140e77843a47ebc99cffaa2b28410b5912196d6340fc3e6282df7bf5632b40a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da3b6e3ae0b2c30d36f750a509228c15_JaffaCakes118
Size

944KB
Sample

240911-nevnnsxckp
MD5

da3b6e3ae0b2c30d36f750a509228c15
SHA1

84543db6f01b93cf0b66208ca4dce607ef85693b
SHA256

140e77843a47ebc99cffaa2b28410b5912196d6340fc3e6282df7bf5632b40a5
SHA512

2b465d2b6e0c2ce040497105ceb5deb61619e9ff68d6c820701131dc7479ec99290c897642477ef2f97846a36ba1df2ec138cb518438e2aa7864fa3171d8bc02
SSDEEP

24576:TAwQyuC4Pl1alY4bJbIwh3/CQcwTP5C8xGJXdTY:T5Qyt4glYgJth3/CQcwTP5CEGXpY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  hanzify.exe
- Size
  
  961KB
- MD5
  
  3f6dac860b5bb5bacda0fdd4bbbb9e48
- SHA1
  
  b426316c8e1bec1cc7a03ed758cbe72d83a8c0dd
- SHA256
  
  e6d63e38cf4530f15517991d3837691bf58cd5479df46e37d2c1e21b76015d8a
- SHA512
  
  608341bf28ca6351bacb38319bb5f43bdb0c5c9d8f7598ac30f3ef53c9a79d53da43ca51c8c2a701961298398b61cde1078de8dbab780da3d28d2b8670ad7b21
- SSDEEP
  
  24576:JN490KDN9k+XpinQYnZdfymj8XR2SRKj5NLo3O+:A9k+Rw/fRjw1RsK
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2