419f9b5177db94b9d017b2340570ebbfcf14238e3d256d5185c8b138940510e4 | Triage

Sharing

General

Target

f9ff52468d7b8eb103906099c3bc5999_JaffaCakes118
Size

721KB
Sample

240927-jjdhqsvdme
MD5

f9ff52468d7b8eb103906099c3bc5999
SHA1

961dcb58f325d42d6a92c3a78592b8b593a5df5f
SHA256

419f9b5177db94b9d017b2340570ebbfcf14238e3d256d5185c8b138940510e4
SHA512

af33128af18a0aaa0d243bc4f70716ac137823e8acf266583d01518b2ed19a325e4f62149eb8a9d42e0edced6a005843deb751ffa6e7333965f93b4b6ac756e9
SSDEEP

12288:toouDy8Q3kwN4ERzDFE02mSYB9fe3T+unGZ1pm+QC/AeCJY48eUuhGEk5ewm4WYz:to728Q3/NrtA3T+uGZ5f/lH4xUuhGEkf

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  qqbqjl-v4.07.exe
- Size
  
  747KB
- MD5
  
  84dadef90ed5b5e009359360b3ffe58e
- SHA1
  
  9a7668c27e32b41a6a24fae6be2c6f51098bca74
- SHA256
  
  030ff35fd84c08553880e21cd3e695bec78747eb6ec38813dc12b157af589518
- SHA512
  
  533a59fd9c15ab0d989541013e495e73052cd57caadc63179ea5e0991524511d74f74a456dba970fbade590d13a0b2cb06e83c778c4116bf6a02757036cba40f
- SSDEEP
  
  12288:4M08AnGjGZdTel29Umii67t8nuZ6WGq9wv6vKdirk9EsCnCILPDWEmos0UryqpPx:4M05Z9el2f67jZ6WGq9diirk9EsChLPm
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  3KB
- MD5
  
  8614c450637267afacad1645e23ba24a
- SHA1
  
  e7b7b09b5bbc13e910aa36316d9cc5fc5d4dcdc2
- SHA256
  
  0fa04f06a6de18d316832086891e9c23ae606d7784d5d5676385839b21ca2758
- SHA512
  
  af46cd679097584ff9a1d894a729b6397f4b3af17dff3e6f07bef257bc7e48ffa341d82daf298616cd5df1450fc5ab7435cacb70f27302b6db193f01a9f8391b
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Update.dll
- Size
  
  297KB
- MD5
  
  0a3ab950217542adc4d758f3f876e70f
- SHA1
  
  b15b2d4fc42e261604d72665f9699db5e993b190
- SHA256
  
  b03f2083ccfce54da93fb9296131634423d32d46a38a85442ad7a4756a9537a4
- SHA512
  
  cef3b6b70095662b764a9d13b9ce406dfd5f8ab9bcf3f82a7ed62ecf2dd52de6d23d963f8d76eb88589a3460691c1dcb0cb800227189f4f3dcb6c6919eb76456
- SSDEEP
  
  6144:xgpF1K2nS50qo9RnnIcydIlrRNzDndDQLuTkujjILHocxsoaTVLfzU4YzR:mpCKd9Rnnry0RNztFlsLIJe4YF
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  qqface.exe
- Size
  
  359KB
- MD5
  
  fe548dcd8e2c5f943b25476e200ecc81
- SHA1
  
  b1d60b8a3dee54f4a41b3ebc4caab31d16f7a5d9
- SHA256
  
  b93218a4e9d7e439fc2dd2f566f219dfe4efe9ed3bc26bf5ae028477766fdb40
- SHA512
  
  9644cd3ddf800362aa2fe9a307659d2815f73a1db36fe740e12b6640418e5157fe11660ec4fefb7cec374b008b30c59a8d01131989e10eec528e14a9c79e819a
- SSDEEP
  
  6144:PX65tVGFuCXWWJ1WcQ/OscPAk3dFW+NcmteaGl34oU9cjcyodOe42o0H:vIMskT1HcMAwFpZY9ZgtF
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14