9e359e9b4ec8624844807156c7896649239f34f1d3220cddf7a569743f764381 | Triage

Sharing

General

Target

07ed1b17e8688c2b6516fd01737c78de_JaffaCakes118
Size

268KB
Sample

241001-3vsxcawhkl
MD5

07ed1b17e8688c2b6516fd01737c78de
SHA1

1975bc45de6ec92d42ec82dc0e0386aa0f67e52a
SHA256

9e359e9b4ec8624844807156c7896649239f34f1d3220cddf7a569743f764381
SHA512

23f22bdb98a169d1595afc2085551b536342cbdcae7b98b8a18b86b8b77b06fe49e2c3e08633f1d6637351cbdcef48ab86f96f63f52bc2e878b96d8e21bf6563
SSDEEP

6144:oXVM0VHWskghnZNX56mzcInrdVryWxitMMw2DYmIEr:kMDsZ556mHzPx/eDYm9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  07ed1b17e8688c2b6516fd01737c78de_JaffaCakes118
- Size
  
  268KB
- MD5
  
  07ed1b17e8688c2b6516fd01737c78de
- SHA1
  
  1975bc45de6ec92d42ec82dc0e0386aa0f67e52a
- SHA256
  
  9e359e9b4ec8624844807156c7896649239f34f1d3220cddf7a569743f764381
- SHA512
  
  23f22bdb98a169d1595afc2085551b536342cbdcae7b98b8a18b86b8b77b06fe49e2c3e08633f1d6637351cbdcef48ab86f96f63f52bc2e878b96d8e21bf6563
- SSDEEP
  
  6144:oXVM0VHWskghnZNX56mzcInrdVryWxitMMw2DYmIEr:kMDsZ556mHzPx/eDYm9
Score

7^/10

discovery
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/DBCount.dll
- Size
  
  92KB
- MD5
  
  523c8f7a466a7ab488615c26f972aa43
- SHA1
  
  de7cee6f1f7a5dcc413fddbb939c844a04c0631c
- SHA256
  
  343ce0e3713a74f4ee80315e8f03641f44a3328b1bb61ed12157d69dad5a4f34
- SHA512
  
  bea9486209e0d4ecc851ab8b1cbd68a1bd0a6067b6302c6c7aa9e3fa546940f6f78f4c96e0c324946eddcd67e6f20ccd99375dc4b6ed64df38da6676bf60a351
- SSDEEP
  
  1536:GTX0tpof32T8X29HBIj3ggjUzktWa5tMOHrtX1o29ArO:GTX0tpuB29HBIj3gpzkgMtMOLtFhir
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/DLLWebCount.dll
- Size
  
  28KB
- MD5
  
  3d320f250297fe1dd1ddc350fa154b3b
- SHA1
  
  9236e354d2fe2b9f25a36f1ba686f1f2785e0b26
- SHA256
  
  f1ed5586759eaa6e5edf92bc589b0812620a3d48db3724c833b1fd9ea6c837bb
- SHA512
  
  8e259f6025080180fedcf13b1493910c20242d02c1776a84a79c8ff1aba00ca64873b251578000867bbcd129c46503470e364817afa267bb631e0d47ef31366a
- SSDEEP
  
  96:j4pe13nQHmwy5PFlufG/cg6TGkB4iuGBudGax+suQHV:j4I1XZwy5NbgB5NYdbX1
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  3809b1424d53ccb427c88cabab8b5f94
- SHA1
  
  bc74d911216f32a9ca05c0d9b61a2aecfc0d1c0e
- SHA256
  
  426efd56da4014f12ec8ee2e268f86b848bbca776333d55482cb3eb71c744088
- SHA512
  
  626a1c5edd86a71579e42bac8df479184515e6796fa21cb4fad6731bb775641d25f8eb8e86b939b9db9099453e85c572c9ea7897339a3879a1b672bc9226fcee
- SSDEEP
  
  192:i6JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxT7K72dwF7dBdcQOz:i6JaVh4I5rpPbT7+BdhO
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/Math.dll
- Size
  
  66KB
- MD5
  
  468914ab4ea3afc6fda29031c758394e
- SHA1
  
  d3b632778a03567efa761401151bfe80d0fe956c
- SHA256
  
  8a8d78657f0f6b44f18b16e7eea3e62eef6720e04cd2efc820d62bbe987afac1
- SHA512
  
  0b3df17a3a17a82ba7092ff384c7d820d9f1103fcfa732fb399cf0ff065ec6913a73bea433e19ad787bccf272059e39d196322445d9a6327bb25738f343926ce
- SSDEEP
  
  1536:zPyr/G6SdHg4amq2MwtmIuqFVxL9NvImlRo:z6AHg6bH5lq
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/SelfDelete.dll
- Size
  
  24KB
- MD5
  
  7bf1bd7661385621c7908e36958f582e
- SHA1
  
  43242d7731c097e95fb96753c8262609ff929410
- SHA256
  
  c0ad2c13d48c9fe62f898da822a5f08be3bf6c4e2c1c7ffdf7634f2ca4a8859e
- SHA512
  
  8317af5cc3ac802eb095f3fa8cc71daa1265ca58fead031c07872f3d4bb07663a7002ae734fad392a7617f0923fe0caf1f54ed55afdf8516a6a08e202d86fa7f
- SSDEEP
  
  96:1dIrJYYrzPpqAAZ9sNIaI2y9WulXEGNRrG:nuYATpq/viyYuEYRr
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  32465a07028b927b22c38e642c2cb836
- SHA1
  
  309cac412b2ecf6a36f6e989c828afcdd8c7a6e4
- SHA256
  
  eda545d4dcb37098a90fce9692d5094bb56897f04eff6d40e3dedd122a4d1292
- SHA512
  
  9d886a722bbbb5d8d77e97d256057fe685f1932042257a8382e13548fe835d01c64de65e2b5ad2c2ff99692b14c924e6ddb84797f6224f1772e8699b421e6aff
- SSDEEP
  
  192:gO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1axgMO:ZKAFERdlxhGRYUzqZax
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  tregeury.exe
- Size
  
  352KB
- MD5
  
  3aa40d943e58e608e0af1fb7ae9fd2b7
- SHA1
  
  4dfae7e0d4043e11f76969c4527718acaeedef17
- SHA256
  
  1caee95f111bf433a04eda26849fc12a2b65d268fc889a9a7b9836d8a2978ca4
- SHA512
  
  611e3f45d9b0dca6385a380f0f972969038847f4be8b18afe821bd5d4928357a27a06a61b226448a40790743e44b76dcce473142841a30080a786556b74f1d91
- SSDEEP
  
  6144:MNv3enm1SULJ5MyBXr+bNiCHUYnq5cZjrkQmT6O85EPp:MN9HJyyl4NBUY4IQeEPp
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16