9842bab615c26a378b51a464bd2269f4cfab0190d8c4815c4c9d1227536c07c4 | Triage

Sharing

General

Target

083e6b43959b97c33d60abb0c2ed812d_JaffaCakes118
Size

154KB
Sample

241002-bs29fszfnl
MD5

083e6b43959b97c33d60abb0c2ed812d
SHA1

9085d4361eb84a350e57402111066a872e0838cf
SHA256

9842bab615c26a378b51a464bd2269f4cfab0190d8c4815c4c9d1227536c07c4
SHA512

f0f13426b8caae6d063f99fb902bd573377efaab55964380a3ad50426afc349c8e8242847e817ebd88bb4eadec1bc80cb7d8463ed50c99a98a330c422536afb6
SSDEEP

3072:sd/vyWmJF45iAqXJbuVPu2A0Rz10wqUmLve8H2SorT+0:sXa/VuVvA070woeu2SorT+0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  083e6b43959b97c33d60abb0c2ed812d_JaffaCakes118
- Size
  
  154KB
- MD5
  
  083e6b43959b97c33d60abb0c2ed812d
- SHA1
  
  9085d4361eb84a350e57402111066a872e0838cf
- SHA256
  
  9842bab615c26a378b51a464bd2269f4cfab0190d8c4815c4c9d1227536c07c4
- SHA512
  
  f0f13426b8caae6d063f99fb902bd573377efaab55964380a3ad50426afc349c8e8242847e817ebd88bb4eadec1bc80cb7d8463ed50c99a98a330c422536afb6
- SSDEEP
  
  3072:sd/vyWmJF45iAqXJbuVPu2A0Rz10wqUmLve8H2SorT+0:sXa/VuVvA070woeu2SorT+0
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/CyoHashInstallerPlugin.dll
- Size
  
  60KB
- MD5
  
  91fc1af389e51a59f575ebb6565ef496
- SHA1
  
  691ea8af571db68107b88945f889d8c90bc731fb
- SHA256
  
  58ce82cffca14a4ee399bb818e08e42f837ad4060717818f4e73cbb60f71345b
- SHA512
  
  edb17a47df9557a53b93f3ab6977a8ceeae42eb563309b74b251156c753ab97c0ae7bfe25935f642ac939ee0380813612bf6bf104b2ac26c6d5f22f8c9ab262b
- SSDEEP
  
  768:pGVqANVTFhbL9HbbMHU4KojiguX6PVPIaB1:pqqoTMHHKUBxB
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  0bbcbaee7b703ebd55cd8658a0e8dcd3
- SHA1
  
  6ed448b8b67cea36eb45bfbc67fed9a6da9623e4
- SHA256
  
  e67277ecc4f6c7beb3c7e586ce508677269db056c7541eacfecf6c719f559da6
- SHA512
  
  604c524bd00313f6411cc9878d5c9a1db77588049feeb5bb02c971df44f8becbd18d251cc20e551b878173eb2a78be61f31352769597c6334cffc0bc2326b008
- SSDEEP
  
  192:WO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1azgMO:TKAFERdlxhGRYUzqZaz
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  8KB
- MD5
  
  9119c6371994557db43f61887dbec301
- SHA1
  
  f43aa3a2547c61a0f9d6f7e975da0a475f973c28
- SHA256
  
  562e24d6cb190f12ca6f4b2943874fd6a4e434a7fcb6efefc18af66c37aa1acd
- SHA512
  
  efe8fe0ad174edf0301fccbffb820064f0e6dbbda20d4b2107cc937f10ab40d0e5f98c9e91023823f7c50d7e551ba63ffd7953d9e312ff827b4471e3e39c593a
- SSDEEP
  
  96:r55NxaBY5vP/PGfMzqu/ODzNIZhyGE1xQR0r6UHpYkUdiU+:r5gu/AMXUz+ZhtEA0r6UJxUd
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  CyoHash.dll
- Size
  
  136KB
- MD5
  
  625a86db25c13acb01a2fc6e4ee3f1db
- SHA1
  
  581a1c0cab67e5e55fff78100b0189c107d44713
- SHA256
  
  4a28e3d8e01f7b93d8a32c75fd389999d2eca1f7153382e348d7cdb821fe834f
- SHA512
  
  963040ccf344774f7ca38b857df095f4312bebd57c148e87f4d2fbf832493a1bd6ffe40bb2951664d3200d156cd70b9394e3bb1fb0c77ff3b9b4f4b757fee147
- SSDEEP
  
  3072:YsWpnhoj0AausZ7pj39KN4dqM1tMpneEitAbWlePkDS:QoVo0tMHM0C9V
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  Uninstall.exe
- Size
  
  61KB
- MD5
  
  8e546ed8df25ae2dcd9ad6849757684d
- SHA1
  
  1641fb8b6b208e8d677210a63315f5d48b9867f5
- SHA256
  
  f37191b22289a4a2993f76c45047a75134dcd6c6811dd51d347720bf4f6ac180
- SHA512
  
  27c3b17ec0ff0777939d24ceb599f8db60ead250d777befd5dc00da2925413cb84bf7bfcf4a34199e2da4773fd2ec65b69318342e517de91b33b1f329094ac96
- SSDEEP
  
  1536:sUeHiWRgkkjH8nyWmJ5gdLeAyNtrUlMRQTZU:sd/vyWmJ5ceAUUiO6
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  0bbcbaee7b703ebd55cd8658a0e8dcd3
- SHA1
  
  6ed448b8b67cea36eb45bfbc67fed9a6da9623e4
- SHA256
  
  e67277ecc4f6c7beb3c7e586ce508677269db056c7541eacfecf6c719f559da6
- SHA512
  
  604c524bd00313f6411cc9878d5c9a1db77588049feeb5bb02c971df44f8becbd18d251cc20e551b878173eb2a78be61f31352769597c6334cffc0bc2326b008
- SSDEEP
  
  192:WO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1azgMO:TKAFERdlxhGRYUzqZaz
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  8KB
- MD5
  
  9119c6371994557db43f61887dbec301
- SHA1
  
  f43aa3a2547c61a0f9d6f7e975da0a475f973c28
- SHA256
  
  562e24d6cb190f12ca6f4b2943874fd6a4e434a7fcb6efefc18af66c37aa1acd
- SHA512
  
  efe8fe0ad174edf0301fccbffb820064f0e6dbbda20d4b2107cc937f10ab40d0e5f98c9e91023823f7c50d7e551ba63ffd7953d9e312ff827b4471e3e39c593a
- SSDEEP
  
  96:r55NxaBY5vP/PGfMzqu/ODzNIZhyGE1xQR0r6UHpYkUdiU+:r5gu/AMXUz+ZhtEA0r6UJxUd
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16