ca1c849035c31f8ca132aedfe93e4d3b32c18c90740c7626862b871ff7c249d9 | Triage

Sharing

General

Target

dadc86b707f62245a335bf501ec9a124_JaffaCakes118
Size

1.4MB
Sample

240911-v11kdashmn
MD5

dadc86b707f62245a335bf501ec9a124
SHA1

c358d49935ad70a9023f7db990eea775abe48b74
SHA256

ca1c849035c31f8ca132aedfe93e4d3b32c18c90740c7626862b871ff7c249d9
SHA512

29a905ba0debe454d5e9ec1a5e95ba60f9c1807d49965b7c5937a042034bb921dc14af43fcf5fabb17dd0cd436a199bf8de373f98bc3df0fd7d7e05839589cb6
SSDEEP

24576:28VSk3PX3GCzqa7dGzKtXSHgwJynMHJtv83ftehltZhrr2xzNQTvuj9ZDbVNSeoY:dZ3fVqa7IzKtXSHgwJynMpufUNe0vuhp

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  dadc86b707f62245a335bf501ec9a124_JaffaCakes118
- Size
  
  1.4MB
- MD5
  
  dadc86b707f62245a335bf501ec9a124
- SHA1
  
  c358d49935ad70a9023f7db990eea775abe48b74
- SHA256
  
  ca1c849035c31f8ca132aedfe93e4d3b32c18c90740c7626862b871ff7c249d9
- SHA512
  
  29a905ba0debe454d5e9ec1a5e95ba60f9c1807d49965b7c5937a042034bb921dc14af43fcf5fabb17dd0cd436a199bf8de373f98bc3df0fd7d7e05839589cb6
- SSDEEP
  
  24576:28VSk3PX3GCzqa7dGzKtXSHgwJynMHJtv83ftehltZhrr2xzNQTvuj9ZDbVNSeoY:dZ3fVqa7IzKtXSHgwJynMpufUNe0vuhp
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Base64.dll
- Size
  
  4KB
- MD5
  
  f0e3845fefd227d7f1101850410ec849
- SHA1
  
  3067203fafd4237be0c186ddab7029dfcbdfb53e
- SHA256
  
  7c688940e73022bf526f07cc922a631a1b1db78a19439af6bafbff2a3b46d554
- SHA512
  
  584ae5a0d1c1639ba4e2187d0c8a0ac7e54c0be0a266029c4689d81c0c64a7f80e7d918da0df5c6344f9f7a114f30d8f2feda253b29e813bae086604731a3d8a
- SSDEEP
  
  48:SxSrr7xd14m4bLKwvnvcfDw1hEiauGkDVK+hIg4qT9/3lt:zr7xd14m4qw/vGwrEickDVthcE/
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/BrandingURL.dll
- Size
  
  4KB
- MD5
  
  71c46b663baa92ad941388d082af97e7
- SHA1
  
  5a9fcce065366a526d75cc5ded9aade7cadd6421
- SHA256
  
  bb2b9c272b8b66bc1b414675c2acba7afad03fff66a63babee3ee57ed163d19e
- SHA512
  
  5965bd3f5369b9a1ed641c479f7b8a14af27700d0c27d482aa8eb62acc42f7b702b5947d82f9791b29bcba4d46e1409244f0a8ddce4ec75022b5e27f6d671bce
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/blowfish.dll
- Size
  
  22KB
- MD5
  
  5afd4a9b7e69e7c6e312b2ce4040394a
- SHA1
  
  fbd07adb3f02f866dc3a327a86b0f319d4a94502
- SHA256
  
  053b4487d22aacf8274bab448ae1d665fe7926102197b47bfba6c7ed5493b3ae
- SHA512
  
  f78efe9d1fa7d2ffc731d5f878f81e4dcbfaf0c561fdfbf4c133ba2ce1366c95c4672d67cae6a8bd8fcc7d04861a9da389d98361055ac46fc9793828d9776511
- SSDEEP
  
  384:yTxz0Cv0hqd+1TjQmd9YWrSUEc//////OD5hF92IJpJgLa0MpoYfAz6S:jCvsqdS3QGBREc//////Q53NgLa1ub
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  20KB
- MD5
  
  50fdadda3e993688401f6f1108fabdb4
- SHA1
  
  04a9ae55d0fb726be49809582cea41d75bf22a9a
- SHA256
  
  6d6ddc0d2b7d59eb91be44939457858ced5eb23cf4aa93ef33bb600eb28de6f6
- SHA512
  
  e9628870feea8c3aaefe22a2af41cf34b1c1778c4a0e81d069f50553ce1a23f68a0ba74b296420b2be92425d4995a43e51c018c2e8197ec2ec39305e87c56be8
- SSDEEP
  
  384:jQB2ZUVHUxgoJX0eBA6PcH85db+ya9cC0Ac9khYLMkIX0+G5xgZmT+m//a:j/UFeJ5S6PHLNa9cFam/
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  AddIn/VisLrc.dll
- Size
  
  152KB
- MD5
  
  acb5dd1a13cb60925cc6659ecc8d3898
- SHA1
  
  4318ab47a2adc4d7ad0a4fee2a8b7c1ab0756854
- SHA256
  
  e7bfa7249b8b8ad64246c25d8d1266e9187eca8e3edc007672eaf29717ab2464
- SHA512
  
  7be5a04c06340d162ad5e4f37f5a12be47f720df98a80479047b7657c6c78bfca4598a4d8a377d354522c975e9f56807fa18b2c871cae57bd0f042b5ea0ab964
- SSDEEP
  
  3072:zJPHHXjS7Ip81RLIfPE9hYRYCkLzf8l/JHss:zJhpUXYzkL4
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  Codecs/ColorFilter.ax
- Size
  
  136KB
- MD5
  
  8d6cba3f531cd14ff1281e77723cc7a5
- SHA1
  
  3790a27c45e9dd0ecd2ca870213b525b67111ca2
- SHA256
  
  5cd9bd8e302c000c7d219aa42d82c36d848f72500534ad60e5c77a3a252d668f
- SHA512
  
  eaaf352517f3ab5c677bd03490e0eb83ff26f55f7a5a3995dc76b4bd05f5cacfd71b870f0f3963f102288396a3407c1758468e4f633f2650a3d68f64ac7d0c24
- SSDEEP
  
  3072:TymeNWoqvzMcvAXQQ0vlvYKQptcabWQlHs69rDc:yE1vzM8bvhs7lHs69
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  Codecs/asfsplliter.ax
- Size
  
  64KB
- MD5
  
  4a7e26d268c355fb5da19a4400e7770b
- SHA1
  
  ebe3c19a94e12c2a5d39bc816317961797a6c89b
- SHA256
  
  5c44df6b0d4d212271a1ca4c008ea003a2dd1168059333169b3562c51065c3e9
- SHA512
  
  db5f0161d64b27cebc6de443e68cf596725ea1034f20c58f2a019f2d50e67574e33ffe65e8f5a9b21095cd2f309a97b58ee3603e528276aeefa67c9d7b3234f6
- SSDEEP
  
  768:Y9We0OJXnfX2c+AOW8gpukVl5sqiCpl3il7T59bSob4p9Gk0:Y9WEXn/2c+7jlkV4dCpN67t9bSXG5
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  Codecs/atrc.dll
- Size
  
  76KB
- MD5
  
  ed7c402a17a33d428a6d0dad2e7c42d8
- SHA1
  
  93a6dcf0abe28a01403da578d685cc5c0b48bb82
- SHA256
  
  00cb4ae39a6e18c07e12ae53150ee29ece9ef4561a496920f19813aa431daff2
- SHA512
  
  bddc074123d3f144d7903d5f2502f8961ef79e1a06ce05d1769f37314eb276729444647a9f5c9e80fec0512cbd07b5e46be40f6f6015f8b1a255d7daf3ae28f1
- SSDEEP
  
  1536:k7b44Vh7qOxPccMvJY1cnd5unZsQDUhl:k7MuPccEYW3IZhDUhl
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  Codecs/drvc.dll
- Size
  
  260KB
- MD5
  
  e9ad4c6feede8ce70a1a21ed1dc0e2ad
- SHA1
  
  ec6b32969e43328a177456be63864d004d501fce
- SHA256
  
  ef8d7d81cb460db57f2e737ca0de3e0c6c06f78273e49a47b24f0a1eeaa2909f
- SHA512
  
  ccd0a54e989b882db33e932fd95d29922dcc3e8608f32beef5882182be0534d809f67ce4d54ac894165f51e237ad39402ca97cf05e933fdd3c01c4f6ae50643c
- SSDEEP
  
  6144:hsNg+cXo8ZJI54BxrFPpH5Dtf5DNWoEaeglljEz:hsNg+Qo8ZJPWoEillYz
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  Codecs/raac.dll
- Size
  
  19KB
- MD5
  
  cfce314ad7fce1dbfe2cbc90cb77f673
- SHA1
  
  33f9978004a3a4d2211c650fee93fdb2b6e99c58
- SHA256
  
  5f55ae3e3bfe44b7544c419cafcab320a8aa8612b0592a4310aad132527cb747
- SHA512
  
  3e8743d927a7cd7a1b8ae02af3424801ecfedc231727f7befc774df75ceffb92189a74cb80646bacc7bd4c34f96cdedf31eb0825a4ce2df96429072025890f62
- SSDEEP
  
  384:ot8eAhHHPPcbee8kXTW8j3j2xck2V4RbAsCVBJNjvXG:ot8PRHPPsxbZnV4FGVBJNjvXG
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  Feidianol.exe
- Size
  
  152KB
- MD5
  
  07f74b8821e40c92a718d0d612389769
- SHA1
  
  656e23ba84c9611bc3296437fa350bbc1811eb74
- SHA256
  
  44d1171ef9a4c9f1d460b8372110804b59720a0efd0871f2bdf822f0729846a5
- SHA512
  
  9d8ff6ed4c1bf87b2356ab02d302625ff80abc8de2e3cc0310bc4977cc6b0f488ca17ebff4fb1db4d587440d106aab6ad9173b142b1abd936f4a42782fb74bc6
- SSDEEP
  
  1536:6ZdWqhc6geFLeyZGf0QIRGZA94x9o7y1la+IK:obgeoM7J9o9o7y1
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  MyUpdate.exe
- Size
  
  164KB
- MD5
  
  edf43c9b1525b9bd245f05c80e33a65c
- SHA1
  
  48d7b90ae691d7d6999bf0ab96ce368a622cd079
- SHA256
  
  10ce1f36924c9f01a6686e61cf6ca85b1bbc6c267ffe9c5833a0340d94a61321
- SHA512
  
  17613bee0f6a3ac1697ef6ce2fe5bde2670c1a81b0993608c83daeaa619eb30c0318a55c77323c02e33778ce33b98bbec4063eaf8f3ca225a6433ba4ea1d5d26
- SSDEEP
  
  3072:Y/bM5xy2gRdZQ+2GGV3IjWJ3/c1Gfm+WdAd/zSMB3FhI:u7xZQ+CV3ICJ3Eum+SWGMBI
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  NetAgent.dll
- Size
  
  84KB
- MD5
  
  1818cc72eebeffe8bebbcf0517190bab
- SHA1
  
  cbc20d2a9d765c2fbd29b184c1403f84a3c14055
- SHA256
  
  593faafb47a292843455a7eb54938b401be9f1d9a43ac9f6cb000b910402ae2b
- SHA512
  
  7ad5b226ea7f037f98dd9ffded71bc1733003c32d922fb98ff38c87811c762f9c11d3fbd8959e707fe5227864aa5869fc14b2f0e1a1109b2fe28ac98ead59660
- SSDEEP
  
  768:98afu7G7/V+x8LJieYeAft9tjETIVGuU8pTDt0y1qcZCiv9P9J30QilhvHASocA9:WvKDuxeAlswpTRFRCivxYJVoc5Q
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32