a6a04d6387a4288965c5d223f9f6c88376a663dd484f4b54cf43aea4d25642da | Triage

Sharing

General

Target

15b79fd1307f3a654284678c27095fa2_JaffaCakes118
Size

177KB
Sample

241005-cdme5ayfnk
MD5

15b79fd1307f3a654284678c27095fa2
SHA1

b774c1254bd9f3da03421bb52197f982e63ddb77
SHA256

a6a04d6387a4288965c5d223f9f6c88376a663dd484f4b54cf43aea4d25642da
SHA512

3738b09b3256fe088a55174b113f055446a2f90fea85ccd4c538b59d7210ac9832302a4490f5564b2f2c3b04d42000f697a1d21beb0095ee8fb71107cf26f22a
SSDEEP

3072:i3c1fP4AJJ1iZXEcp9nemh3xMFgpB1nsqaZX+6fPDNKaKoUAIu7B6A+s965:YOPjJubv3CFgr1nhW7wuUs7B6z

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  15b79fd1307f3a654284678c27095fa2_JaffaCakes118
- Size
  
  177KB
- MD5
  
  15b79fd1307f3a654284678c27095fa2
- SHA1
  
  b774c1254bd9f3da03421bb52197f982e63ddb77
- SHA256
  
  a6a04d6387a4288965c5d223f9f6c88376a663dd484f4b54cf43aea4d25642da
- SHA512
  
  3738b09b3256fe088a55174b113f055446a2f90fea85ccd4c538b59d7210ac9832302a4490f5564b2f2c3b04d42000f697a1d21beb0095ee8fb71107cf26f22a
- SSDEEP
  
  3072:i3c1fP4AJJ1iZXEcp9nemh3xMFgpB1nsqaZX+6fPDNKaKoUAIu7B6A+s965:YOPjJubv3CFgr1nhW7wuUs7B6z
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/NSISdl.dll
- Size
  
  14KB
- MD5
  
  254f13dfd61c5b7d2119eb2550491e1d
- SHA1
  
  5083f6804ee3475f3698ab9e68611b0128e22fd6
- SHA256
  
  fd0e8be2135f3d326b65520383a3468c3983fa32c9c93594d986b16709d80f28
- SHA512
  
  fcef8ac5bd0ee6e316dbbc128a223ba18c8bf85a8d253e0c0877af6a4f686a20b08d34e5a426e2be5045962b391b8073769253a4d9b18616febc8133ccf654f7
- SSDEEP
  
  192:t5ZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRYgsfA:fBo/680dCI5adOjFOg9//p27uNw2bo
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/blowfish.dll
- Size
  
  22KB
- MD5
  
  5afd4a9b7e69e7c6e312b2ce4040394a
- SHA1
  
  fbd07adb3f02f866dc3a327a86b0f319d4a94502
- SHA256
  
  053b4487d22aacf8274bab448ae1d665fe7926102197b47bfba6c7ed5493b3ae
- SHA512
  
  f78efe9d1fa7d2ffc731d5f878f81e4dcbfaf0c561fdfbf4c133ba2ce1366c95c4672d67cae6a8bd8fcc7d04861a9da389d98361055ac46fc9793828d9776511
- SSDEEP
  
  384:yTxz0Cv0hqd+1TjQmd9YWrSUEc//////OD5hF92IJpJgLa0MpoYfAz6S:jCvsqdS3QGBREc//////Q53NgLa1ub
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/locate.dll
- Size
  
  17KB
- MD5
  
  7d3317f57c1a368480ace3c0ca804eeb
- SHA1
  
  d4c7e185bc64aac82339f51ba6c21cf0713c9f1a
- SHA256
  
  d88a04c1e39db583eaad727fd390fe599ab10198ee040bfbdd22daefadbd2372
- SHA512
  
  5598c2e6caa2f66edd48f8c8305e054d4b0740b5f2b7ed92cf197a13ac66ba99a32013d34b3c2e28d007ab7979eb90a50681324eb736b1410e7df1902e4ec32a
- SSDEEP
  
  384:ev/vPBkA6dK8wiLe45naPji7hpx2kRV+qgm:evyvwiNnGji7Xxjc8
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/xml.dll
- Size
  
  118KB
- MD5
  
  42df1fbaa87567adf2b4050805a1a545
- SHA1
  
  b892a6efbb39b7144248e0c0d79e53da474a9373
- SHA256
  
  e900fcb9d598643eb0ee3e4005da925e73e70dbaa010edc4473e99ea0638b845
- SHA512
  
  4537d408e2f54d07b018907c787da6c7340f909a1789416de33d090055eda8918f338d8571bc3b438dd89e5e03e0ded70c86702666f12adb98523a91cbb1de1d
- SSDEEP
  
  1536:U2A8OSGjylgkara+70LICin9zgtg2LxowhtJu6MqSNicNEtIfF42q2KC:OzjLkarn7O+n9z2L6whFtGF42bK
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  Star Cursor.EXE
- Size
  
  25KB
- MD5
  
  1fde8d9d99e4ac1b40c1ae0ced500217
- SHA1
  
  50e7dfdb4a50277e1f9c7759c6eea84321e62a22
- SHA256
  
  f5befa75203dd851b2b162e468678bf0c6dffb45e7a745e460f48eef547cefe9
- SHA512
  
  398da1314ed43c331fd57333aafd2d96c4899ba4ade3ab90805b54ce5c13aa53e2690ea699db633953b9ca00b1b221a28f16f43e4ba29d3d7269e6360705d172
- SSDEEP
  
  384:xexD5cXYBCi+c++8a89Yzc3bO7z7sVuQlA1YDbWAxar6+e9Pfqbn1v:4D5coBocm3bO7EEQmsNxFha5v
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  uninst.exe
- Size
  
  36KB
- MD5
  
  8231603dfd27787e73e66b67423e1ef6
- SHA1
  
  3842160a4306510b4d07b13678f3362b89653265
- SHA256
  
  2f026b566effcd5074f91cd51a1afa16ffebeaf38a3fab5bdbbff7720ac8cf65
- SHA512
  
  f8a2588f4fb6dfd53e3f267558e4aec27e6f0d29f358341ed5b537909a97202671e2d32238500faabdc64323103c4b2810bb4104ca1efdfb868c77748d2dd0e2
- SSDEEP
  
  768:je3PFaDVyOQgljLDKRJyM3BmsHzSB4us/wJJaJJRnjQmc2ELUK:i3cpyORJLuB4P4AJJkQmcLLH
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18