e57b39aad6785a22b4282f4e6669dcaa07e9d949eae19981df0fe9be266a9c23 | Triage

Sharing

General

Target

142aad2e00eb1b55bf0f05d4638c1d4a_JaffaCakes118
Size

227KB
Sample

241004-vd8mgavfpq
MD5

142aad2e00eb1b55bf0f05d4638c1d4a
SHA1

fdbb37b0c7399863cdad77ce61664fd7fe1bcd67
SHA256

e57b39aad6785a22b4282f4e6669dcaa07e9d949eae19981df0fe9be266a9c23
SHA512

b596300a883eacad916c3dfb11cf3677e0f8fbf79e308d71f3ec38b8eec859b9e62f7b792407f7bb2852bef23c72d766e72e142658440bdf0b2ebf595092c533
SSDEEP

6144:Z7MN9mfR+TSn6kEPf8G4KESEZzNZOZHX9G:Zu9mfwT4fEPf8GFQNZmHX9G

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  142aad2e00eb1b55bf0f05d4638c1d4a_JaffaCakes118
- Size
  
  227KB
- MD5
  
  142aad2e00eb1b55bf0f05d4638c1d4a
- SHA1
  
  fdbb37b0c7399863cdad77ce61664fd7fe1bcd67
- SHA256
  
  e57b39aad6785a22b4282f4e6669dcaa07e9d949eae19981df0fe9be266a9c23
- SHA512
  
  b596300a883eacad916c3dfb11cf3677e0f8fbf79e308d71f3ec38b8eec859b9e62f7b792407f7bb2852bef23c72d766e72e142658440bdf0b2ebf595092c533
- SSDEEP
  
  6144:Z7MN9mfR+TSn6kEPf8G4KESEZzNZOZHX9G:Zu9mfwT4fEPf8GFQNZmHX9G
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/ExtractDLL.dll
- Size
  
  9KB
- MD5
  
  d4f87d459a8a538c1d9dd7c12b48a2b0
- SHA1
  
  846c6bb0cffa9f385685e5d0556cd90143e7e42b
- SHA256
  
  b0a3af70b0d2fe402bd73c04206e8405df1972d664454f3572dd5759141a5b6f
- SHA512
  
  351227caeb6dbcdbe3afe720a1fe8fb4a2c413851796e0b47b4b31a927a3ab6efc9eb9cbc025695c85400a3db8a77488bc8dc75e24162425b1845abff305238f
- SSDEEP
  
  192:pUnA1CDX+0qxMQBCoZK0CibsJsJ0sMzV9VopTH:pUA1CDXixfCXG
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/FavoritDE.rtf
- Size
  
  23KB
- MD5
  
  3b5ffa7bb1c3fee76d3cbe1696d18355
- SHA1
  
  fa94319cf44871457efcb13777a291f07b18f272
- SHA256
  
  21837063807eaecb4e466a5727e354fde3aeb91ee94ce55dce83b219d1083543
- SHA512
  
  f484a16b528ddd031c27efe849b1e13b2d1bcd8a9149aa3ebd691cfb3e8481d4755b9cb0663e150fcb06d566b04f5e540d7b42e89e11421f0372e7c14405ccaf
- SSDEEP
  
  384:ZYGqNWQU2N/bNsOxMK69XhP5YS8QuEtJ24EA4tPExEakP3QR9eh7544/xiPBU6lk:ZYGqNk2Nae69XhBYS3LJ24EAiMxEakPz
Score

4^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/FavoritEN.rtf
- Size
  
  18KB
- MD5
  
  262c7499f2472459c8c0df84f60f9954
- SHA1
  
  024ff26be0bd6de211778e6d3e0c87ee52f028eb
- SHA256
  
  d80cfdb34bc01157d22664efd1db7f85d7188d2848484477da30da6b92bbc35b
- SHA512
  
  b9307c882381c4ad4a1af320ade48332d0c843e72d6d35045acd7cecf0b90ffeacba8388563badc9fd7657e33f3f1c2fd6a6b63303afe5b0e888f8256f47bcb5
- SSDEEP
  
  384:yuxl5n2Y5XbyigFY9tX+0lS5kCUhKe/QSwjhsjvTDKbxXG9sXIkeYxwtYlIeJh2Z:1h2aaY9tXZlEkCyKe/QSwjhsjvTDKbx+
Score

4^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/FavoritES.rtf
- Size
  
  21KB
- MD5
  
  6893b39b76c99bfcff44ead37306444a
- SHA1
  
  0cd3ec30bcc8fdfffbda532114f21774539e09cf
- SHA256
  
  df936126688718ae1ea8b9234047b0d989a6ca252cbf65677444aaf80281b43e
- SHA512
  
  63f301936e21040de7d606589cbe04b7e71fa89356df27637f3d7abf490125c441ee0812e89d90db7197689d8e3ca54d74cb8f92d93910bb25dd7177fa7ba0c2
- SSDEEP
  
  384:MAC0msM/T9u4TgLzabbO7MzrGyvtma8e1xp/j2:kT9unzCO7Mzr7tm7e1xpK
Score

4^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/FavoritFR.rtf
- Size
  
  23KB
- MD5
  
  27bdf149211c7d73c323ff1863c19b00
- SHA1
  
  662fa29bb89018232de12e27d247fbf2f6fd2d7d
- SHA256
  
  d381039f813370f2b06df5cb10726a2a2a47f118f57907a22d05306863c16ceb
- SHA512
  
  40790f85876e45c3b382c99a31ab8d751b5c732acedb58f5f30f48a9e477dcf3c85f4bb73eefea7454d136fabd65a0fece4dd0feb189eb60477eda784f797a03
- SSDEEP
  
  384:iq7UWj0iz+y/1SFZqJhGFh13KvN4BjmPSWjxT/j6i2:iq7J0iz+HZqJhGFh1aOmPxr6
Score

4^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/FavoritIT.rtf
- Size
  
  21KB
- MD5
  
  6f9c4e8c0f4652037e0f88967044ad5f
- SHA1
  
  e337893dc1885cdbc126848f1f698ca1b19b943b
- SHA256
  
  0226dd2a6bd271d7e8ac8f386860d74dacfe038937ad6d08b5838aa5a3fd9971
- SHA512
  
  241b1c7e26d81cef884ac1f1d9d28416056bce590d0b74ca8790e441bc3c5358d52c74d13a5e5f43effa20da78018bcc5f5542ee7f817be22fa8b99a83caa20c
- SSDEEP
  
  384:Qp2xFALVXKw7wDkzD/dmr9xHUtOOPZpuSRjp90oSwL7uSeKMoQ1j0aQ+UdoRY2:9+vq9xEOOhpugj0KL7u5KMzLQ+UdU
Score

4^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/NSISdl.dll
- Size
  
  14KB
- MD5
  
  42a4d62f1d35922e1501775ce14f0d33
- SHA1
  
  ba4b4c0229c598d05c32075c9d0d72b97e623b89
- SHA256
  
  7535496fa53b0da966413ef2f7b56d7c9ddb0d5a1fa52d85ecb13637b775b38b
- SHA512
  
  4e2ede93378f8e671c75c933a33ddfe961c7aebb1bf13a0a44efd8b737646e0e9405c8addd6f58970ff8363c6fa92869e39a6559ae3becf4c2e58187ee7c4a24
- SSDEEP
  
  192:UpM3f5sTMzoU7Fs0+/tcDm0tzailQvzwTaoxs+/rH6hqCeHtpflVp/12YgsTwp:UpM3xcMzRF4/Gv+H+D6hqblA0Twp
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  9b40e5625f6f893a141f4df48ac0838f
- SHA1
  
  97dcc3c09f441129d293629a0f0d8d64e56a172d
- SHA256
  
  1b2e5f2e29366accc88c4d0a2127f986769d4ccb585621314647374afb518099
- SHA512
  
  1d4ba3af8d0a827f4c313fb7c89de1132729f0f6bd8846ea14e5d272dbe5283b12fc3b51b49139fbbad775727e4f1a1a9a5aab40ea401f5fe300235d7cc8b3e7
- SSDEEP
  
  96:OCCshwlpqUsYghN/9uvZ7CLWNCSiiVTQYBGVXRvuBDlSriklbuba1iLc+cELY4Rn:uzqUuh/uLCXIkYBGV9uVlSblbubba4l
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  8KB
- MD5
  
  6308421518c3b18018c223ba7a375a07
- SHA1
  
  1a8acf808b7172ae861da3d132479f31145958eb
- SHA256
  
  b79aa0bbad073cba2bb8fe9555618966c9231e45b8f5ff8f535e8b5498733fb3
- SHA512
  
  c08ec072ce156cd68bf7e2abf31f5cfaefdd972cdccd7f3e2c7854ab50f1dce4344b116250c8ef3ed6419ce264b2af0e1b03f9208febcc4b042faa20b95c7967
- SSDEEP
  
  96:E5TaBA2sP/T3yPlN4Fz2RnLbCxwR0rYAHpYdWd4:EIqj3elNWz2RnP0rPJCi
Score

3^/10

discovery
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20