0ca066f7c7593213a2d2460e4e2d1e047be07bee9b81b4285105f35e6757fdb5 | Triage

Sharing

General

Target

104f03b8c2a1c3fef07ad40252eabaf0_JaffaCakes118
Size

209KB
Sample

241003-ymnkfaxbra
MD5

104f03b8c2a1c3fef07ad40252eabaf0
SHA1

0bb24d93dfa55faae4f638b0afe7baa07060a821
SHA256

0ca066f7c7593213a2d2460e4e2d1e047be07bee9b81b4285105f35e6757fdb5
SHA512

ddff96e38d191f2e8584e62d47b80fa46f4c0087cfe9c5aa758ebb96a22e674bdbad3b90435de50a14612fdf29d4198c599d2f30bcbc811d4a6df151769101c4
SSDEEP

6144:8e34jgKL+k+imkXFjMvKf0XFwS4+gGlYqPsu4uO:Sh+7oSvKmFwS4csL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  104f03b8c2a1c3fef07ad40252eabaf0_JaffaCakes118
- Size
  
  209KB
- MD5
  
  104f03b8c2a1c3fef07ad40252eabaf0
- SHA1
  
  0bb24d93dfa55faae4f638b0afe7baa07060a821
- SHA256
  
  0ca066f7c7593213a2d2460e4e2d1e047be07bee9b81b4285105f35e6757fdb5
- SHA512
  
  ddff96e38d191f2e8584e62d47b80fa46f4c0087cfe9c5aa758ebb96a22e674bdbad3b90435de50a14612fdf29d4198c599d2f30bcbc811d4a6df151769101c4
- SSDEEP
  
  6144:8e34jgKL+k+imkXFjMvKf0XFwS4+gGlYqPsu4uO:Sh+7oSvKmFwS4csL
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  20KB
- MD5
  
  e541458cfe66ef95ffbea40eaaa07289
- SHA1
  
  caec1233f841ee72004231a3027b13cdeb13274c
- SHA256
  
  3bce87b66d9272c82421920c34b0216e12c57a437d1955c36f23c74c1a01d420
- SHA512
  
  0bf6313e4cb7bbdcfba828fb791540b630adc58c43aa4b5ba77790367d0f34f76077cd84cc62e2a2c98c788a88547f32a11e549873d172c5aa2753124847cd0c
- SSDEEP
  
  384:b1JO6XgZkjxm+NpXaWgzxUX//EUhU7ya4LQ0Ac9khYLMkIX0+GBty3Sm0:b+6Xgsm+NpKWgzxUXnEUhUua4Li70
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/mconduitinstaller.exe
- Size
  
  79KB
- MD5
  
  446623160a87bcb075c3b9a3c8827ca9
- SHA1
  
  3afb53ddfc81a47e4335b232481f8d3a7469b1e5
- SHA256
  
  7df4c34b251c34f098d75248d779b1aa5e2a2b08625ada510392a5f363cb15ba
- SHA512
  
  5e883d4fc8f6bc25a46b17f081028b3f1964b45c6ebfd907c8fd9d9f36fe0fec25cff2859c8a905b0aac2c863898af88bbcb35e3291f7e453c53be5678d75f16
- SSDEEP
  
  1536:SGarUa6LowvuhdNYh2Gf9rg6hzGPnGCw1azQlnZj5svPRSEvrGpwGgxh:s5BuYAVrgUCPnGClzKnZW5SEvrGmZxh
Score

7^/10

discovery
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/mism.exe
- Size
  
  79KB
- MD5
  
  cb7d8f3ee1cdb0b87f2e82425f429096
- SHA1
  
  3e37507bbd4c0287689634b2cdd77e59679681af
- SHA256
  
  da7802010b8a3e1e1d34c6bb735c397d22d65eae71dcb41e6f960c8eb61860ab
- SHA512
  
  4f7b59da39fad51da5acaf112e98da7f4cec64cccfcdee046ecde6ec701c2573927e3f7ae12f261a4e4a49f0785ac61eafa3bb05258e2175162dc6071365ce0c
- SSDEEP
  
  1536:7GarUa6LowvuhdNYh2Gf9rg6hzGPnFCw1VZj5svPRSEvrGpwGgHCg/k6:h5BuYAVrgUCPnFCKZW5SEvrGmZ9J
Score

7^/10

discovery
- Loads dropped DLL
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10

discovery
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12