ac283367b65f4e19ca2fb4bfdd80adbadd8d48d8b3dd6d8ba30ca1e6b3db3b51 | Triage

Sharing

General

Target

27c694b138ee1350fa8132b1cbaf8fef_JaffaCakes118
Size

69KB
Sample

241009-avhgdsxhlc
MD5

27c694b138ee1350fa8132b1cbaf8fef
SHA1

f3b266ab2360d5510207d58677334569e3bce2ad
SHA256

ac283367b65f4e19ca2fb4bfdd80adbadd8d48d8b3dd6d8ba30ca1e6b3db3b51
SHA512

a00a4d4c72f50738d97ef947b9c89c9f22b3e47383bb8536265c31a6af0685a27087c3dc370f87ebce6578ca977d3004d3c1dd1e42802282e391b6943bc4816d
SSDEEP

1536:TpijcwPomiOQHSv4DmJ5twJPOcAeeXPABbqSLMXSyIHk:T8Sm4yADmJWOcAPoBblLMhYk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  27c694b138ee1350fa8132b1cbaf8fef_JaffaCakes118
- Size
  
  69KB
- MD5
  
  27c694b138ee1350fa8132b1cbaf8fef
- SHA1
  
  f3b266ab2360d5510207d58677334569e3bce2ad
- SHA256
  
  ac283367b65f4e19ca2fb4bfdd80adbadd8d48d8b3dd6d8ba30ca1e6b3db3b51
- SHA512
  
  a00a4d4c72f50738d97ef947b9c89c9f22b3e47383bb8536265c31a6af0685a27087c3dc370f87ebce6578ca977d3004d3c1dd1e42802282e391b6943bc4816d
- SSDEEP
  
  1536:TpijcwPomiOQHSv4DmJ5twJPOcAeeXPABbqSLMXSyIHk:T8Sm4yADmJWOcAPoBblLMhYk
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  79be350c8381293abb045bbd2a7b5f0a
- SHA1
  
  0b4e6d482cae461e36c2b47661ef586545162e23
- SHA256
  
  3091623495d6e81bc0aa9182a55b0f93d3b2238102a44fd66943e46ed7eeaf51
- SHA512
  
  1d39bc13f2825bb4aee5832bc5c60603b62b3475e0075028a146981764e6796e68fdd752627f37f8bb198dcfce5a62efb6a6283366fc4874a8915008aa0a4c28
- SSDEEP
  
  192:/6JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTSK72dwF7dBdcQOz:/6JaVh4I5rpPbTS+BdhO
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/refr.dll
- Size
  
  32KB
- MD5
  
  7d858ca517f9554fe340e6f46f121af8
- SHA1
  
  77387e288a3ede2791125b2f58386d96dd7450b6
- SHA256
  
  aaf3380075deaefa9f54c4df3a6138d363168101dcda598aaecc64503d4dabae
- SHA512
  
  040315d8968736db1ad6b03035c09fc9520b9e39157c3692ce332b306a4a91d33b7dee3c0d4fc8191093ca7495d86af7749ba93f161ad965615a329f45eb6229
- SSDEEP
  
  384:pkz+eCBfcbVXBEmDK0naBnnCRKOKyRUYIci6F+zwFJtcVHm3:k0kbVxEmDK04nWKyOYIcimaA8H
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  uninst.exe
- Size
  
  36KB
- MD5
  
  de9d7ecf561e64cee3a43cac97dc854f
- SHA1
  
  79e7328c8e4dc9aaa809653eab7e6412f67cc9be
- SHA256
  
  50ea177102d6100e5faa6ee083d723a9a51c895c85bc56de1dbd865b1fd34678
- SHA512
  
  08cc71bb7056be1421b8de079e38675a1f40e4fc6bd28fe4feb1daf61da58fbb394f26014a5f74523eef21def720ffebe80356a7ceac9a10739934d0bf082873
- SSDEEP
  
  768:Y9appBajcz0Pom3yMRw2GzHgRtvthk4eF8CkvF5871mJQu/Nu/cuAZVm:TpijcwPomiOQHSv4DmJ5Tu0Vm
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8