f1322154820dc0f04a6244ebe4074a7d3a1dfb496d0ce90d9cbe02e26bf46bcf | Triage

Sharing

General

Target

16298d3c696ea8109e8693daf876d37e_JaffaCakes118
Size

2.5MB
Sample

241005-e4pz2szcrd
MD5

16298d3c696ea8109e8693daf876d37e
SHA1

1710c4e1a00340a980548451b01a9b55cb324f2b
SHA256

f1322154820dc0f04a6244ebe4074a7d3a1dfb496d0ce90d9cbe02e26bf46bcf
SHA512

da3e8b8d5d1d6a86d7bf987ec176c4bf176951d3c0bff930e09b6b9a9d350f9ab56aa0cfed0771efad9847040b2b7c955c935379d2fdb907c57735b12dba9f1e
SSDEEP

49152:z+kfmoa5djRZnLqqCAvklEnw4B3DtXXML+5sQyTVn6S9oynLMz08p5JWjYCz:zja5dzLkYj1tXcioTVn6S9oynAzfp5YP

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  16298d3c696ea8109e8693daf876d37e_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  16298d3c696ea8109e8693daf876d37e
- SHA1
  
  1710c4e1a00340a980548451b01a9b55cb324f2b
- SHA256
  
  f1322154820dc0f04a6244ebe4074a7d3a1dfb496d0ce90d9cbe02e26bf46bcf
- SHA512
  
  da3e8b8d5d1d6a86d7bf987ec176c4bf176951d3c0bff930e09b6b9a9d350f9ab56aa0cfed0771efad9847040b2b7c955c935379d2fdb907c57735b12dba9f1e
- SSDEEP
  
  49152:z+kfmoa5djRZnLqqCAvklEnw4B3DtXXML+5sQyTVn6S9oynLMz08p5JWjYCz:zja5dzLkYj1tXcioTVn6S9oynAzfp5YP
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  4e96f412a8cc653053d5d918df6b0836
- SHA1
  
  a3c7d59043feecb1603874b27c23d4166b341f2d
- SHA256
  
  e4a54bfc327986a89165bdef361069810aaa985c3abecd442c786725fabaf977
- SHA512
  
  2fec61b4ad31250bdbdbbfd551d831801790b96902c67200661e8f4f2753378bbf6c0c88b12e1be9173a29597827c1c4809511b6d52666dc3324bd7031c8229d
- SSDEEP
  
  96:IiqA7bDe2xHkR1C41EhvSE+6nNtMn0iGd8CqRLqtJ1trRhElfL:IiqA7/ZH0uQMtcfCqo/tdgf
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  ab73c0c2a23f913eabdc4cb24b75cbad
- SHA1
  
  6569d2863d54c88dcf57c843fc310f6d9571a41e
- SHA256
  
  3d0060c5c9400a487dbefe4ac132dd96b07d3a4ba3badab46a7410a667c93457
- SHA512
  
  99d287b5152944f64edc7ce8f3ebcd294699e54a5b42ac7a88e27dff8a68278a5429f4d299802ee7ddbe290f1e3b6a372a5f3bb4ecb1a3c32e384bca3ccdb2b8
- SSDEEP
  
  96:EBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4MndY7ndS27gA:E6n+0SAfRE+/8ZYxldqn420
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  e54eb27fb5048964e8d1ec7a1f72334b
- SHA1
  
  2b76d7aedafd724de96532b00fbc6c7c370e4609
- SHA256
  
  ff00f5f7b8d6ca6a79aebd08f9625a5579affcd09f3a25fdf728a7942527a824
- SHA512
  
  c9ddd19484a6218f926295a88f8776aff6c0a98565714290485f9b3b53e7b673724946defed0207064d6ab0b1baa7cb3477952f61dbe22947238d3f5802fa4f4
- SSDEEP
  
  96:57GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgN532E:VKgfwgcr8zylsB49Ud0qJVgNQ
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/registry.dll
- Size
  
  16KB
- MD5
  
  351f89337642c165a48dd763aa210023
- SHA1
  
  a5b204cbc51a0ad84248aa680b85be7824f3354e
- SHA256
  
  b610ab13da00e05b000026c73081cfdf0d2ebd3f2fad05e1d0f277060fc3c07f
- SHA512
  
  10326b95ea81b377f74cb9e42135e891930a354b65ce50a4562246da33ca6816f5397089bb60cd1eb647bd28829d70f6425c3113440e11f9a9a4f7fecaac7f4c
- SSDEEP
  
  384:tTVUUuJHxgeh2OTU+X9pCtlohiTV0pWY7:tTqzHxgeh5X9oaiTgW
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $TEMP/coopen_setup_100030.exe
- Size
  
  1024KB
- MD5
  
  1332b28e27b44889b4cd3b337cb124dd
- SHA1
  
  bbbe250427318b2727909dc6c4d12cbad9550b6e
- SHA256
  
  66919e2f3c78845b72db7ec926ced251d04c6605b2063950623dfb770ca9342a
- SHA512
  
  232e39e929bbc6f2b1c8decfb90561fe03c880e8a10df06dc03e558aa1ba0e523fac517732ce7d1c7bd2b3a46f241848ab7c6300d215cf63d26ff3ca466c83bf
- SSDEEP
  
  24576:oLBUwTKA2P9U/cDeCiFwM9hmYYvNKt6n5duze92xKE:oLqsPihZieBYYvNKt65j25
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  325b008aec81e5aaa57096f05d4212b5
- SHA1
  
  27a2d89747a20305b6518438eff5b9f57f7df5c3
- SHA256
  
  c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
- SHA512
  
  18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
- SSDEEP
  
  192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  4KB
- MD5
  
  99f345cf51b6c3c317d20a81acb11012
- SHA1
  
  b3d0355f527c536ea14a8ff51741c8739d66f727
- SHA256
  
  c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
- SHA512
  
  937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $_10_/$_10_/HttpDownloader.exe
- Size
  
  126KB
- MD5
  
  04d01d4b16285a63ce6a91822a892f64
- SHA1
  
  b23239a598877def3a073d3405d28eb3f6a63a3b
- SHA256
  
  8272cb736920cd24f54dadfc6623ed5cf1ca2a8c465bad56d8857af9ab76830e
- SHA512
  
  8cbb2ebd6dbaa725722f75f17aa9d23cdaa6e87ba68335145abd314f0ce965c1ef2ad849830810894308bbacaa98ce1480fa8520a97d2a6a32fccdebff002fac
- SSDEEP
  
  384:RF9Z8VZeOTH+yuiAdoL8T10KJdAncr89du9y3K3iW0hdSAKNQ8LiiEUKDtPKDb/i:tZ8VZFTexTzPocWAwL3IGsJku+6Q5vV
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  $_10_/Coopen.scr
- Size
  
  44KB
- MD5
  
  3238b5035688cc6949293247b08c015e
- SHA1
  
  076d1a4467981297fa6d26278a798711639df02f
- SHA256
  
  7c5500ef23b0fedffb0155cf00130f8b2b1e66932e2a0cdbadaae355fd6f8b03
- SHA512
  
  18aba14c669c17825c0a428f9f2ea3f8f9b42afe584b89a3c6dc6b249aacaf517c179349242bb950161d3889c7e5c16ed9f03f580dcc377143b220709ff045e9
- SSDEEP
  
  768:rKyo7Qvdv6GRE0g5caH+cSev9E3Rkx2K:WJQIGRE0g59Ku96O2K
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  $_10_/CoopenActiveControl110.dll
- Size
  
  56KB
- MD5
  
  78e522aa4f7dc6ca322eabe916dd7190
- SHA1
  
  e7f40650e3de52e26f5d07dd8a4dc53f935ea97c
- SHA256
  
  a929ac8a08eeb966441646549a9e925a306aaea374ccba9996225ea0e14852f5
- SHA512
  
  9ec165d5acf2b1e5aa0bf79986a2458f5db910e7d2c739cfd0b092e392b3acc94f9df9c871b9d6484986dda5f5652ff60bb555c5d43e5f659df35adc12a667cd
- SSDEEP
  
  768:wuy+NqkvXDLvfkDrSXw456fXpTFWMcP6XFO5Bx9v7d+rT:wC/8DuXw456f5CPsFETN7dOT
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  $_10_/CoopenAir.exe
- Size
  
  238KB
- MD5
  
  81caf14643c2fe71ee456f99a4ebbd87
- SHA1
  
  cc6fc467ee8b05dd12080fa1e8f1725e07e180cb
- SHA256
  
  d94657d062b2abdcbf5b8fa9dd8974ad2218abca7426fdc7534a6d4aeaed523c
- SHA512
  
  69a15ecd6df384f648789bfe2cb1401b210d45a1c939c19ab6ad17c6271e0acf527d439a488d55f365757324a4aef1337e20ba044647c11606c424e1de86f059
- SSDEEP
  
  3072:eagesmM3HPxqeiQz0nbhmWTWNM2tyhWT+KKjLNDGbzMVZ+/joty7qeg27uOX:UJHPxDii4V5TWvcobzMVuqfs
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $_10_/CoopenMainManager.dll
- Size
  
  868KB
- MD5
  
  60aee0a9b29f56e333093d237fb20f6b
- SHA1
  
  a3023dab4d74a0e9803382e20b64ce780c9c2ff3
- SHA256
  
  4675621564a482c0d242e86d0da3ce818e60143672155570a3a14ec09f6afa26
- SHA512
  
  9f7224e38056fe18bc34730496faa739fb245a70fb429365b1044c606ca22d2bb5338323013c436dbda63bf863683eb2bfc3a0364777c8df2149a8691c4ffdda
- SSDEEP
  
  24576:wuDnWTh+oi/Epr/xOUr3hrp/zUP9Ujb2xkY:wuiFO/Ep0irpWUjb2xkY
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  Coopen.exe
- Size
  
  90KB
- MD5
  
  f9193966e62c1956bf3c9a716e958a0e
- SHA1
  
  87401d4a6cb2f023537398fdbf6fc721cacbd93b
- SHA256
  
  b6f9170d208cfb347ab0095b811a65a1a717ea1246ca25796923b45d2f986e41
- SHA512
  
  25d9a1b5c7702ebccbfdbcbdd81f6dc5d0aeb5bb6df4a8e8e05ba7cf5840e92b7e64d448d923775345e860ee5939bb34228de81e4b3044f750bab1b5b44ca3bd
- SSDEEP
  
  1536:4YkBsegRUdTqWXYBT6V8pNDlrLcNityC+OEnU:xHegR2XSH/ZrLcUqOd
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  $_48_/1.html
- Size
  
  330B
- MD5
  
  4ecb6bc4e74b1e2e8925e98dcecf4064
- SHA1
  
  be7eadd5e2d8fc2ef124d91d6d8928e5470aae6a
- SHA256
  
  e76a426d901f44a9c4327c02abd2870dc541b9db6c32187a75abd2f73c73910b
- SHA512
  
  9ea3141670783e18df810c1072d2d3116b1e1c5fcd033786e62b0e08aff92866e1d5151603907824cb0b38a1432e0720d85b03c1bd41b54dcb15ad6c230e5c43
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32