7811030199c1ce752512dea51a23c75f342a505d692b39a12065d3d253b5e83c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef23a93a7227ab6a02c100a1575e8e4a_JaffaCakes118
Size

9.6MB
Sample

240921-f1zkraxakp
MD5

ef23a93a7227ab6a02c100a1575e8e4a
SHA1

d568357ef0106503f4175425e7f20c10e4b11f4f
SHA256

7811030199c1ce752512dea51a23c75f342a505d692b39a12065d3d253b5e83c
SHA512

0da8d791cd01bb5b60a3c970bc21aa0b82f58ff7eae435350a38ef00d1f548e7c37a82654edc98ac9d023afcb90ffbf345b3bb184536f783147c587d3f0d9bd6
SSDEEP

196608:fDXcbtRc5C4VRsSt9hU56v5scsG00gD7K15NRejWiwNXrVnUW+qS:frytRkgSRU5wsegD7K15NRe5wNXJnGqS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ef23a93a7227ab6a02c100a1575e8e4a_JaffaCakes118
- Size
  
  9.6MB
- MD5
  
  ef23a93a7227ab6a02c100a1575e8e4a
- SHA1
  
  d568357ef0106503f4175425e7f20c10e4b11f4f
- SHA256
  
  7811030199c1ce752512dea51a23c75f342a505d692b39a12065d3d253b5e83c
- SHA512
  
  0da8d791cd01bb5b60a3c970bc21aa0b82f58ff7eae435350a38ef00d1f548e7c37a82654edc98ac9d023afcb90ffbf345b3bb184536f783147c587d3f0d9bd6
- SSDEEP
  
  196608:fDXcbtRc5C4VRsSt9hU56v5scsG00gD7K15NRejWiwNXrVnUW+qS:frytRkgSRU5wsegD7K15NRe5wNXJnGqS
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/DLLWaitForKillProgram.dll
- Size
  
  28KB
- MD5
  
  9c4b8ec42d89f7557bfd90798ce52787
- SHA1
  
  2376dde426ea65aa27c30e304086310605382475
- SHA256
  
  ed52bdad7b383a179b9b0e21fefdda2d72695c5263a815d5e1e0bfac6c718548
- SHA512
  
  17c12a27a08746755868558c037376dd7e20f03f0f71888c1329903b70975a54f57786c3c32bf88aaf30119f11ed978a6830ba91949e11cfc94fbb5ad95305b7
- SSDEEP
  
  96:EP5ZuFye0MyQW4uPwhs+R/+gFrE1m/U/uG98bp2y+HS21kEZ1b+4Tu9C1uGg8wBu:akFyFRQ5wIzlH/UGq36EZY4T+Gul8U
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/DLLWebCount2.dll
- Size
  
  28KB
- MD5
  
  c49642ba9d55a615e141b3d08d929c1d
- SHA1
  
  537229bbac385da55e2b405db64f4bf3c7d4aac5
- SHA256
  
  03d23f6d0106e407ec499aaebd9db3884f8347ffb6fd60328623eacd1b29aacf
- SHA512
  
  2b24fbc76343dcdf0823265d141c9828c31b05d7a62522f26fa63b98cd3e3df7f60296361f6502f32ee269167649ff290f861c69cd645b61067fb21a20f9f9f6
- SSDEEP
  
  96:6K9Q0hcgBkt9te55782Yf2062GKofHkxbt1USvf97kzPaJsvvuLBudGaQJ86nU:PQ0mgfplYfAKom5+Sd0NvYYdbQJ8n
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/FILEDownPlug2.dll
- Size
  
  28KB
- MD5
  
  89c563060d908e5df6848ad15731e6d0
- SHA1
  
  404d8d41700ecc907e5b7c849a0dcde8edda1e72
- SHA256
  
  8bd1c61e9be2b8b07f6dac4782a96ee9e679c5f163133a51b57e1ecd72f3eff9
- SHA512
  
  8eb86ed92ba4d3305a954d824a1ffc23d9aef02559c794c085f67583f32d8228834b09ad45edfd8a78b4634e62344f53e1106db64134b8dd2c5e0fae391da763
- SSDEEP
  
  384:UCpErQTFze4TRt19H9emlJfbyLx/etuFVclW:YkTA4n19H9jbZMKlW
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/IEFunctions.dll
- Size
  
  3KB
- MD5
  
  9701818d39318145dd164794ef3a3846
- SHA1
  
  7db701f8dc19163d46ba88e8b68d8dbf428a8152
- SHA256
  
  3122b0413f74e88518cfd1b9c6e18435dd326ca177a2374b6405df78f43e776a
- SHA512
  
  d92786630250e9eb6c47537b09684fa107f959b50d255c7f3952741eb438c3be47e171827d3a4407b049c33c12dad73f8ec381a7265b28a6d8ca101ff702e8a4
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  eef9e469e8a30717974499f277d97e2a
- SHA1
  
  2d33c25984ebd9116beeb55cdde4c5c86c023e5d
- SHA256
  
  1f35bb6728237483c779005fc227e69fef51b0bafd32d15855d483948a337078
- SHA512
  
  d860132106a1c03dfa23f983b3c503f1216ac02f3d47833b96dfb333fb30bc8ab4d4fecd1f1f0a89f0c7f3586405461e2d53c26f282bb48970e549659b364b48
- SSDEEP
  
  192:8np6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+MTjK72dwF7dBEnbok:8p6UdHXcIiY535zBtMTj+BEnbo
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/IsVista.dll
- Size
  
  44KB
- MD5
  
  344d13fd0fdd2d97e8d61960f40a8a30
- SHA1
  
  3f0f120203005eea3e8ed1652a6ea8a607ea934d
- SHA256
  
  17bb3331e2300aa01666fbee98b9552cec5e46212a4c5a340c0370b93df88f83
- SHA512
  
  b4e49c58503532e270cc369f1cbd14d85edd46da5ab034dad730bd4297887dd541d445d2fbf205820e6afbbdba7ab6d5b78b694467554320fd6db8e06fe4f719
- SSDEEP
  
  384:x4MHyTfkIbqaddF1qabhJfl7Tisz7c7t3TyAvdjWu875USXdvlHZYklIsg:FSTpbqaLfHJflCszOTbdjWR3Nvl
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  4KB
- MD5
  
  99f345cf51b6c3c317d20a81acb11012
- SHA1
  
  b3d0355f527c536ea14a8ff51741c8739d66f727
- SHA256
  
  c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
- SHA512
  
  937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/Linker.dll
- Size
  
  7KB
- MD5
  
  4d7bbb06eaba0a221d4f50f868f93d81
- SHA1
  
  370cb0655fe5839d430d7edc60de34d127987837
- SHA256
  
  fdf83b6cd8df4a202cc698222aaaa9f3e39e9af1bde3d7aeab7b93b98ce0a51a
- SHA512
  
  84c98f6dbdf0ba8f96216c05954b907b7c87f1b7502a13989c69d9def9def9c2302ee6dea2ff49b7fdd546a8d0739230d31e5e1353b83cb407c9533cb342850c
- SSDEEP
  
  96:ecGy70RHRBXvytUc4Xv9ql5XYXRZpYwCHbk3gv:eY70RHHatj4/MXYXnuVHbLv
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/SelfDelete.dll
- Size
  
  24KB
- MD5
  
  7bf1bd7661385621c7908e36958f582e
- SHA1
  
  43242d7731c097e95fb96753c8262609ff929410
- SHA256
  
  c0ad2c13d48c9fe62f898da822a5f08be3bf6c4e2c1c7ffdf7634f2ca4a8859e
- SHA512
  
  8317af5cc3ac802eb095f3fa8cc71daa1265ca58fead031c07872f3d4bb07663a7002ae734fad392a7617f0923fe0caf1f54ed55afdf8516a6a08e202d86fa7f
- SSDEEP
  
  96:1dIrJYYrzPpqAAZ9sNIaI2y9WulXEGNRrG:nuYATpq/viyYuEYRr
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/SetHoldData.dll
- Size
  
  96KB
- MD5
  
  e86d36c5332858061cc519e7bb558f39
- SHA1
  
  8114e43152797296ec1919b1c713ebada661ca51
- SHA256
  
  4c8869ff8cbdd2f9a6a2d2876194869664d0e3f554886451224ff4e732136365
- SHA512
  
  46bf19a71fe2ae4d61084bcf406604e2f375c92f5de1a5e9a6eb857424eb4dc82e70ae7099aa3676c518960f78a17dafa05c23e5283954e43f44190391662ed1
- SSDEEP
  
  1536:WLWIcTAacVyVg+h1hT9Uh+uQNIIhVQoJadWytgYT+j:4TlCg+h1xr9IIh+oJadrb
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c6f5b9596db45ce43f14b64e0fbcf552
- SHA1
  
  665a2207a643726602dc3e845e39435868dddabc
- SHA256
  
  4b6da3f2bdb6c452fb493b98f6b7aa1171787dbd3fa2df2b3b22ccaeac88ffa0
- SHA512
  
  8faa0204f9ed2721acede285be843b5a2d7f9986841bcf3816ebc8900910afb590816c64aebd2dd845686daf825bbf9970cb4a08b20a785c7e54542eddc5b09a
- SSDEEP
  
  192:qADKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQbVUSF:qAViJrtFRdbmXK8+WVUw
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  $PLUGINSDIR/UserMgr.dll
- Size
  
  55KB
- MD5
  
  130f66c0161e6da46744abe3c0be4d9c
- SHA1
  
  d2a44a0cd07bc0c5d81fc0d056d6d45d200896ed
- SHA256
  
  955705c8c7188d06af16849e5cc3ceae79ea5d0808cc2851630a54d54bbc01f2
- SHA512
  
  915b9135da230ec8d3016ba83bd7102b3f8cb13050189a176f8d4d50363f13584fb971226458bc493cd2df27723c8ab7273effab7d6c6e14d49e735d24d7fac8
- SSDEEP
  
  768:fThBSJtwQegACHpCygw5eKeK/B/viiTRvTkujLWf2UEHzDSZA7yM5jt/BJE4lV:7SCQeLCHpCyNV9ZTRbkuOQzyMVt/blV
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $PLUGINSDIR/gettext.dll
- Size
  
  28KB
- MD5
  
  e25231179633076571aeeead84744f58
- SHA1
  
  7c54ec2756c1844344b5c71c3dff0a65ee91d333
- SHA256
  
  db39b31984d96ee25968859fe1621c1dbe07c17c46e3d04f865801f71d5b4347
- SHA512
  
  4af0429ce8041d021aa38bc7af483548cacf3df8e0c12548a08ce51bd394bdf05dbddc2cf50eb71c754d15ec6e5161b9b7cdb581e6bb36de4fa1de1db63bcdda
- SSDEEP
  
  192:hb00mgIwplYfAKout+SdAQkvYYdbQJ8n:V0bzwplYIRusIAQk5by
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  f2c993a0c726386d72e4640967cef83e
- SHA1
  
  efe88db252b5e9edff2d859e783fcf1a349e553f
- SHA256
  
  6739a2c8075cc383620a867e983957de0b4ae9ef0453baadd1469132893d7301
- SHA512
  
  3873a87ba360702c72a6d3e853a0b6f2df219593cf5436d12a9d4d169029e939993c45330212008b628184da64ae98d6a7ab42b30d5f82c896acfc89d558169f
- SSDEEP
  
  96:qBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8XQB0NKndY7ndS27gA:q6n+0SAfRE+/8k0NKdqn420
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  cdff6b8f9523b6ef9f20fb5f9e90f1a5
- SHA1
  
  b25f6e0a19b41ff0a12de8e98e3005bc119d34fa
- SHA256
  
  80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8
- SHA512
  
  62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e
- SSDEEP
  
  96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32