d06e2b1f45f415c50cc992a067c071157a35de98977b10ba896cefb7324196eb | Triage

Sharing

General

Target

fb1885680c068142c92817c9fbf93bd9_JaffaCakes118
Size

2.9MB
Sample

240927-3fvsdsxeqb
MD5

fb1885680c068142c92817c9fbf93bd9
SHA1

40e62a4ef3d69570198b426c97a6e2310805829c
SHA256

d06e2b1f45f415c50cc992a067c071157a35de98977b10ba896cefb7324196eb
SHA512

7f0de00118dcbfaf5ad689ac6c93925c65f2973ee3c3ed3f0e2301e654aeb7d35748a3cbf715e61b1375733e340247b51f4b9314567e39e4e2598008fba9b060
SSDEEP

49152:gkT4Z+8eDqjk7+JG9payyhaPEKYMllnH6EHd3IvT6eREQnIDOa5FIKb07kXSE:gDZRemI7+JGXayypWnahvYQnIDOCFJl

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  HA-OFS-1170.exe
- Size
  
  3.0MB
- MD5
  
  b97cbd6448eb87cea0e223901afffd00
- SHA1
  
  26704f493f0a4e8f2be845e7ed984e5c59ad9a46
- SHA256
  
  b188bcb57461cec2820606cf82a17816843a2761be7e8d0744ef58bdecf5b090
- SHA512
  
  0a270bc292fb9f3a433729a425116b1b72b51218bbc9ed2e4e45a9862f940f2800e54683a9dadc3885c28d45285854b2b9ede65974521c545af046a10b01c049
- SSDEEP
  
  98304:pQwMNYp70TLIUi/8puF2fQ6ARayou4lVJ:pGn7uF2fARauK
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  非常世纪资源网.url
- Size
  
  261B
- MD5
  
  7224ffb934111a8809741992c978930c
- SHA1
  
  b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281
- SHA256
  
  9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772
- SHA512
  
  5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4