0ba0b0e5c14f29977e4c87b2734e04c525a16798aa26d5ec88961fd8702fa88f | Triage

Sharing

General

Target

0d38197392083c0dbfd0e8638c2d734c_JaffaCakes118
Size

9.8MB
Sample

241003-bev8zswejj
MD5

0d38197392083c0dbfd0e8638c2d734c
SHA1

48124db883c85afe801ebae5867c4f6fcbd717d7
SHA256

0ba0b0e5c14f29977e4c87b2734e04c525a16798aa26d5ec88961fd8702fa88f
SHA512

d6669fb1ca8287e8e35d67f8797a510d4a092f34e9a22417525450be7863fabe058fe495a4bdd126439bde2846415b26d4c0aa101a61fc419d009653327cdfbd
SSDEEP

196608:y9wetgUc8CdjGKYqgQ1U1P0N9dLhmG//m+Liyi5rsFXM5zpsr+:yZ7ga6gQmsd1n2wurqXM5ar+

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  ASYCFILT.DLL
- Size
  
  144KB
- MD5
  
  c89e401800de62e5702e085d898eed20
- SHA1
  
  72fb4f088c6ac02097b55fb267c76fbf5e0fa1f7
- SHA256
  
  de83c9d9203050b40c098e4143ef8f577aa90016c7a64d4f2931b57a4c43e566
- SHA512
  
  70006d70dcb47361ff43e4f7c458655ad2474b70cb917873aa77d2cc06465a68d375d36c494d154a03dbbff891df7dd6cab3d2c7b08e8650b9ff170e30838070
- SSDEEP
  
  3072:h+qD1Cd/Oa5kXFlqkFGr3CAP7LCyInPEggen5Ez:hlCd/OaaFEjCAPKyOE6na
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  COMCAT.DLL
- Size
  
  21KB
- MD5
  
  3b180da2b50b954a55fe37afba58d428
- SHA1
  
  c2a409311853ad4608418e790621f04155e55000
- SHA256
  
  96d04cdfaf4f4d7b8722b139a15074975d4c244302f78034b7be65df1a92fd03
- SHA512
  
  cf94ad749d91169078b8829288a2fc8de86ec2fe83d89dc27d54d03c73c0deca66b5d83abbeaa1ff09d0acac4c4352be6502945b5187ecde952cbb08037d07e8
- SSDEEP
  
  384:23Fob3slaN3oF1fHICOoMzMv/QTIBjDVquODJXsUW7ftWs6:Yo7s28JnOxzMv/QsBjRqugXspd
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  COMDLG32.OCX
- Size
  
  149KB
- MD5
  
  ab412429f1e5fb9708a8cdea07479099
- SHA1
  
  eb49323be4384a0e7e36053f186b305636e82887
- SHA256
  
  e32d8bbe8e6985726742b496520fa47827f3b428648fa1bc34ecffdd9bdac240
- SHA512
  
  f3348dbc3b05d14482250d7c399c00533598973f8e9168b4082ee5cbb81089dfaefcfda5a6a3c9f05b4445d655051b7a5170c57ee32d7a783dc35a75fee41aa9
- SSDEEP
  
  3072:VCslb9HnH/GrQ/qCFyn7dWXSQeRDBIY/OR5JrNo2CocrJbNN6N2TRqEydc:VCsB9Hu9nweRD4JZoDxtRHj
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  ecc7d7f0d3446de36045d1d9e964fafe
- SHA1
  
  da6b0ec081d628c33b150327f3bd16d3b7fa4729
- SHA256
  
  bc58d624ceea02ab086f1cce809c992bf5a7105e88931853317a2f5aa5afd6e4
- SHA512
  
  443de697be9886cd97235e6468f3a7f6bf11612711e54dba31431b0d9418672e1434e839ed50cacf28107f692f0c9d9d2f57d90e3a843d81015d459c180db632
- SSDEEP
  
  24576:s0LiK1d6dxOehwsj5dC33M/jYVRDSfaF0gg1CVGO7oVtNKG:n6dAehwaY19G1u7+Ln
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  MSVBVM60.DLL
- Size
  
  1.3MB
- MD5
  
  f28eb5cbc3ca6d8c787f09f047d1f9c8
- SHA1
  
  70db1fac822974bc9b636a984bcc1da2e67f8de5
- SHA256
  
  3ef32e0152cc3fa07c417e6aadf9ead83a17b5fdee73799044e1bd7564725d6e
- SHA512
  
  84f811f75e9d5143898728d2109b349802a292d4ef2ccae4b4421d20268a33c6ddee9c70e8bdeb474a3ac70307b2554c00ce786ca1f446807610fa2717f3745f
- SSDEEP
  
  24576:jrWIEO0eDfcPOvCOpMEPJonhql5oHS+zh3JajtObuF+T+NUFRjUgIeX40sgdp:jrOuCQhJohq3oHrh3JajtObu2+NUF5Vd
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  MSVCRT.DLL
- Size
  
  272KB
- MD5
  
  0a8e038a03d7e409e5140fc9222af3a8
- SHA1
  
  afc924038bc8364f7816bfd4830b321ec1b78f6a
- SHA256
  
  babbfb63bb9ddd3763a5f528e3c438a590c7cb63d75ac4da7d1cdd0f7a107d0c
- SHA512
  
  4a9cfabb8e45e1b41e80913d956a18405a6d3068930ce59177e2908360ff2e5ff311573fe22e541c65ad3e81991ab9634d81b0c653e2e5ee1eb26bee257cafbb
- SSDEEP
  
  6144:HzKmr0FjgoKL1fpEMhQLT53t+C/23A4hzWoFMWiFaNF7R5LPXSQj3:TKmwFEL1fpEMh8TJt+GIzh5BqQ7
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  OLEAUT32.DLL
- Size
  
  584KB
- MD5
  
  7b156d230278b8c914ef3f4169fec1cc
- SHA1
  
  6b58e20b2538cb308091da838710f6aad933a301
- SHA256
  
  baeb2f7c1b8be56738d34e1d1ddf8e0eebd3a633215dc1575e14656be38b939d
- SHA512
  
  e4ec2bc714069e0a6b56d89b52aabad92e5ba741dc6f26d2fc2d72aa9ad2ec465dea523cccd810331ab78b5fb8a1244b2b521303418ead5bd6be5a58b43794c5
- SSDEEP
  
  12288:HCKynQWKglDhrUtrvT/NInIk4NDXsR6lMlpGz:HGXqB8V6lMlMz
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  OLEPRO32.DLL
- Size
  
  160KB
- MD5
  
  ce0155405ea902797e88b92a78443aeb
- SHA1
  
  8adff69050d14a57d7f553ca8978439af188c192
- SHA256
  
  789c3c45eda1749bd939f4a96616e1e9ef1b7dcc62a2889f65088954c64d0938
- SHA512
  
  3fde09067f9ca8d315de07c8db972f99723ea4c3f997dc58210f9d6565caa9935c79f13e8b2d20adc5609919a381e4c2a90a0b3123a35947997229d7c615e162
- SSDEEP
  
  3072:+VrhrwLXcA2Ha/joWklbo/Acjwm4AaW7zozn/zgOh0Z76:fklbsqmyWnoz/P
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  OWC11.DLL
- Size
  
  7.7MB
- MD5
  
  ca8f638e4b516e220b189b2a54b5aa2a
- SHA1
  
  d03a8bb4eb4c901a005d73f6a10245c862897cf5
- SHA256
  
  0059412e7cd52c46da40dbba5e2a3a96f4a9cb5252d2037a4d38ea00a35b7cc6
- SHA512
  
  accfde3c317a8b646516903724ce2c047a8f96cdd252acd12125e9e4e62f03edd4fc0840eb204f9834ccfdc25e08a94523d7e6d47a2f2b1939ba1bc7eabfed2c
- SSDEEP
  
  196608:fKYfEF6KtGng+9BXvkirMxCVZlyRc0WCS1ekA2m3:fKYfEF6KtGng0BXsZxCVZARfrjkXU
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  RICHED32.DLL
- Size
  
  170KB
- MD5
  
  6801f45dfac0743d3a0d73b121e261da
- SHA1
  
  d45ca0a162b27f19d1315ddd79bbc0b843307ffa
- SHA256
  
  7102f94a58ba167427c7ec8187d3783eb0a850b20c055832385c7d2c5aeae901
- SHA512
  
  2fe94353b3b3926b7b4a54474a277916e08b3f65823dcfa25b15bc20373803b5693a956cf4833d62a6c020af8137119aad3b500316419a13c4500621f34295fa
- SSDEEP
  
  3072:VLbCtdh5rXc1xlexNbPhp3LkqsBlJdk6pvpAJy8lBqlkBfZV1:VLbCtP5DKxubPbbkJn06OyAIO3
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  RICHTX32.OCX
- Size
  
  207KB
- MD5
  
  045a16822822426c305ea7280270a3d6
- SHA1
  
  43075b6696bb2d2f298f263971d4d3e48aa4f561
- SHA256
  
  318cc48cbcfaba9592956e4298886823cc5f37626c770d6dadbcd224849680c5
- SHA512
  
  5a042ff0a05421fb01e0a95a8b62f3ce81f90330daed78f09c7d5d2abcb822a2fe99d00494c3ddd96226287fae51367e264b48b2831a8c080916ce18c0a675fa
- SSDEEP
  
  6144:hTr80hTueZXFOTSqP0xqRBTdtmFdCJErRj6/uE:NhzZVOTSqcxqRBKFdF6/uE
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  SETUP1.EXE
- Size
  
  244KB
- MD5
  
  c6264b17629f6f9f0bd2ba7671ceff69
- SHA1
  
  67a6b419740c1d6b780789bffcfcc83129e36d1b
- SHA256
  
  5b82b27da9bbaae1abc32095942c60017b275e002cbb2c0cb44580131f4789b4
- SHA512
  
  7ebab7444620146a065b520491faea53612d627ae85dfb4bd92201864e5cdad55fe5c94ae66a8c7a3bf7950a60c54c20b9291a70f3801e937711f1b596543f1d
- SSDEEP
  
  6144:ss+MamfDqaBv6xdnG6+hdbHSHqFJJe4XZ1v:sC1H+NG6+h537n
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  ST6UNST.EXE
- Size
  
  71KB
- MD5
  
  ea4e2ba0d35eeadee23b0c1397c71367
- SHA1
  
  e715ddf7c568a745e7990534f06460556e20b3ed
- SHA256
  
  dafb5d89135fa565080c9c6beafbdeb7611089e946a520001a7ef02facb002d3
- SHA512
  
  64b1521c1d03683479f41f27b5a4feb4a703b70f8db45080d74d14ac1747c8fbd393adfba3b8c96748f8bc6a4bfbce00d12c44ebc1bb7285d5cf7528f5c7ab86
- SSDEEP
  
  1536:JGTJG3gY1xqNUi8tUUoC2RjJ/j8a6tgy7/G:09Sx8UHUUoCcj5ktge/G
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  STDOLE2.TLB
- Size
  
  17KB
- MD5
  
  1b02577f0addea32eb02a50d4a4cdd1e
- SHA1
  
  36f701ccec78a5d218fea23fd05351890f14cf7d
- SHA256
  
  6ea525bface5467c1045c3708f339a4b92a3a273f70656e061c7f7322c56d667
- SHA512
  
  87fd4aa5158d09eb97b6131e651db2a4761546907a960af7792f8e95947c0a825e84f88eccf42ec896ff5bb2bbc461488b898d5f1bd853847317493c44b330c9
- SSDEEP
  
  384:cogoEvM/uFrR+X6QNn1pcJIrWocDGWct:cogoEvM0rgqQNn3
Score

1^/10
behavioral27 behavioral28
- Target
  
  StrategicPlanningFramework.exe
- Size
  
  5.1MB
- MD5
  
  4dcbff05d511fdb5afac3bcafb11d181
- SHA1
  
  3444a992d73accd2530699a5f2608565ff17a6a7
- SHA256
  
  96e402b9f0e94f6b6668af3781c2deec863329a03f67e155d710bb219ec8cb92
- SHA512
  
  4dff887b7b73c251c50829611aa6762c9dbb5ba7ce1fd5112a8e793115bd79e1d715fae11f62953c1531ecce6275aa931c603701f74e3667a018ec3277b65e7f
- SSDEEP
  
  98304:/XFhi4mgGlkNpNPjrluagCRihOqTHwOXipOVGwB1nKXtbbPxzrpoe:/Xm4mBaNLPVuDCRYOGDipOVGwB1nKXtD
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  Tabctl32.ocx
- Size
  
  218KB
- MD5
  
  dc925b6d77ba9ecb532e2f6750be943b
- SHA1
  
  f71215e701401f0dd6fe143e3a630b2e168a4fac
- SHA256
  
  d10a197fd53e65dc910ca4aed86cb674c613ff14ce6436d1a445bb27a7a499e0
- SHA512
  
  ee9c40e695a29de7e7b8a9fe1ca01ebba9a8bdc199d46d98c71a4e3ecfec566f2fc31300a5e9867e8c791b15ac3ebec076f0710e0f6eec6c3fdea3bde37ab171
- SSDEEP
  
  3072:UYMPPBTUImgJO39KAVpfm+IoXgRpiAcahtplVEkpg3//WttZDbtUSREm/UmL/8N:FC9UvEONTmFkgRpiANhtpliGtXDtR4N
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32