a5b800ea2f006739034f26dd01e895697bbe4fd7482038ee61c6fc73e2659228 | Triage

Sharing

General

Target

03accf5514141164e8a50f4febd5ab32_JaffaCakes118
Size

989KB
Sample

240930-3xzgxaverf
MD5

03accf5514141164e8a50f4febd5ab32
SHA1

cc9b772b0f552c8cfe6e469200d3bb26a90a540c
SHA256

a5b800ea2f006739034f26dd01e895697bbe4fd7482038ee61c6fc73e2659228
SHA512

e6a53df6c77ce928a0d8d5594c0c317474ef6df80b1c63299fb38ee393b4518a7a8de76f89ddd9e822c34954bc5ce41d4e50d0974bf4b33b08cd9d5f4dc88fdb
SSDEEP

24576:jonZJkWdUKsnmvfbWrCSTT7r3WN5b8yZBaWIFE2Ws:sJLLOmXbWrCSnn45bFU

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  03accf5514141164e8a50f4febd5ab32_JaffaCakes118
- Size
  
  989KB
- MD5
  
  03accf5514141164e8a50f4febd5ab32
- SHA1
  
  cc9b772b0f552c8cfe6e469200d3bb26a90a540c
- SHA256
  
  a5b800ea2f006739034f26dd01e895697bbe4fd7482038ee61c6fc73e2659228
- SHA512
  
  e6a53df6c77ce928a0d8d5594c0c317474ef6df80b1c63299fb38ee393b4518a7a8de76f89ddd9e822c34954bc5ce41d4e50d0974bf4b33b08cd9d5f4dc88fdb
- SSDEEP
  
  24576:jonZJkWdUKsnmvfbWrCSTT7r3WN5b8yZBaWIFE2Ws:sJLLOmXbWrCSnn45bFU
Score

7^/10

aspackv2 discovery
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  1d5c649dde35003a618b9679d5d71b92
- SHA1
  
  0409bbab3ab34f8c01289cdd847b4d1a32d05b18
- SHA256
  
  0f4d3cee24e3f310fa804983c931d3628613988a24f0be7854f63a9309b8e45f
- SHA512
  
  b432ebcc52905662d61a3f17e08e209a3f9d836a9071b3b5e80070af7ebcf34cf66c44426dda041c2a258fda4787e5692e2b35acbcd73288fb84fe3c977bbfd9
- SSDEEP
  
  384:pKlm7i+c3QW6ckPhyDEaLnA2bbBBIXwZ:8qi8BcyhEhLBbbTI
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  DriverGenius.exe
- Size
  
  770KB
- MD5
  
  740e300006a510f82add5f49c1a12ab5
- SHA1
  
  5ed94f2271d510f5861f766770129ca630ba4f2f
- SHA256
  
  b9195eb8127a72e98d86dfc898faba323f225beef3e5803602198cd0410e4119
- SHA512
  
  43a3e061b0313ec3329ffcb22dc6de839acadafae55b2f84d171d3d3ac7a9e9739da702755b62f753ec3259d6d2b18a4d8d982253cc41d12546089a5d202e1f6
- SSDEEP
  
  24576:fizgPFWiqrVEbHobIj+ud0BirykYcQZC:fHzEVojPG/kbQ
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  XceedZip.dll
- Size
  
  212KB
- MD5
  
  053428bf756a64ad57b253fe0e4773b4
- SHA1
  
  0834e785be130dbaf70cbf5b2f6ff9884efd5276
- SHA256
  
  924d66e6a440be9c78ce020540d4bb37454b4f6a7d8a2e63749ada1d990d6cfc
- SHA512
  
  30f35064adb0dbf9e5d7b02e6fca9d9516ea26dd4705b2e7cb2d8e29dbc47d4398a32728034640167cceda97f27c1470d7cf06052b80c04348289c087b84bcb5
- SSDEEP
  
  6144:TagvBl4EpkprtHMlUvw3tL1I0y0hxpM8QZ:TrvNQtsUw3tL1ZjG
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discovery

behavioral2

aspackv2discovery

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8