6e3bbafd4ee793ea4e6b96f5ffcce22014ad410c163a84a0565ba6fd0672e080 | Triage

Sharing

General

Target

d0f40736906c7124cfcf1805efd8eedd_JaffaCakes118
Size

4.4MB
Sample

240907-dpklcasbjm
MD5

d0f40736906c7124cfcf1805efd8eedd
SHA1

7b9cabfeeacc807706371a9eb25b7a65ff95adb5
SHA256

6e3bbafd4ee793ea4e6b96f5ffcce22014ad410c163a84a0565ba6fd0672e080
SHA512

5420afae035f824b57a6b57164a0ee34dcbfaf05fc91244e234443d83fb2d4e0c6570a7312933205dd0bdf83e301069ed46a71fdae6dc1e62372052c450f39a3
SSDEEP

98304:yVAySvBGhrX9d1MFAnsbGOy9wNeuC/xARncdQKY5oVZMUAYwcOiA6X9nnGJh:9z0d1IAsbfJk5xMnWQV5oVZdwI9nnGJh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d0f40736906c7124cfcf1805efd8eedd_JaffaCakes118
- Size
  
  4.4MB
- MD5
  
  d0f40736906c7124cfcf1805efd8eedd
- SHA1
  
  7b9cabfeeacc807706371a9eb25b7a65ff95adb5
- SHA256
  
  6e3bbafd4ee793ea4e6b96f5ffcce22014ad410c163a84a0565ba6fd0672e080
- SHA512
  
  5420afae035f824b57a6b57164a0ee34dcbfaf05fc91244e234443d83fb2d4e0c6570a7312933205dd0bdf83e301069ed46a71fdae6dc1e62372052c450f39a3
- SSDEEP
  
  98304:yVAySvBGhrX9d1MFAnsbGOy9wNeuC/xARncdQKY5oVZMUAYwcOiA6X9nnGJh:9z0d1IAsbfJk5xMnWQV5oVZdwI9nnGJh
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  fa299e199922b3ba833be655a8d71b75
- SHA1
  
  4d74c53bb6927a2831df93af26f3e4e4fb007797
- SHA256
  
  49a6a1c1f19574b2a247ce6c5adc0751e046d27c30912816ba415f871b74ae5d
- SHA512
  
  7ceb64d3d826762994c48ffad3ad2234410cbcdbedfce9a2dc03d18915ce22d687173f90e954d7bdb0eae76954c360059ad761aedc48cd7fa4ec29d6094f6a65
- SSDEEP
  
  96:v7fhZwXd8KgEbAa9PweF1WxD8ZLMJGgmkNO38:4N8KgWAuLWxD8ZAGgmkN
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  CCDN.dll
- Size
  
  5.7MB
- MD5
  
  9d0161fd41fe380e7c075e20a68cf994
- SHA1
  
  e9c42621e84659920f12d638ee67f24da94404c6
- SHA256
  
  89c596f6a29f4a6e905f9d1b6872625e5bb2d67d16b220f5530ff6ee9b52c8f1
- SHA512
  
  18d515059675e1be98f407b503027f2447c29163ae5827e7da42fa918a71b5b4b171a52f6ddac0e678c4bcf7c0f0d98c85932acd3ea165c71c88a64c0735a9b0
- SSDEEP
  
  98304:OmASmEU6A9KmEW1eKLv1EurVwr9IPxX/1P7dgGYY2XQzmmtzEka1EasqdWfJ+QC:Dk6A9TEW1eeN3GSQmtba1Eas8/
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  CCDNService.exe
- Size
  
  2.0MB
- MD5
  
  bdbc75297d8918e6080d2079b5790316
- SHA1
  
  e762681626a2c867243893f256a9b3eb30a8f87a
- SHA256
  
  7bb3ce09de34cc7687bda80427f01fe7a02e056a792bc76aacb6129a3892abbf
- SHA512
  
  cb6ed183bcfc6e6e0ab070a175b49ea81fd84145165a5bc9d1ac2cd238a04fbbf97a96e20926fb99ea08509ae8dc9452d918a247a62044bccfd24d228b1a00d7
- SSDEEP
  
  49152:yNesxmoPQgiOSLU6fGqDdmAFQDvUYaIN0G9UG+eyLT/M5JLQ6Ausq+kOIuS62aZ1:jOAhmAFQDvUPIn9UG+eyL7MXy1q+lIu7
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8