c14ac291f1e47b79c3f967ff017945e59a50f90a3b1273cd2726504ec6b4e758 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef9c80ba22bfbdf1e17692eea8ccc2e6_JaffaCakes118
Size

1.6MB
Sample

240921-mn9craxgkb
MD5

ef9c80ba22bfbdf1e17692eea8ccc2e6
SHA1

235bda7539d2b4dcca94916ede2327e6ba283791
SHA256

c14ac291f1e47b79c3f967ff017945e59a50f90a3b1273cd2726504ec6b4e758
SHA512

04fad6dba5b1221e8e6a721f319d2c69e985f2c421dc13255568f723a9a36ec47299a251496dee4a019b58d8267328cee63797e9a184d54230659755a107bcee
SSDEEP

24576:WqH85THtZ8WKh8HG1y633VG4xHaJFcuKVvBaDiOuEluBbEqwXLlpbB:VcZtWWK+HOy633P6JFvdDi5EsNEqqlp9

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  TotalRecorder Pro v5.2 正式注册版/DRINST.EXE
- Size
  
  14KB
- MD5
  
  b304a1c663c842ca18840b8c8384d694
- SHA1
  
  159ad4e0d3300f4e494304f0be1575d98e15dc22
- SHA256
  
  3565e0f1e8880114e1fbb06833cfe8d01b95794f9085f00e09cc5e2821549b2e
- SHA512
  
  6b655e8bf8dda4e43bd8d96c0f860097a1bc9e748fa566b73c1fd3ac6c3352d09d16e35982ad62957510dde2b10e44f02228995a559c2e3768139559ed67ce81
- SSDEEP
  
  384:Ld2fYuYLwXTIzXg+92PxwdtfkOmS6VZoIqz:UfR9XTIX92PWgZVZoI
Score

1^/10
behavioral1 behavioral2
- Target
  
  TotalRecorder Pro v5.2 正式注册版/DrvTR95L.dll
- Size
  
  112KB
- MD5
  
  8d7ff51defc4c921c9fdc300bd244347
- SHA1
  
  ad3d58057110af81294c6be4547264abf323fddb
- SHA256
  
  81ccc71051272b0a2dd56dad71e6db7354a744c998f0f04075b57ed5f8211056
- SHA512
  
  bab4c800fbd3987227bb7e0cd99baa9e64c1940bade7da815f5b6273309ac7648e3f5de8b3de16e1d12c09dab6bf42a24f61785eacd94ab8239b1c26fcc76d27
- SSDEEP
  
  3072:sKBxbcecajXySv5RHKugleRGuqBGoQdqKP89cnkT0o:9JceycNDhguq03P0B
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  TotalRecorder Pro v5.2 正式注册版/DrvTrNTl.dll
- Size
  
  120KB
- MD5
  
  4ca6bae9368f856e527d0bc10f1d8d24
- SHA1
  
  d725a08db1dd93daa9efb3778bb7ea63a4eef3bf
- SHA256
  
  cd8bb35d56f1dd40b50b3c4dc7dfe1cb08cd6e016a0419db00469380931f7871
- SHA512
  
  2cbeea34395d410bd07ce223f576ba9902488c853d2123d0feb352604b62f5adc44554bb1936cef7f429434dad29d1fb5e9e0d2246a9a5524e951706f394b2b7
- SSDEEP
  
  1536:vn2qXnNeTq1ak3/iW0K+nCha7GcF2lPHfTAGo006YeZFDWHhX2RcXrC0Yl:/2kn0G4k3/B+nJGr/V6OYX2RcZYl
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  TotalRecorder Pro v5.2 正式注册版/DrvTrNTm.dll
- Size
  
  52KB
- MD5
  
  545247deef2d1de894d5964bea09f8d4
- SHA1
  
  2788aa3490782fbb39021ca010cb97c005177c80
- SHA256
  
  a2dae60f15aa62edca13db9fb7583b23a42f5288369c5c2ca8c0d4297d6bd2f0
- SHA512
  
  bca15f1cf002970c334e10f34a539cbbb968103f85346e2daa103fc7bf3cf6be9117edb528ce0f9ee823f3e624186c14c46d7a5dbdc6129f00a5e47cacb7bc14
- SSDEEP
  
  768:A9VO/tkEfRTV5DsuxjbHbpeY+yHQakJexy7d2phXOlf/vEzQSstSDgp0zowt5:A3OCEZbhFqEyeE5LvEzGkcwr
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  TotalRecorder Pro v5.2 正式注册版/TotRecSched.exe
- Size
  
  80KB
- MD5
  
  bacfe5df627b9e96615ae68ab4dc3eb5
- SHA1
  
  092b84b48c61b382dbccdc1017593a822f3c7270
- SHA256
  
  b4e675a9a218c3acc8c3b543b658aefd021fd21d2b4b0dbc258550cf57ffcaa6
- SHA512
  
  5f87c6bfd1324d5ceb7abf945ee6a3ebcbfe80dacf797fdc22604de03b37dd1ddf0facb9c9dc03c82b96494ea8666587aae296b22e196faac28d73d845d8ccf5
- SSDEEP
  
  1536:2BOr462UD7X3SjUXtz1Lcl2OagcPbzlKPWpTgYPT:23Hj4z/gYSWpTgYPT
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  TotalRecorder Pro v5.2 正式注册版/TotalRecorder.exe
- Size
  
  2.3MB
- MD5
  
  7b2a0e2e2c359f6d185ac31137ddc340
- SHA1
  
  d85b76f8912078391d5cc0bc5f7dff6f2e254261
- SHA256
  
  d6225cd807b39da1d90d0cf3e45b851f4c924d1d06ad8e235d6143b7d113d867
- SHA512
  
  6a597fdf44f455f4690694a1ee4f3139697ce4aba154543157663a426a2100f51eac4d4a280b08b51c7c93aa73eea9312177817f3cb1a2060e7432294b5c0a82
- SSDEEP
  
  24576:N8a8QEpnWRFvypMveSSBA/x2CZvoF3NwcO5Srksq8T2/5Ojq3phicKkhZyWiLq84:u/WKYe6xANbkFbphicP3Hl+tw7o
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  TotalRecorder Pro v5.2 正式注册版/WmpClipInfoForTrVis.dll
- Size
  
  92KB
- MD5
  
  771ecacbf3a157e72ebca9a0c800b111
- SHA1
  
  f97bbcdb2acf5b0ddb8fe1edf8e1345678b75160
- SHA256
  
  77245fbb16b2e4b66c8e575550082ccf4d9b1d0ad6d47b54e0dd75b08e95d004
- SHA512
  
  49affa0e6e90c5d81fad7e67ec94e64b4cabd39cbf36d72562960b45dced4ef33573013a40654c44d19b57c530dd8c20f7fab27420ed858133dbe7c8cf4b43b6
- SSDEEP
  
  1536:K9nDsO69g8/G+T6djo7+cuE7UTqcg5b/:KRoZONR3qcg5j
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  TotalRecorder Pro v5.2 正式注册版/_shfoldr.dll
- Size
  
  22KB
- MD5
  
  92dc6ef532fbb4a5c3201469a5b5eb63
- SHA1
  
  3e89ff837147c16b4e41c30d6c796374e0b8e62c
- SHA256
  
  9884e9d1b4f8a873ccbd81f8ad0ae257776d2348d027d811a56475e028360d87
- SHA512
  
  9908e573921d5dbc3454a1c0a6c969ab8a81cc2e8b5385391d46b1a738fb06a76aa3282e0e58d0d2ffa6f27c85668cd5178e1500b8a39b1bbae04366ae6a86d3
- SSDEEP
  
  384:+Vm08QoKkiWZ76UJuP71W55iWHHoSHigH2euwsHTGHVb+VHHmnH+aHjHqLHxmoq1:2m08QotiCjJuPGw4
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  TotalRecorder Pro v5.2 正式注册版/setup.exe
- Size
  
  352KB
- MD5
  
  1fee8031f794e6e1904c8e94e60a786d
- SHA1
  
  2f4c1126a47d97a8f142a57dfb199bdcde135e25
- SHA256
  
  16fca7cffc4084b8e97856c45163988d4e1a571bc5b3b6a36a5f6cc98f96c857
- SHA512
  
  938f31efcf3796f951ddf4c1e013f356eb149e16eda0a315f21872355284db2bc64068d405929c91d77fae8aa8034a5b8b3222205b97cbfc28f493c9f1adde25
- SSDEEP
  
  6144:aEw1JkyPfYTUHLVmvJXgnbK+UYYzm8kaA:ar1JkEjRgXgn4PmG
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  TotalRecorder Pro v5.2 正式注册版/中国破解联盟-木蚂蚁社区.url
- Size
  
  272B
- MD5
  
  6508f15e21f5071b6c9311931dbde424
- SHA1
  
  0dca557073ffcd6ce61e39fad6fa4c1ebc0cca68
- SHA256
  
  0fc9b5fda9f2ea034669792f8044491775a071adffae9cc8a4bfe90c8e7064e8
- SHA512
  
  a11abd2266f3cf9928160d8b6cf089789de732a6eb255f5ecfa763e358458202edd6526c6c137c57926d75f0b1c33711638691d94de0c62b7db63b6a94dbf21a
Score

1^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20