7147afef3ab39fcd00054ae2877f5235e970c1f63c6be2cde399236ec0b0963b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

051d719a7b262efe040b3034ad842cf2_JaffaCakes118
Size

111KB
Sample

241001-kq8swsvcmg
MD5

051d719a7b262efe040b3034ad842cf2
SHA1

c831bd0d8840a822cd18c970a89d6e4c2268cf65
SHA256

7147afef3ab39fcd00054ae2877f5235e970c1f63c6be2cde399236ec0b0963b
SHA512

04d7faaaf29b00358ae764c5b1fc130f55279dc797677866e2b31366cfb7abbf5640dfda65be79a402a928510fca9354fb6e4ff681315e8b16127bf6c4baf446
SSDEEP

3072:qd/vyWmJM45NpXH40I3GILoJ/NRtbz1rG8kT7:qXreH40ipoHRtdrnQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  051d719a7b262efe040b3034ad842cf2_JaffaCakes118
- Size
  
  111KB
- MD5
  
  051d719a7b262efe040b3034ad842cf2
- SHA1
  
  c831bd0d8840a822cd18c970a89d6e4c2268cf65
- SHA256
  
  7147afef3ab39fcd00054ae2877f5235e970c1f63c6be2cde399236ec0b0963b
- SHA512
  
  04d7faaaf29b00358ae764c5b1fc130f55279dc797677866e2b31366cfb7abbf5640dfda65be79a402a928510fca9354fb6e4ff681315e8b16127bf6c4baf446
- SSDEEP
  
  3072:qd/vyWmJM45NpXH40I3GILoJ/NRtbz1rG8kT7:qXreH40ipoHRtdrnQ
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  CABviaActiveSync.exe
- Size
  
  16KB
- MD5
  
  594b5b05e9a70b98e4b0cf4191ef8b73
- SHA1
  
  472da26b53b0e500c60f85a6ed9997f4ddb6dd43
- SHA256
  
  db8fa323f5432d1b03481c7ae4f23937d13ab13571f3a53f52bc43590a5413c2
- SHA512
  
  de21f5a76e7bf5338646d7043213ca8f3c36f90541edc08ecee563547e6a2ed97262973ee8b39914cec337a3be4890917461842689ba926b24f297fef3493739
- SSDEEP
  
  384:hLniyYsxbdAZwjIdCvchJ+4D+LRhdQTNU7n:hnRYY7j0CvchJ9Ti
Score

1^/10
behavioral3 behavioral4
- Target
  
  EXTRACT.EXE
- Size
  
  99KB
- MD5
  
  1476c205b7d7abb1237df8d6b50e4647
- SHA1
  
  da5c9f13a44fddf11440b9673ff90ce0ac16f5f5
- SHA256
  
  29757a88462d4b76f140434630d49e4cd2b8a838a4ecb8a4d190b0be86818bb4
- SHA512
  
  649255939f7221a454e0892d601e700f68a12f68d51227edaa0d217588d0fa1b1ed2a8e585b539f80eda6febe442e800de3d94d15458b20550c9573a32162fc6
- SSDEEP
  
  3072:RSNeVGdB9MvMfudf2DnDOug33J5G4HewDCFd:RSNeVOVudfknqugnnGwDC
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Uninstall.exe
- Size
  
  49KB
- MD5
  
  cc6d6711ada7155c539b388dd90cb042
- SHA1
  
  bfc3d693f154e80288e38b5c7078886e2957c9f2
- SHA256
  
  eb3f7fd41a7651a3f3d184f3300a9d80f2ed373650806af2ef291ee614b3fab1
- SHA512
  
  e288ecb8f220254b1c2efe254b86cfbc6f528dfd741722bcf2cd7b586566f89f6edda5ae13374906202832e2db9b27eb948a5dc294bb614325144c232e759a74
- SSDEEP
  
  768:+/UpAHiGjRQ1kkjH918xnyzOp7OssT1pF/O71mJ/Mgd2iZQAm6kRRS+NoJRnKeY/:qUeHiWRgkkjH8nyWmJUgdLeAyN9J
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8