84bd980446e63d8941f42d7391bcce405fe4f5fd3f9b222879e0e05a8ee43041 | Triage

Sharing

General

Target

d50a3dc2ad6344619555abe94ad27bf3_JaffaCakes118
Size

10.9MB
Sample

240908-y3wkzswcmg
MD5

d50a3dc2ad6344619555abe94ad27bf3
SHA1

135889ace2281069588ebaa955c5941ab7c8d623
SHA256

84bd980446e63d8941f42d7391bcce405fe4f5fd3f9b222879e0e05a8ee43041
SHA512

bd84c2c7bea49d202ec46dd1f9051f553e2971b311ff9b355e7f824009abeb4db24d3450560646a3b9965c8cc67739a6b081b406c05311948824b51c9c3f8b5f
SSDEEP

196608:elO5hyiBxdV7omizWLcnNPxbsJt8wfMSBWoM2Iozma2yjxn8KyDWWJYnOg4p:uqhy8qmizbxb2OwfMSBWoPrzGoaK8aON

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Freemake Video Converter/!)FreemakeVideoConverterPorable.exe
- Size
  
  86KB
- MD5
  
  9f944459a20f6c2e9744e14175682cde
- SHA1
  
  099da6ce23b5759077b82df111d2a84ae5837c0b
- SHA256
  
  ce93eae2d75810fb771ad01806542f19f08b56b67d6e24cc20ef76981c0fe4a4
- SHA512
  
  42e8b90f8c965359f777956cbdd95175348df8480de9cbc67d765dd67aae58d36c0e453b3ae8b05209b07af03dc8dcc55773aaa20f19192ab94f09ce685f404b
- SSDEEP
  
  1536:ig4AcOV5uuE0rud09u277yf3Q7ypK0F9h/F8CY6yFxpWZREX19K/+:TcOVRVru27mf3Q7y80tpyvPjK/+
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  15KB
- MD5
  
  786110d3394edf4bb5c14e3e9a49f9e6
- SHA1
  
  4adf64a5999a1a41870fedefba22f67840f36f3a
- SHA256
  
  3ccb4385cd22b5c69bc2583e181da4085477906c193f04eb5a400801e00dbcd5
- SHA512
  
  e85e49b492a04188c46c90fef6ba5b177f85c670848f902748ec1540839ffb2f5d88563c14026328dd2100a48979ff8e67e7af1eee70fea0eb477c78db4d9524
- SSDEEP
  
  192:JsIZHdT9uwYX94kYd2iCzHR+yK7imphLAykycpKPd5mn8ozxGUWumle:JsUHd9GN2d2iwl0impATIPdAn8Ov6
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  301a9c8739ed3ed955a1bdc472d26f32
- SHA1
  
  a830ab9ae6e8d046b7ab2611bea7a0a681f29a43
- SHA256
  
  6ec9fde89f067b1807325b05089c3ae4822ce7640d78e6f32dbe52f582de1d92
- SHA512
  
  41d88489ecb5ec64191493a1ed2ed7095678955d9fa72cccea2ae76dd794e62e7b5bd3aa2c313fb4bdf41c2f89f29e4cafe43d564ecad80fce1bf0a240b1e094
- SSDEEP
  
  192:hCPej3uzvJwqJMQKN4GbeWZksMI4ETWcEbcBZ8ep2Kra7yAG:hCQ2HgN4GbeWmbI4Eybogia7yA
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Freemake Video Converter/COM/FMDVDMenu.dll
- Size
  
  448KB
- MD5
  
  3c116d7204fec7c6178097d39f5f30b1
- SHA1
  
  0f87f12f03e536ef844a124b4f9e5e19d470c743
- SHA256
  
  4bbf20376bf6c55afd8b9d8f40a6a4236a671ac5b8c1160add9cc48e7c19f11e
- SHA512
  
  532bf31d39de66d160ca88fca3a859e06b318ccb07f176ab1cc7164a0448b49832c40ec1f9e16877224eeeb2726282dd6b7fa7d536177c8c015a68e96d7f623e
- SSDEEP
  
  12288:mEwkrixlVzxYgRWqsYshAi7uQm5bVGJLNm7:mfkrAlVzxCqsyi7uQm5bVgE7
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Freemake Video Converter/COM/FMMediaFormats.dll
- Size
  
  159KB
- MD5
  
  798d8a4e93d6e9cf3b9536fc3d53d2ed
- SHA1
  
  cda906188b7acaad7a1f40d68dc44f943ad64ee6
- SHA256
  
  c8273e23a943885e2c065c336dc8639067bc581eec447ef5e3cb36d12ec5604b
- SHA512
  
  b5179aace70a7a47449cda46ecdc9ca059a302012e7ad9bcad444b5b65de415a32d1f072de5fe4ea2f05f588ccc5797f57c130b92df2d258a377785501236d1e
- SSDEEP
  
  3072:ayo1UzZxdIsMxGObLar27/x4krcumjs9nER:ay7ZwlxGObeY4MLns
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Freemake Video Converter/COM/FMMediaSource.dll
- Size
  
  260KB
- MD5
  
  98f823d67b2bbe46ce934c007b243dc3
- SHA1
  
  369e598b4b63f49ee3f8b8b79be5c318f7419967
- SHA256
  
  ce4f5842263f78fdeae1ed811b7a48f6cd7432a5660dd7f8b4a7d5d20a7e0a09
- SHA512
  
  f3d6a2f41d7316d29f07503a5008b8cb5cf1207bc8e42d2be22d56b2cd03ac81ee290201ab49771b9871b2b520ebeb85d77e538ac901269092412fe9c9fc78c4
- SSDEEP
  
  6144:Bge0UysUN10KGhmz5YRJVYYcSE6RMYsWL7OZEFnR+:BgeBysU/0KGwtOVYYcfq+
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  Freemake Video Converter/COM/FMMediaUtils.dll
- Size
  
  99KB
- MD5
  
  b5a9e6eba017137eadf80f7aff4e7d14
- SHA1
  
  82c38c38c2e5ad8898ed4eecc3774397ee9f5474
- SHA256
  
  1ec98c54a31dade0aa403e3226897613aef5935db31ab1499e55f3b7ce34296b
- SHA512
  
  1e1bdc999ecb5a1cc313854719860dc6c171761072ba48a0bd91c170c78143ad923f2a4269d6fecc804615cd2254116922ef1f61f62f56ab44c1e19bc21bdbe4
- SSDEEP
  
  1536:ZTtgZHCuyBBj2570LO3LaxqjS674Gm1XrC0KOZp0VI1MgYC+tzI:ZZACuJ3Laxqjj7xOXrC0KOZp0VIqgyK
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  Freemake Video Converter/COM/FMTransformBase.dll
- Size
  
  181KB
- MD5
  
  ff0aff48c42bd553e5ae979775761baa
- SHA1
  
  1815b04fccf4184110640cf75dc81bfcbf518d14
- SHA256
  
  4eddd7cbab8da7c9d25589b61750b6351c9dd0fb386a2b1346531f4beac96c42
- SHA512
  
  b3cb086d50303d1a944c666a239e9e25c4af81dc77d3e4383f191a58510c54bef86a71998bb2dda45c928598c4533717e6d13ebc4bbe0d4b59c525f22896eac4
- SSDEEP
  
  3072:pCINmdfNqyZxoBljCnzeVCkATY+qskmmr2Vq6tOB8UwuZeAezzmo:XNaNqyZxo/jMqsdY6tOBlwuZfeOo
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  Freemake Video Converter/COM/FMVideoConverter.dll
- Size
  
  2.0MB
- MD5
  
  8ad6a5263024514b6f044882839e0403
- SHA1
  
  8657c6e51c36d75d0c75c3813872488057f93746
- SHA256
  
  b592b2dfc06a699ba056e41d53d5ec271214ef7029c1b11b0aeb51146e78f1eb
- SHA512
  
  17240662c52c1d6bca5e13f137ddf34d93b3e731655575390570999b520b541e24ffae5bff04f368b228a2f5dbf18fd0cf415c382056a5dff10cc4ca45108624
- SSDEEP
  
  49152:2Of3SNqIxJUHcubpUUGBpzMOMT56rCnhc1TRq17GXpVpXx:PuxJkBkMT5iChWRY7Gn1x
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Freemake Video Converter/COM/FMVisualization/Acidspunk.svp
- Size
  
  96KB
- MD5
  
  250600e5776e0a0c2a5be7db052f7a36
- SHA1
  
  f9c605f9c6c354edde30bb53f436341448c6da1a
- SHA256
  
  58cd4f6cbfa7ee9c22d456d7679b327133e6993b20c3d93221ec12531e9f2af9
- SHA512
  
  c09656001f587907180ba1b1d58655180fec9638e07ad268d6f270483569909efc2e0a9460a18ec703a3760775a5d693cba50a8c309cc7bc1840e2444dc4da62
- SSDEEP
  
  3072:x1OwnFxFAgJTwOU/pbOd6+WrjoVnjZ2p:7RLJ0OU8T+sjkp
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Freemake Video Converter/COM/FMVisualization/AddBorder.ape
- Size
  
  24KB
- MD5
  
  1dba69483f822c0b68971bd392ca0660
- SHA1
  
  1c27b97ae7ccad4fba8da41210b7480d04ae2768
- SHA256
  
  db427053589f1e51a9b95a1cd7325da259c6e5dd57fc11570c969f68fbfa723e
- SHA512
  
  d2de9daec2cc6685d2c6215ad63934615dfb079620402807dd450ae6e9321d33e0e5c709ac8732e9f99c04bef540e58292368c40650f57258d91de91f21d845b
- SSDEEP
  
  96:HRVRhwDAeR+dHkgdmz22g/nat7G8ZKACtPTHXxclBtkKPNLBE:HrRhNeRckgdR2g/aIlDdrXxclBHZ
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  Freemake Video Converter/COM/FMVisualization/ChaosWave.svp
- Size
  
  155KB
- MD5
  
  d1003ec0588f3619ff587a86a8268f49
- SHA1
  
  cdafa58bd6e1b2fa3eb272abc9364817c12274a8
- SHA256
  
  7bff2b55d5e39e6beb246ff1d1b6d5b2df64c93d3e74eee897285f0e4c6a3dad
- SHA512
  
  07a6613dca32716cda78266602bcea6661d67963e8ad483728c7b9cc84dab589c26383d32af7fdb0908d79d7aec6ed42b870f9507a2430891e929480b58d2010
- SSDEEP
  
  1536:nbCdWo5nb2RYo9ha+0CMVGkjyC9XuCGslttjPeqt+jkTQKhEZkOyaWtXauR3rcgy:bCko4RY8ha9CMokjyCUZmXNIga9
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Freemake Video Converter/COM/FMVisualization/FMVisualization.dll
- Size
  
  176KB
- MD5
  
  514018f1edd562d1f9f2b217da50e25c
- SHA1
  
  0741bf917fb32c09998c92653ae7e50a22cea748
- SHA256
  
  bb48a2bf83edf7c2d3695c3aaf2654b3701bcb7ecaad68e9cd026fc9fac2744d
- SHA512
  
  3d4ab599a8fff9f46df850cad7b49113c018da1b2e3f7a19f092a86e062a2c84dcaa45ea4a97a71ca1c92a512d7488beb3892a8ae45aa997699f1c4f630490e2
- SSDEEP
  
  3072:bm/L+XHSsR9lSYZzib9RkggM5OLksCLgYZxHgDybuBgTfV:aVm7ib9Rkgs0gYZxAGj
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  Freemake Video Converter/COM/FMVisualization/LaserFX.svp
- Size
  
  36KB
- MD5
  
  1a4d8d82e7640d48c51049305fb5afb7
- SHA1
  
  d3c86cec1ec67afa77ae6ce76c4864ce7155935e
- SHA256
  
  d80c1e10f47421229b2aef90710c3d616073e49b959a0717df3b9a7488f23780
- SHA512
  
  6ea2df49f83ef7cbd0ecf2f34f671099461426ac03512bf9382c57a4d03166cdb203014ddb4aaf134c095402cfa81d26c11c4ff81ca181fe5dabbcf501820510
- SSDEEP
  
  384:ErBMrxxTQOP/d3E+P9GqmlPXJKC/yYYFJ48oIo9ZHz56:1xxTRP/V5P9CH/+cVIo9ZT5
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  Freemake Video Converter/COM/FMVisualization/Miffo.svp
- Size
  
  68KB
- MD5
  
  a45158f773db1f72caae86d79f26c1f8
- SHA1
  
  35bc59935c60891888a3703d698a9992007528f9
- SHA256
  
  751aa4c04cecf67274eac232f4cb404a49d2578c90ae924ae8c2737a4547e3ba
- SHA512
  
  018a75664b8f68f3fcb533055cd78772a899a3e32b1939754d999040ae05b0891493a15c61ab18b506217f671935c948fd9ec47adc23067552ee7f991a039d69
- SSDEEP
  
  768:66Ji1V0sGmU0rEA1J+TSkFiei0No0ARWqiB9/hfwstVpq1uo47R0mh48tonn1U:66JWVDhnLsTSkF5JobWB9noGJk1U
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  Freemake Video Converter/COM/FMVisualization/RabbitHole.svp
- Size
  
  69KB
- MD5
  
  751ff6201a10ebbf2f3700a585e3d1c2
- SHA1
  
  79fdf2243b35dfb0f5252d3c4eabc6ba25719251
- SHA256
  
  1760ccbb198c935ddc8f20c45120168e9155bfbb8761b818d764c8a1f4495823
- SHA512
  
  07a6eaa2ed5bfc9c8790c83dcfc0a0534311a5a1568352b7dc931a37d698fa510335b14771f713ba257d3f30215299087a59e7c5600ee2f8488c289c4a48c629
- SSDEEP
  
  768:27oit5RrCWVBKW3igJdqP/9yZixbtlPDmBAi1xF12XSZqxkEBLzo4KyGAx8pxA1w:27ZGWVBT3ioct/1WFrunoqGAMx0mi
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32