22cfab9468b7ce1
- SHA256
  
  f1a35e14ac13a6e686195edb94f749f4b256e74f38c03e450535765a179efcf7
- SHA512
  
  9c8b640604cb7b9cdaac27a08d5c99c63661804581d0cb7a7f8f661540635fdf484e2556a50c691c02d746d3b20758f5dea10554f32876c7fc3bf1b4e85ea827
- SSDEEP
  
  196608:imv+TxhESPKjByg33WzOWMQn9cyFNQnZLG/dFzU:iueDEUpORQaonQ
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Dialer.dll
- Size
  
  4KB
- MD5
  
  b5be0e441e04e5bf077a90097b169d22
- SHA1
  
  22fdf908102ae4f45e45b354e2f28a9ac17eb684
- SHA256
  
  7f267c0c300ee645624dbff22329d8a1e86c2e147ee803a34c43bdee76da0255
- SHA512
  
  3cfc02b01e67cea80354de4725ec66fc1314ef68ec577a2d6f9f9bb6f8c450c777fd3ce32c21a59b935b401151221d1506d7c795dcd4e59edcf9d6a15b14c2d6
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  07f3b3445f66e1089567796bf3c8be78
- SHA1
  
  851eb574c1067b23a654f8aa47b17ef599b24d1c
- SHA256
  
  a505e6c537a5ce0166227dda9f7671605395592ac9f1a3764e8a01b713939db1
- SHA512
  
  8c56308fff3a947b26fd0d98dbdd96c406ddf967f5d7abee8cba082b6c46a4e575094bb0bb981551ac5160bb5089cf6fb125dd17a659c427e28c07402adab1c3
- SSDEEP
  
  192:pzi5iBjGHp29db9Dd+w6VPESclh3I8dYvwqu7hwbbHF1QuCb:pO5kjGHSDdgjo6pvwqu72bbMum
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  2c3c8976d729d28478a789217a882291
- SHA1
  
  10c18b23fac957419547ef0f8ec3bc1b10e91e79
- SHA256
  
  799f91bdd59f2133bf195c5b4ca685ee91666d981a6bcd8a6c45b7c8ecc96eef
- SHA512
  
  749c650974f94cc5009124d3fa3d9bb1ee5824a3fa0a76b81733e08379678a2a1b7c54b77d1709fb6de24c81c68c03c0ec3e9ec5ccad0d30d9237300794f1213
- SSDEEP
  
  48:aefTYzqi+/XC1aQbkMIwovgxbLuwOWd8s/d79C6O4MWNEYJvRZJ0dfh80:22XC1XkH/ohLZDSs/d799O4MQE0R4
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  6KB
- MD5
  
  1c070779dcc05617d6cb5978881702cd
- SHA1
  
  988de0ee7e294d9a10b7431d86b6a0e71fd29744
- SHA256
  
  9d097a1f11f1774745f41194dc674b97ba59276dbfdc0201640c9f12dc58c182
- SHA512
  
  c5968a23798b65d967e9ed75e7b3dc659240d27c45c19ae43822988c670b163fb4df18230826827725b1758fa26922da9a2960611a3bd24e180a71415b2b3a39
- SSDEEP
  
  96:sLJdRZk8OkmE+WHw0FMXF6CWhFxKpKsEQhEfP0:sLjPk8OT30FFA1CP0
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  9KB
- MD5
  
  afd989ef7eec6bf952bedfce541fe236
- SHA1
  
  5654b71c5b1089c2cec6381d8da5bd14a14e1a37
- SHA256
  
  5e97602008ba004c72d58f71e77ffe0a0ea01103867eb12a9ec0f28e72f440d8
- SHA512
  
  f4e3d88477d39218667dd482a08904b2b69435db7d1fdd492380544aff83895d393a288c329da69074b69c68f51db45f694dfea81fc12fa2042ed43b3d06440c
- SSDEEP
  
  192:XZNEnGTkTwat3s8pXqrpxwvcq5/pZquJKeS:y3nX/N/P9JJS
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsisdl.dll
- Size
  
  12KB
- MD5
  
  41c6c89458de4a8679e4841b77759b1a
- SHA1
  
  8f855dbfc2f5805a11075ded65a9e61b6e5913f4
- SHA256
  
  2c92de134c1f4f9e1d11fcc7f63744642abb21d2017cefd05df4ddd1207ceabc
- SHA512
  
  1486f9b496d536bcccc8d9fe78d892b7a02ba29c2ae85bcba604fa9e5b8828d2e6eb9824a824af5ca8fa8708e81df8c498ee4ee0a1a078957b7c91eab27240e4
- SSDEEP
  
  192:zTed/9E1XMNUrW7VymsS9W+7HaQM7zFSnOpHiCVIXuZwvv26P6rR2vMi:zTqE2UrW9tWeaQ6zFDZNIXuun20g8Ui
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  BASS.dll
- Size
  
  99KB
- MD5
  
  9d85c5a847eb0d67cd2ddf20d29c3eb6
- SHA1
  
  c3b75e1e08b82d8d3ff54428d1553dfd9e666520
- SHA256
  
  f2f2a653fd360751c71c9f89f74d4d9bb5356eb5471bf9e572794dd565dfb693
- SHA512
  
  7ac712fd6f3efe17828a54465e016cfc7e99b3119a32be0ad60a532333a394dbe22c10c5cace2265e1c0f488537ec66403c741a65018c2e681612bf5551179e0
- SSDEEP
  
  1536:iqv/Hc/6DZo8ptvL7r1Z7G0hPa2y4vbPF4vEBu7XlVq6NCsN05Vw3jktfu/ma:JGUZLLC0hPa1+P/KqGlIVw3kub
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  MagicInlay.exe
- Size
  
  1.6MB
- MD5
  
  4f7a8a5a64dcd62d328fbc2708b5d8fa
- SHA1
  
  86f60c6d0dc9468143a22e1a7cee05dc92ab7b88
- SHA256
  
  65fba649a99baa931d358cb363bb1a6004d9a7c2c8127250c2794d3666f7e2a2
- SHA512
  
  ae376111bf453c7f07377ef18d2f5bc41c1225946b9e7ce2e58e42764d5833969c7ac45a41f11cc32a4f630f4bb6cc924ffdbba8183d8347d778272c422587b4
- SSDEEP
  
  49152:rDDXwfoPGU5lvsJluDwZAoA0f94g57hinKWTy:DXYoPD5lUNB4ihC9Ty
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Uninstall.exe
- Size
  
  143KB
- MD5
  
  20ac6f15f2febb1d632e3a41839f8743
- SHA1
  
  2bf36edf070478fa037c6c6877f1e1bd6c40a886
- SHA256
  
  5ff4e90901b9038ab4adbb00a6c678103cfc0e96bf1b9e1b4741ddfbf7007d8c
- SHA512
  
  638b1fdb39cc9f68caba23f2a3b324c89944c6db6d093f1d645771f8eff9b5988e890075ffd14bf9d08b857e159e003a397f00d79749384486ede064258b50cb
- SSDEEP
  
  3072:waF6FISxuJ8JUsxfX9KVVYjPNHxc5mG5lcuTiSNzZT3:pOMxsbqYj9xc555lcsF3
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  07f3b3445f66e1089567796bf3c8be78
- SHA1
  
  851eb574c1067b23a654f8aa47b17ef599b24d1c
- SHA256
  
  a505e6c537a5ce0166227dda9f7671605395592ac9f1a3764e8a01b713939db1
- SHA512
  
  8c56308fff3a947b26fd0d98dbdd96c406ddf967f5d7abee8cba082b6c46a4e575094bb0bb981551ac5160bb5089cf6fb125dd17a659c427e28c07402adab1c3
- SSDEEP
  
  192:pzi5iBjGHp29db9Dd+w6VPESclh3I8dYvwqu7hwbbHF1QuCb:pO5kjGHSDdgjo6pvwqu72bbMum
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  aminstall.dll
- Size
  
  76KB
- MD5
  
  5d34df8934fe0b1dd256ba6d7dbf9901
- SHA1
  
  28ee278aa00c1b74d8770e64e34473dfca95c390
- SHA256
  
  feaa0248e6449097ca87a2acdd00352608258cbdbabecc8e8875ed2cf9192c32
- SHA512
  
  1c832646932161b8db09da650adfdf18c74d5ebee30528fc28e6f02547d390893bbab2c39f3f33e6daf2a307076cacb09969850bebac4131ecbe7000c83ec353
- SSDEEP
  
  768:6gV5PtiqaZ1V7V5yytiCLqmfTKeqvi8NT7jypjGZ1wZgH1Y10BlnkE52zjuxwcWP:6o1tgFXyy1luTXyVMwW1NkEQj1cW
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  eula.rtf
- Size
  
  8KB
- MD5
  
  0f05a0df44c1dcd888ba5017a272be49
- SHA1
  
  8f044ffd7650a19db945504aa9b28bb8c8af9661
- SHA256
  
  3053fca4093ab4d271e30b7710e21b3e65065f40fd71b7d09af42f2f8e013a2c
- SHA512
  
  75f3fbfb2ce4b549921a80d1f22e3621cfb6bdeb0e532d497cfafec875e8c7f5a0dfb01afb9aa916c2a14e1875de5d9f74480dc8b1b5a2561fbdda6def7785cc
- SSDEEP
  
  96:IvHfIpJ/hygUwMTg9QWJIbSrf85t4Kq3Bbkgzh4eSJj/G0hGc3m8r:0qy5hTg9QRSg5tqtkYpSVpHtr
Score

4^/10

discovery
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26