74be6c40d1f22f291dd504e97570c7c678ce9e46e32dfd94c94126de75ae21cd | Triage

Sharing

General

Target

098ac0abecc4ef0b1523053dda3cd4dd_JaffaCakes118
Size

1.6MB
Sample

241002-jawyqaxgnf
MD5

098ac0abecc4ef0b1523053dda3cd4dd
SHA1

d85fbf81cbe371f80a50966cf509b732e7d0fa36
SHA256

74be6c40d1f22f291dd504e97570c7c678ce9e46e32dfd94c94126de75ae21cd
SHA512

e2aa57a1c483ac726527acc35ae82727839600d1c60be63c7cc01337427e2e90652020126fb23f834256416113ad5fdf4dba48df75f62163c0473458851a20ce
SSDEEP

24576:2c5YG52ob3weTAASN0mX/odwVbYM63xSe1QvyVkEwMD8FumJrVK25YadBP4l6:2UjTwe8Ag0mgdw6Se1QvyVvwr9yaXP4M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  098ac0abecc4ef0b1523053dda3cd4dd_JaffaCakes118
- Size
  
  1.6MB
- MD5
  
  098ac0abecc4ef0b1523053dda3cd4dd
- SHA1
  
  d85fbf81cbe371f80a50966cf509b732e7d0fa36
- SHA256
  
  74be6c40d1f22f291dd504e97570c7c678ce9e46e32dfd94c94126de75ae21cd
- SHA512
  
  e2aa57a1c483ac726527acc35ae82727839600d1c60be63c7cc01337427e2e90652020126fb23f834256416113ad5fdf4dba48df75f62163c0473458851a20ce
- SSDEEP
  
  24576:2c5YG52ob3weTAASN0mX/odwVbYM63xSe1QvyVkEwMD8FumJrVK25YadBP4l6:2UjTwe8Ag0mgdw6Se1QvyVvwr9yaXP4M
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  296a5f3179fa8d7a7a855eaf696ede44
- SHA1
  
  57aa5b71553ed282dd22c768e039a187f5c13f63
- SHA256
  
  ee0ad77e681c4d0fdf1d67df5f4ca03e6bdd8e3b05dfb47a83ad5c733ed62960
- SHA512
  
  bc527d1485f468e8d098057e0e38e8cb7aa6eb64d4ca30927b99b1552a3177b132b989015ff95bdf2ca046bf11a54b4b456f51e024fbc734fbb548c3499e53f6
- SSDEEP
  
  192:r6JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTyK72dwF7dBdcQOz:r6JaVh4I5rpPbTy+BdhO
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  86b5a07a43b7cbc5c49263b8d974b736
- SHA1
  
  78388286a311810d812c13d87dea12d581713e60
- SHA256
  
  5897fb00be38e502fb5dfd047d97e5e4da6387a7a6259633dc31c2427612901b
- SHA512
  
  dcbe379c28302bb3472339cd24949b16548fa0003882a920df6839078cc7b2563f058a0524bf25df0a5ec8b08e302ebc9e646033109958669d8af883af959ffe
- SSDEEP
  
  192:JO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1a+gMO:cKAFERdlxhGRYUzqZa+
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/exdll.dll
- Size
  
  78KB
- MD5
  
  52923292f07cba4f62d978b4a4092768
- SHA1
  
  5d7fa994bffa6c0d26c6fbc7fa46ec14053aa13a
- SHA256
  
  ea81b0c401a3c2399143578eb1ba67d412faa38173ad0d56f38a30014b464eac
- SHA512
  
  e10e279eb06767eb0e501574041f5f0ceb0dd1953becff71e473e30b722fe19bf888be65712edd9e303eaf6f4ca84d820f1890329b9e1172178b877aa756279b
- SSDEEP
  
  1536:kMof9dO/p22tC+oJcbr2xZIvcOBNh2aFad5JC1uxaz4qGulA:Ci/p22tD/r26wztavGulA
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  AutoUpdate.dll
- Size
  
  220KB
- MD5
  
  99ab06b12d183049921f4d3f4d78bb1a
- SHA1
  
  05dfbabe1617b10d3e3aab39423d9e56afe4da54
- SHA256
  
  85d8583bb740820fd6c1daba6e739b866248d456c7af4fbc486586c6ab7b5ac5
- SHA512
  
  27fe0d187fab07a547d29a8f7e6fb6a5cd4802295e6ced690303c63b88ae118a0519cee977a6ffefc342782aab50de530711e72496252f9eaa1e2ded6776f342
- SSDEEP
  
  3072:zuWY8aNwojD+2R92TFBpqtcS9YuypCrI7zzXLdHkvzL5+gMOWlvZeF:qWvojXR9GgtU7HiJ+8IU
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  CaiHong.dll
- Size
  
  748KB
- MD5
  
  e9b2fc0c4c0900d83d8a39f2e2c1c469
- SHA1
  
  04c5baf11d8a599167071e8c57b0a4d02c9c6898
- SHA256
  
  9f65e9659a271cbc65bc7c690fa9bd36a4e3c254bf4d7275376598d5acd07741
- SHA512
  
  f8c6d95a4d11f87b7aa2ef1dfeed42d04c60ecc401b4bee9eff11d489a66416fa189471505a6a09646763be9f9ed2d20c39ac2a3a4e1ee0d961d680d4c2f9699
- SSDEEP
  
  12288:Ee+nebgoM9l6kPLeKioHMCZpWcU0JVas6bKiZXbfoPBjYKppppppppyppVppppps:dMlgGWJjKiZXbfCVGS
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  CaiHong.exe
- Size
  
  56KB
- MD5
  
  9397130ef3120719897442885ee919fa
- SHA1
  
  515e10678e0e14fbc9a6e2b8df645523302cf9e3
- SHA256
  
  bf7d61483a892cc94d7331e486a7d22d43aa92f1d0ce37166ec5cd04c6f80d35
- SHA512
  
  c827ca1351a33c1b6cec7a650617fad4ef68a49eda86156bad025f2e4450c5ab639016cf8efdc8a57831e354b99a1361329a64c812297cd7bc25088ae573bb28
- SSDEEP
  
  768:l91lICxrKT/JdRzxkwdSLJx96hOQZ+QJleW3RcvvuvjA:l9jIkrkdRzx1dSLJxv8lD3RcvvuvjA
Score

7^/10

discovery
- Loads dropped DLL
behavioral13 behavioral14
- Target
  
  Reporter.dll
- Size
  
  108KB
- MD5
  
  aed9e86ddfcd17afe1a68c0e5ad757b1
- SHA1
  
  9c85ff89219e2423965a881b3332437ab131b3fe
- SHA256
  
  37bdf9b24982e1a49924b74bb7ae7ff9e4cbe16ba71746e8c7ea6d7a4116ac18
- SHA512
  
  c67b4335c0281e6581f3365a2ba26fbcc1b5a5f33bbaca2eb4e0127451572545d4471e0f930d09de17949468d623d9533cd691758714f60e6b9cc88e617afce5
- SSDEEP
  
  1536:J8zmni+1w+FcoUgIPN0kfafr6L+Ql8pBOOVv8A70mETjFnnaIkK4b3lcM3+:Fi+1w+FqgIRSfWL+QdFaIJ4zlcT
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  msimg32.dll
- Size
  
  44KB
- MD5
  
  02d6878debabfdee8dbc676b0a6b5582
- SHA1
  
  6c5782c6509f4369cd68082a68be21f4e50593c8
- SHA256
  
  95484c47adb7b1140ca3fde553f7355a0cd2dbbe2240fa160e957c8d0f3105ca
- SHA512
  
  31a47c6f5864e65f9f95b070e3d5239f9dbc5737619e14e94c596d7014c18000b5cde49a0c1d969f28d7558a4e2e20c0375a42d639a25b4a53a2f3a3915cdae8
- SSDEEP
  
  768:JJ1fMnnWZr71ikMoU+2/PLuEjSK1qPyt4h8UEDo:JLfMWnQoU+EPLtjSK1qPNGDo
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  uninstall.exe
- Size
  
  117KB
- MD5
  
  a224dbc05d9558e4ff2dfe4d46a76e94
- SHA1
  
  8dec99fedd8379fa1d8dc659324e3bf8c6b757d4
- SHA256
  
  42a957607dcfd5d29ea81fb3a53959338d866384eabb96cab345ce8b08da5c98
- SHA512
  
  21ee820b0f61108d31717df7e2be7810c6d25837b20a74d38340d1e4d7ad15e726f31c67ef820d6f08c4cbfa1290c46fb4af5b6089b9f2566ae981e10d48b3ff
- SSDEEP
  
  1536:HjmS7uQiR7abLJqiX0DImJfQcREYRNAU5xSgiZ9tROEt7mfo3gOj8t1I2rotrXHk:HjhhbyDImJiq+pROc7Xp8t1KE
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  296a5f3179fa8d7a7a855eaf696ede44
- SHA1
  
  57aa5b71553ed282dd22c768e039a187f5c13f63
- SHA256
  
  ee0ad77e681c4d0fdf1d67df5f4ca03e6bdd8e3b05dfb47a83ad5c733ed62960
- SHA512
  
  bc527d1485f468e8d098057e0e38e8cb7aa6eb64d4ca30927b99b1552a3177b132b989015ff95bdf2ca046bf11a54b4b456f51e024fbc734fbb548c3499e53f6
- SSDEEP
  
  192:r6JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTyK72dwF7dBdcQOz:r6JaVh4I5rpPbTy+BdhO
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/exdll.dll
- Size
  
  78KB
- MD5
  
  52923292f07cba4f62d978b4a4092768
- SHA1
  
  5d7fa994bffa6c0d26c6fbc7fa46ec14053aa13a
- SHA256
  
  ea81b0c401a3c2399143578eb1ba67d412faa38173ad0d56f38a30014b464eac
- SHA512
  
  e10e279eb06767eb0e501574041f5f0ceb0dd1953becff71e473e30b722fe19bf888be65712edd9e303eaf6f4ca84d820f1890329b9e1172178b877aa756279b
- SSDEEP
  
  1536:kMof9dO/p22tC+oJcbr2xZIvcOBNh2aFad5JC1uxaz4qGulA:Ci/p22tD/r26wztavGulA
Score

3^/10

discovery
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24