ca6f6ef58a3c935b1ea7393d7b52252946c294ab4dfd4f76c5349035184423f4 | Triage

Sharing

General

Target

1ff51ff2a3233dd977ce4623942e4955_JaffaCakes118
Size

3.7MB
Sample

241008-gpqddawclh
MD5

1ff51ff2a3233dd977ce4623942e4955
SHA1

ffdd8746174afd8adc02e668d083610de98f9c0c
SHA256

ca6f6ef58a3c935b1ea7393d7b52252946c294ab4dfd4f76c5349035184423f4
SHA512

5cb032fd01a29a32b34450376a8d7189764051bfdc24ec1ff88cc33fa96cb920813686eae374b53328805c3f73f26e25e48837d5997d0de1c7525d74ddcc5e75
SSDEEP

98304:QxE8o58YMu4wmSWqCF/HiozHPbTZLJoLjGSoE:QxE8g8PuIqCF/CodLGuNE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1ff51ff2a3233dd977ce4623942e4955_JaffaCakes118
- Size
  
  3.7MB
- MD5
  
  1ff51ff2a3233dd977ce4623942e4955
- SHA1
  
  ffdd8746174afd8adc02e668d083610de98f9c0c
- SHA256
  
  ca6f6ef58a3c935b1ea7393d7b52252946c294ab4dfd4f76c5349035184423f4
- SHA512
  
  5cb032fd01a29a32b34450376a8d7189764051bfdc24ec1ff88cc33fa96cb920813686eae374b53328805c3f73f26e25e48837d5997d0de1c7525d74ddcc5e75
- SSDEEP
  
  98304:QxE8o58YMu4wmSWqCF/HiozHPbTZLJoLjGSoE:QxE8g8PuIqCF/CodLGuNE
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/BrandingURL.dll
- Size
  
  4KB
- MD5
  
  71c46b663baa92ad941388d082af97e7
- SHA1
  
  5a9fcce065366a526d75cc5ded9aade7cadd6421
- SHA256
  
  bb2b9c272b8b66bc1b414675c2acba7afad03fff66a63babee3ee57ed163d19e
- SHA512
  
  5965bd3f5369b9a1ed641c479f7b8a14af27700d0c27d482aa8eb62acc42f7b702b5947d82f9791b29bcba4d46e1409244f0a8ddce4ec75022b5e27f6d671bce
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/ButtonLinker.dll
- Size
  
  7KB
- MD5
  
  dd85ac7d85c92dd0e3cc17dfd4890f54
- SHA1
  
  a128fb7a05965c1a9913c6f5e419e6c4c0a7d2fa
- SHA256
  
  27abd2a4fb1bf66add60221b52d061bbe24d2d21e13600725ff7a5c6c777b504
- SHA512
  
  e4ff8216c65110a9d156f37c2062acb53a72daa8af12dfc24278920d9e1a4083a81b1446759df75405b2da34c7bfb1afc33184feedd0aee4ed73f79fcbb1a8a1
- SSDEEP
  
  96:q0GBDU3ADeEZlBLx6sWHCKGKVR3YXqNNtFa4PaaU4x:X53jEd2n3Y6NNtFBaa
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/InetLoad.dll
- Size
  
  18KB
- MD5
  
  994669c5737b25c26642c94180e92fa2
- SHA1
  
  d8a1836914a446b0e06881ce1be8631554adafde
- SHA256
  
  bf01a1f272e0daf82df3407690b646e0ff6b2c562e36e47cf177eda71ccb6f6c
- SHA512
  
  d0ab7ca7f890ef9e59015c33e6b400a0a4d1ce0d24599537e09e845f4b953e3ecd44bf3e3cbe584f57c2948743e689ed67d2d40e6caf923bd630886e89c38563
- SSDEEP
  
  384:nUOPTbiJmdztwwKq8W1cyMjPzV0Ac9k+LMkIX1+Gn+XHdjf:nTikliwKq8W1rMjPzz+f
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  4KB
- MD5
  
  99f345cf51b6c3c317d20a81acb11012
- SHA1
  
  b3d0355f527c536ea14a8ff51741c8739d66f727
- SHA256
  
  c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
- SHA512
  
  937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  ab73c0c2a23f913eabdc4cb24b75cbad
- SHA1
  
  6569d2863d54c88dcf57c843fc310f6d9571a41e
- SHA256
  
  3d0060c5c9400a487dbefe4ac132dd96b07d3a4ba3badab46a7410a667c93457
- SHA512
  
  99d287b5152944f64edc7ce8f3ebcd294699e54a5b42ac7a88e27dff8a68278a5429f4d299802ee7ddbe290f1e3b6a372a5f3bb4ecb1a3c32e384bca3ccdb2b8
- SSDEEP
  
  96:EBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4MndY7ndS27gA:E6n+0SAfRE+/8ZYxldqn420
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/nsisXML.dll
- Size
  
  11KB
- MD5
  
  13deb9a0f4e4286df01abc85e1895e09
- SHA1
  
  3174853b32407fd85220de844b390a18a8a76c97
- SHA256
  
  c40ef0b41c035b6d29656616ddc113a717bfd1bb78c9fcac75d7b6eefdc7bf83
- SHA512
  
  604aa82a9c4818d2f63fb11bbde561afc137a77e9f3108dfd7f4596524e46ce71b6dc31606bce534b600b250c3b4092a311fd1eced83da01156d5bcfaad7aade
- SSDEEP
  
  192:GRTSl/ex70OJp3U5WtRqRLnOyhb6hz801Sux3ulXhDQR:GRTSl/kfzWIRqRLnOy3mxaX1E
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  7za.exe
- Size
  
  574KB
- MD5
  
  42badc1d2f03a8b1e4875740d3d49336
- SHA1
  
  cee178da1fb05f99af7a3547093122893bd1eb46
- SHA256
  
  c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
- SHA512
  
  6bc519a7368ee6bd8c8f69f2d634dd18799b4ca31fbc284d2580ba625f3a88b6a52d2bc17bea0e75e63ca11c10356c47ee00c2c500294abcb5141424fc5dc71c
- SSDEEP
  
  12288:myyKdVnyNhXCV4EkP7AIfzNXZ0b5NrnkcAqIV0A1caRI:mKvyNhXCV4E8BXAfrnkcAqU0A
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  AdbDev.dll
- Size
  
  75KB
- MD5
  
  5059e290e1cab9211c0afa7287beddd4
- SHA1
  
  2d1f86860c7abaf85eb6f4c4a84b7be1b2cb48f4
- SHA256
  
  c1a7aa027fe3537e65a36f8ea6261894a08cb4800c3fdf88c132a396bbbb497b
- SHA512
  
  7d3a2c7e21e0ed8873d029eb443fc379325d3f4df9df155a5f9db8d4f2a7d989adc918f1782204e44c601234da1722fa13e737e4219d5c887ef9d1a62dba34b5
- SSDEEP
  
  1536:oi8bGYVHgMnYbjJU13mSSDFYRjDwqBunak2tYe4JVITc:oi8ioAMn8JjDFkorcqe4J0c
Score

3^/10

discovery
behavioral19 behavioral20
- Target
  
  AdbDrv.dll
- Size
  
  68KB
- MD5
  
  1e67efe228e2e220dc57c08590ea4e48
- SHA1
  
  deae1b8fed0df2151ab46ec9a1fbeb7092b4165f
- SHA256
  
  b80ca396116452e4dde721d8278971a8e19040e83bc7d0da9ece86cdd09f9762
- SHA512
  
  8c56df41e7e71dff9ee6ee5caaafd3c522007712c7ea3b7ea11fd61ab7bbe2fb5959e8947e30e8cd986a51b8c6564d1a47cfeefa17e68d85fee450fb35418572
- SSDEEP
  
  768:xGn9da59DkFH7tZ6VQOBt1GNd+mzz1qb3nUwLJhHj5kuaiTCmnhEDsR4vP87QKIW:F9DqbtIzLmzAb3fbHj5k6pQ87xP
Score

3^/10

discovery
behavioral21 behavioral22
- Target
  
  AdbWinApi.dll
- Size
  
  94KB
- MD5
  
  47a6ee3f186b2c2f5057028906bac0c6
- SHA1
  
  fde9c22a2cfcd5e566cec2e987d942b78a4eeae8
- SHA256
  
  14a51482aa003db79a400f4b15c158397fe6d57ee6606b3d633fa431a7bfdf4b
- SHA512
  
  6a2675de0c445c75f7d5664ebe8f0e2f69c3312c50156161e483927e40235140d5e28e340112ac552d6462366143890a8ce32dbf65bd37e27cb1ea290fe14584
- SSDEEP
  
  1536:npCxybY0FS6MqS6WvgD9xj03TabrFvY5J6sCGt:npo0k6ZWVTaif6sCG
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  AdbWinUsbApi.dll
- Size
  
  59KB
- MD5
  
  5f23f2f936bdfac90bb0a4970ad365cf
- SHA1
  
  12e14244b1a5d04a261759547c3d930547f52fa3
- SHA256
  
  041c6859bb4fc78d3a903dd901298cd1ecfb75b6be0646b74954cd722280a407
- SHA512
  
  49a7769d5e6cb2fda9249039d90465f7a4e612805bba48b7036456a3bbd230e4d13da72e4ade5155ddc08fe460735ec8d6df3bb11b72ff28e1149221e2fc3048
- SSDEEP
  
  768:HLNk0yiFYWkgALpW+QvSugX0wUepQNXTQXdF+Q+An70edrqqOkIW:+yY8wugEwOVEXdz70e4gI
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  CR173Soft.exe
- Size
  
  3.4MB
- MD5
  
  09510c090c9d331a31c941e354aafde2
- SHA1
  
  e662fe84037834239f7467062c2b942f0734af2e
- SHA256
  
  393f28ac190095dfcebbfa5cf7d4ccbb05867722ebf1a506fb618905075f90d0
- SHA512
  
  9e44cb1138a5a77103fddb318783183c59c7a3e122f91da4ad8cfb194c9336b0c73a2eff053bf987f8320368a953a0e7e4925d556e87d196e0bfbf29be2ae2e6
- SSDEEP
  
  49152:t5CRSFR8lP35rGQyKrlQPRuFIAV3SLumiqIskYT8iWT1IAYeuS/gaANxyIxIQy0:tkpLrRFBV3SLusINre3R/NxyIxIQy0
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  DevMon.dll
- Size
  
  47KB
- MD5
  
  5a5a5fa1f59fe58016d46e31f990ca7a
- SHA1
  
  4c39e6428722c2231c3caa4648ba24e817a13f23
- SHA256
  
  a6cbed7c581013d726b0a57f6c72124b77dcf4cffbf8fff40e5692c5d293628e
- SHA512
  
  7d4bb2cdcbf009b10242ea07c83de7e3aeabdd301b532d2ec628145de86fdc77d9886ae7092d99a0b60c8eb93f5cf47ca085c899b29f993faf356f91e7bf893c
- SSDEEP
  
  768:fG9LlON+XojjhlGX/Nbh8Fsn2NEDYoJdF7Dd89IENmE:fwLlOss0X/Tld58fH
Score

3^/10

discovery
behavioral29 behavioral30
- Target
  
  DrvInst.exe
- Size
  
  38KB
- MD5
  
  99c2cdd8d5fc858c96a2837650fb2481
- SHA1
  
  700fcdcd1dcd1a446f1cf41dfaaa10cafa20df94
- SHA256
  
  a0753cb89f3d8350dd4d25ee019092c25d622f5e60b4e536311cc06121104b41
- SHA512
  
  813374a8e79b7c00ee3de90003d507ecc81a5e0536e2c4e8e4738cf4029c3116eb5acbdf7aeec63b6dea829d7f008def7109c5f824370e545031cec9e8871e00
- SSDEEP
  
  768:4aabzWjWGEh3BXTseXHo78xofEDMAntUMcw8Ou9IENmT4:4aazWjW3B4Eo782Ctanfw4
Score

3^/10

discovery
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32