6db47a99fb23ba1a3972870d8cc74a2799fc4dbd3ff68a8579ca351350fed070 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03d28f4c03441f12bc2dcd183652779b_JaffaCakes118
Size

132KB
Sample

241001-a91lhssgnj
MD5

03d28f4c03441f12bc2dcd183652779b
SHA1

c87ebc340ceaa1de9b32d901037889fe05f80b05
SHA256

6db47a99fb23ba1a3972870d8cc74a2799fc4dbd3ff68a8579ca351350fed070
SHA512

9d75dda43f3a761e3aa31c612ba0ff20e76341e333d74fd7a778bca73b7c047a53a21a1edeaaf27019c3c27421a8948d1fc40582b20a0eaa0b59ea5f22733978
SSDEEP

1536:Xgp2ZUpdi3qWBaai1BcVW8hmuYcTLnp4L9YFnudxzY0peOOidQZCR3Cgc0mWj9no:XgQWiamTABcfmYLWYFurY1YnRgglV/+f

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  03d28f4c03441f12bc2dcd183652779b_JaffaCakes118
- Size
  
  132KB
- MD5
  
  03d28f4c03441f12bc2dcd183652779b
- SHA1
  
  c87ebc340ceaa1de9b32d901037889fe05f80b05
- SHA256
  
  6db47a99fb23ba1a3972870d8cc74a2799fc4dbd3ff68a8579ca351350fed070
- SHA512
  
  9d75dda43f3a761e3aa31c612ba0ff20e76341e333d74fd7a778bca73b7c047a53a21a1edeaaf27019c3c27421a8948d1fc40582b20a0eaa0b59ea5f22733978
- SSDEEP
  
  1536:Xgp2ZUpdi3qWBaai1BcVW8hmuYcTLnp4L9YFnudxzY0peOOidQZCR3Cgc0mWj9no:XgQWiamTABcfmYLWYFurY1YnRgglV/+f
Score

7^/10

discovery upx
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  31KB
- MD5
  
  83cd62eab980e3d64c131799608c8371
- SHA1
  
  5b57a6842a154997e31fab573c5754b358f5dd1c
- SHA256
  
  a6122e80f1c51dc72770b4f56c7c482f7a9571143fbf83b19c4d141d0cb19294
- SHA512
  
  91cfbcc125600ec341f5571dcf1e4a814cf7673f82cf42f32155bd54791bbf32619f2bb14ae871d7996e9ddecdfcc5db40caa0979d6dfba3e73cfe8e69c163c9
- SSDEEP
  
  384:1NWlNdqdAnhTKMLE2oIM05fnqCiWg3Yy9kflIinokN:1NWtqdihTKCldkYwkdpnoy
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  32KB
- MD5
  
  83142eac84475f4ca889c73f10d9c179
- SHA1
  
  dbe43c0de8ef881466bd74861b2e5b17598b5ce8
- SHA256
  
  ae2f1658656e554f37e6eac896475a3862841a18ffc6fad2754e2d3525770729
- SHA512
  
  1c66eab21f0c9e0b99ecc3844516a6978f52e0c7f489405a427532ecbe78947c37dac5b4c8b722cc8bc1edfb74ba4824519d56099e587e754e5c668701e83bd1
- SSDEEP
  
  384:3rYz6grZodORNWATt4TBmlk5ooyzFh7BukAUdJoUtSOSR:3QggDWATWNCFh7BNddJoxO+
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8