cf90f5af2f0e3573b89378d5204d1138b984c0426843276e82ea4787767e0ba2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12fb71df60f2230e65b2c99ca8e3cca2_JaffaCakes118
Size

108KB
Sample

241004-ml8y7stcjg
MD5

12fb71df60f2230e65b2c99ca8e3cca2
SHA1

3c47203a2753a571fb4c21ee6ca603a1d2a05f41
SHA256

cf90f5af2f0e3573b89378d5204d1138b984c0426843276e82ea4787767e0ba2
SHA512

1359ac481b584bdc526bdcc43ebe8fb061b8d85eea0dd5c4cb60ef64e4727d05ba252286ec6bf7901e795bcbc44e1fed884a588557bfb2eb0a85c0b39bc62ec0
SSDEEP

3072:7+yqlKJS8w3ugpziUI3CHorLT4zR3kZG5G9h0BRj0C7KkdO:7+8JS8CpXUczJhch9kdO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  QQ申请器.exe
- Size
  
  408KB
- MD5
  
  f728881bb08cdf5b64a4fb1e4638adb3
- SHA1
  
  34fff2e8febd6c6e778da5838f0d954a23fc6494
- SHA256
  
  0cf71275193e2243cc6d9fc2372f7c2cd440d4cf0a4161d7ce5e85b2de1aed7f
- SHA512
  
  5df9b7bf02cc25b4b0d713438b41a4dce720bea27ebf839936290b02e2efb9e0b2a9e0e0208b4b51f26a654b857461c887c90d06e4ce3f213c4f53c08be5a8f2
- SSDEEP
  
  3072:masXOCg/OlyELxHEd2nGgMo6VKPmGKsCtOa771FbPtyfY0VWX3vu7D/o2NHFZoRK:m978ktLxI2nGgMrlFbPtSTrxC7q4E
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  lpk.dll
- Size
  
  47KB
- MD5
  
  c4d0087ebcdcaa94f2a5ef3a4ceb1dc3
- SHA1
  
  165a0063bd69009b152a9b70df6e690945d92371
- SHA256
  
  840770730c51c02492f171382a2c490ab7243853facbd1f2ab2b7cac91f94a97
- SHA512
  
  b8fa657629a2c5f96c9a14be385c533f02365dc42ba7fa3a50dddabe889cb6e7a0f4b91156407a94b930a101850cdef407b771c48ea0c994875bc3bc1be082d3
- SSDEEP
  
  768:lojY9PXAum/U12tZAW/BXcTjX/O8KDbZScn6yHEojY9Po:wmXiI2tZ7XqYZhn6yH1mg
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral3 behavioral4
- Target
  
  中国破解联盟－木蚂蚁社区.URL
- Size
  
  272B
- MD5
  
  6508f15e21f5071b6c9311931dbde424
- SHA1
  
  0dca557073ffcd6ce61e39fad6fa4c1ebc0cca68
- SHA256
  
  0fc9b5fda9f2ea034669792f8044491775a071adffae9cc8a4bfe90c8e7064e8
- SHA512
  
  a11abd2266f3cf9928160d8b6cf089789de732a6eb255f5ecfa763e358458202edd6526c6c137c57926d75f0b1c33711638691d94de0c62b7db63b6a94dbf21a
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6