09ac09fa1ee27ab299e2e59127dc3f8ff6d279d624b9d8c0e57f915aafd95af2 | Triage

Sharing

General

Target

19c67d5276ed9ef7334390fe4c179afb_JaffaCakes118
Size

6.7MB
Sample

241006-z5r61sweqn
MD5

19c67d5276ed9ef7334390fe4c179afb
SHA1

41537512c8eeddccf27c2dc3e012aaa6daf22db6
SHA256

09ac09fa1ee27ab299e2e59127dc3f8ff6d279d624b9d8c0e57f915aafd95af2
SHA512

c95540a2e9203a872f7fbb6ca40fe0c9bbe0a6b92b6d8c90bde7a3e479cdc4d001008f447dc2554e35ebcb303a9f2570ecdb1880b6dacb8885a69e2fe140426b
SSDEEP

196608:NhD1kI6YjedmnzVOCpAJFkyWmhGZp6I4GA:NhRkgjewzUCpAQmIP6OA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  19c67d5276ed9ef7334390fe4c179afb_JaffaCakes118
- Size
  
  6.7MB
- MD5
  
  19c67d5276ed9ef7334390fe4c179afb
- SHA1
  
  41537512c8eeddccf27c2dc3e012aaa6daf22db6
- SHA256
  
  09ac09fa1ee27ab299e2e59127dc3f8ff6d279d624b9d8c0e57f915aafd95af2
- SHA512
  
  c95540a2e9203a872f7fbb6ca40fe0c9bbe0a6b92b6d8c90bde7a3e479cdc4d001008f447dc2554e35ebcb303a9f2570ecdb1880b6dacb8885a69e2fe140426b
- SSDEEP
  
  196608:NhD1kI6YjedmnzVOCpAJFkyWmhGZp6I4GA:NhRkgjewzUCpAQmIP6OA
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/$APPDATA/.minecraft/bin/minecraft.jar
- Size
  
  5.3MB
- MD5
  
  c79b8234a7a3e8e457ac6e37c478691f
- SHA1
  
  ca3b2e326f463a55895e5bbe993c64d6d4149dd2
- SHA256
  
  e6fe6ab535b924ab2b519916423a8b583ad9ba7535852346516bbf9d6b2a0a91
- SHA512
  
  8f7d9e4a23b6712e1bae2ad36cfce23e7d8a78108f0dde1eed1dcfcfeac7f4c191440621ecf43919cab7f29d29bf1db8a83a1f8530b7b5f779c8dd535b982545
- SSDEEP
  
  98304:DD13dBsS2ZuMUsMupN4QVbcoh+w7SpzUH1DxMBdBAHXacx8bJGGG24XZUp1Pit8F:Dh3V2kj6+weGkdBARgJmXqPi+nN6k
Score

6^/10

discovery
- Network Service Discovery
  Attempt to gather information on host's network.
  discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/7za.exe
- Size
  
  574KB
- MD5
  
  42badc1d2f03a8b1e4875740d3d49336
- SHA1
  
  cee178da1fb05f99af7a3547093122893bd1eb46
- SHA256
  
  c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
- SHA512
  
  6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c
- SSDEEP
  
  12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  325b008aec81e5aaa57096f05d4212b5
- SHA1
  
  27a2d89747a20305b6518438eff5b9f57f7df5c3
- SHA256
  
  c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
- SHA512
  
  18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
- SSDEEP
  
  192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  20KB
- MD5
  
  e541458cfe66ef95ffbea40eaaa07289
- SHA1
  
  caec1233f841ee72004231a3027b13cdeb13274c
- SHA256
  
  3bce87b66d9272c82421920c34b0216e12c57a437d1955c36f23c74c1a01d420
- SHA512
  
  0bf6313e4cb7bbdcfba828fb791540b630adc58c43aa4b5ba77790367d0f34f76077cd84cc62e2a2c98c788a88547f32a11e549873d172c5aa2753124847cd0c
- SSDEEP
  
  384:b1JO6XgZkjxm+NpXaWgzxUX//EUhU7ya4LQ0Ac9khYLMkIX0+GBty3Sm0:b+6Xgsm+NpKWgzxUXnEUhUua4Li70
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/newadvsplash.dll
- Size
  
  8KB
- MD5
  
  7ee14dff57fb6e6c644b318d16768f4c
- SHA1
  
  9a5d5b31ab56ab01e9b0bd76c51b8b4605a8ccce
- SHA256
  
  53377d0710f551182edbab4150935425948535d11b92bf08a1c2dcf989723bd7
- SHA512
  
  0565ff2bdbdf044c5f90bd45475d478b48cdbd5e19569976291b1bdd703e61355410c65f29f2c9213faf56251beb16d342c8625288dad6afc670717b9636d51f
- SSDEEP
  
  96:qD5UDaGxZH52QhtZafDP9BTS9nPg83UniV/zRzGEl1DMl1zN6LmeYt4dO:W5UDaGxZH5T0j+9nl3BzG0IZ6LqN
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  acc2b699edfea5bf5aae45aba3a41e96
- SHA1
  
  d2accf4d494e43ceb2cff69abe4dd17147d29cc2
- SHA256
  
  168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e
- SHA512
  
  e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe
- SSDEEP
  
  96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsis7z.dll
- Size
  
  170KB
- MD5
  
  46e29660c591067e77276fa960625f57
- SHA1
  
  3c3206ec4415de4f09a2066a658fa12621e2ed74
- SHA256
  
  51f3274fcaf2ef42860f97bed95f407abc60ab31f81a42b38fb2ea1d9b0a434f
- SHA512
  
  ed7f9babcaa6244eb8f42350a522f75b5078b2854919e281215a4a4ef62ec4bb731a457f5da3a615419a575986eb96517a6c5238f65b2173138c7fd4ff122d83
- SSDEEP
  
  3072:/U9a+LOBZgLCJqPb83T6RhYI3Y3de57FjqFJL4A1QH9ykgt1c32pk:kaVUmcQGLYoY3KMlq9H8jk
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16