2e5d4efcd41c904f184fac0f2839d018fe71145ef204f47ce5802321b3d9fea3 | Triage

Sharing

General

Target

fbb90145e9e5f6466147e5c280dc0b63_JaffaCakes118
Size

699KB
Sample

240928-hkaykasbpr
MD5

fbb90145e9e5f6466147e5c280dc0b63
SHA1

7b7396ba629372f90968bfc84f30d79d64a50751
SHA256

2e5d4efcd41c904f184fac0f2839d018fe71145ef204f47ce5802321b3d9fea3
SHA512

e467972ca994099a378a1e1da1f849d26f0dc92aaf0c8c37bd2c195f9b94872326bf3628a373fdd2ee4eb113a618d3a7631a51765aa2f7840add6a8e9f123c22
SSDEEP

12288:MHniuTZzqNcY7f/t2H0xZBluDO1uHIUcP4DRIKUp7JQvFVyN:MHniuT4e+/fxYtzC4n0Q/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fbb90145e9e5f6466147e5c280dc0b63_JaffaCakes118
- Size
  
  699KB
- MD5
  
  fbb90145e9e5f6466147e5c280dc0b63
- SHA1
  
  7b7396ba629372f90968bfc84f30d79d64a50751
- SHA256
  
  2e5d4efcd41c904f184fac0f2839d018fe71145ef204f47ce5802321b3d9fea3
- SHA512
  
  e467972ca994099a378a1e1da1f849d26f0dc92aaf0c8c37bd2c195f9b94872326bf3628a373fdd2ee4eb113a618d3a7631a51765aa2f7840add6a8e9f123c22
- SSDEEP
  
  12288:MHniuTZzqNcY7f/t2H0xZBluDO1uHIUcP4DRIKUp7JQvFVyN:MHniuT4e+/fxYtzC4n0Q/
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $0/questurl.dll
- Size
  
  560KB
- MD5
  
  4089fdcf40af70743ca059a734b9da77
- SHA1
  
  55821cd721cb1c4bcff4e54bea1432a536ae9b6f
- SHA256
  
  033318ac1a0fa9c3fce6e7deb2df67dbe4e286d61f8198e293fcb642923dcb0e
- SHA512
  
  c1acfee36b4b62b41ca007731ae39eb5ec4230b0bf66521c81cbc5ce671a8460b36b91e990e366126911c27b6517cf3378a4f3947b3328d5666cb157c61795e1
- SSDEEP
  
  12288:n+j4kB3jA31ZNc0uwAP333QMx0fpxnzj1S87uY/uXfm:nik3m0LA4Mx0fpp/1S87pSm
Score

1^/10
behavioral3 behavioral4
- Target
  
  $0/questurl.exe
- Size
  
  52KB
- MD5
  
  562d4920a84b669cfbb1be163a6a9d3c
- SHA1
  
  00af37e3fb9b41daf5c4c05c1609d4fa8f91ee5d
- SHA256
  
  30f44d4e31d5bbe59ac9aa99ef139880e8bdfb466be0c60c082184149d9fa1dd
- SHA512
  
  b3e36262229e15d47b8956ce5ae1776bd4510c1e93686a28255fcc4915ff168a43c47d1b9b350da9e11e84f8f5708a09104ff24f788ae5536419751668f411a5
- SSDEEP
  
  768:7lNP5bj9oDHSqlnfAobIhmBOvBY3OTNiDVD+TpeYKZ62OtOAyMAV1l:JX/9YHSyn5fBOvG3OTUDAzKZ3cL+l
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $0/uninstall.exe
- Size
  
  82KB
- MD5
  
  a8cb4c299acee185c94ef6f3c23efced
- SHA1
  
  1d938f6655cb713344d45e9ab49bc683042de893
- SHA256
  
  968f9320876119b4fd3bdee48dffd83fab0c47c03732148e7124d2af3c8ef873
- SHA512
  
  fa3573593c67b478cf80d9a8be5f7a342cbaa392afd22ff4a00b19c12c60a8aec23cc8226dab9575029225d4fd9b591a9ec6ff0451f8648480c113204856430c
- SSDEEP
  
  1536:8EkjY1zy214Qay0DGkJ7qAELVigJIdUcpVPVwfdEOk2/DVZFE:bkjAJ4dDGkJ+AI0XzNwf2U/P
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  d765c492c21689e3d9d61634371fd861
- SHA1
  
  ac200933671ae52c9d5544d0e2e8e9144d286c83
- SHA256
  
  551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc
- SHA512
  
  9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f
- SSDEEP
  
  192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  fe24766ba314f620d57d0cf7339103c0
- SHA1
  
  8641545f03f03ff07485d6ec4d7b41cbb898c269
- SHA256
  
  802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd
- SHA512
  
  60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3
- SSDEEP
  
  192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16