a8726e2dca08427204b95ce057baeee7959482719223d4f457088d3f9249c6d8 | Triage

Sharing

General

Target

4637b458169f1a616b39dbd69be2c588_JaffaCakes118
Size

115KB
Sample

241015-gy3p3ayglg
MD5

4637b458169f1a616b39dbd69be2c588
SHA1

fd8e3085fa61867d9ab71dec5772eb3b1bb4022a
SHA256

a8726e2dca08427204b95ce057baeee7959482719223d4f457088d3f9249c6d8
SHA512

15b8f8f350de5985798f7adf4b28026e0dd3e19028ea76c8ab5ada55ec46a8bd9f1ae3c2cb973accb8411c862b4848df6da4a1d05b2b753670b7525116de0f5f
SSDEEP

3072:SXu/MVID9mJ0oV2vDVylswCRWBifUQsNzQEnvs4M4:SjCQ2vRylqRuiNsNdnvs4t

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4637b458169f1a616b39dbd69be2c588_JaffaCakes118
- Size
  
  115KB
- MD5
  
  4637b458169f1a616b39dbd69be2c588
- SHA1
  
  fd8e3085fa61867d9ab71dec5772eb3b1bb4022a
- SHA256
  
  a8726e2dca08427204b95ce057baeee7959482719223d4f457088d3f9249c6d8
- SHA512
  
  15b8f8f350de5985798f7adf4b28026e0dd3e19028ea76c8ab5ada55ec46a8bd9f1ae3c2cb973accb8411c862b4848df6da4a1d05b2b753670b7525116de0f5f
- SSDEEP
  
  3072:SXu/MVID9mJ0oV2vDVylswCRWBifUQsNzQEnvs4M4:SjCQ2vRylqRuiNsNdnvs4t
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/DLLWaitForKillProgram.dll
- Size
  
  28KB
- MD5
  
  9c4b8ec42d89f7557bfd90798ce52787
- SHA1
  
  2376dde426ea65aa27c30e304086310605382475
- SHA256
  
  ed52bdad7b383a179b9b0e21fefdda2d72695c5263a815d5e1e0bfac6c718548
- SHA512
  
  17c12a27a08746755868558c037376dd7e20f03f0f71888c1329903b70975a54f57786c3c32bf88aaf30119f11ed978a6830ba91949e11cfc94fbb5ad95305b7
- SSDEEP
  
  96:EP5ZuFye0MyQW4uPwhs+R/+gFrE1m/U/uG98bp2y+HS21kEZ1b+4Tu9C1uGg8wBu:akFyFRQ5wIzlH/UGq36EZY4T+Gul8U
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/DLLWebCount.dll
- Size
  
  28KB
- MD5
  
  3d320f250297fe1dd1ddc350fa154b3b
- SHA1
  
  9236e354d2fe2b9f25a36f1ba686f1f2785e0b26
- SHA256
  
  f1ed5586759eaa6e5edf92bc589b0812620a3d48db3724c833b1fd9ea6c837bb
- SHA512
  
  8e259f6025080180fedcf13b1493910c20242d02c1776a84a79c8ff1aba00ca64873b251578000867bbcd129c46503470e364817afa267bb631e0d47ef31366a
- SSDEEP
  
  96:j4pe13nQHmwy5PFlufG/cg6TGkB4iuGBudGax+suQHV:j4I1XZwy5NbgB5NYdbX1
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/IEKill.dll
- Size
  
  24KB
- MD5
  
  86acfaa6a25bca6031b303b5bdcc232b
- SHA1
  
  819fd291e5403d8915fe5984e89ee1f6a496a480
- SHA256
  
  e4a0127903902f485eaf29d76052c03daeaa096234baa03c6ba5f3ddb9f233e6
- SHA512
  
  521bd61d92d07e520fc6ba149847d67d5ac46bc1eb04bc33e7576776b7dd20cdbc059e79c6f857659a25c098d0395559f92c2d92274bde97acc7f224aa6e3b4a
- SSDEEP
  
  96:NK6SSNF28W2z/Zq6YTgdY8BKZ8BKoIhsdQculsG51m:06BNRjZqeIT5hsdQcNsk
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  07f3b3445f66e1089567796bf3c8be78
- SHA1
  
  851eb574c1067b23a654f8aa47b17ef599b24d1c
- SHA256
  
  a505e6c537a5ce0166227dda9f7671605395592ac9f1a3764e8a01b713939db1
- SHA512
  
  8c56308fff3a947b26fd0d98dbdd96c406ddf967f5d7abee8cba082b6c46a4e575094bb0bb981551ac5160bb5089cf6fb125dd17a659c427e28c07402adab1c3
- SSDEEP
  
  192:pzi5iBjGHp29db9Dd+w6VPESclh3I8dYvwqu7hwbbHF1QuCb:pO5kjGHSDdgjo6pvwqu72bbMum
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  32KB
- MD5
  
  83142eac84475f4ca889c73f10d9c179
- SHA1
  
  dbe43c0de8ef881466bd74861b2e5b17598b5ce8
- SHA256
  
  ae2f1658656e554f37e6eac896475a3862841a18ffc6fad2754e2d3525770729
- SHA512
  
  1c66eab21f0c9e0b99ecc3844516a6978f52e0c7f489405a427532ecbe78947c37dac5b4c8b722cc8bc1edfb74ba4824519d56099e587e754e5c668701e83bd1
- SSDEEP
  
  384:3rYz6grZodORNWATt4TBmlk5ooyzFh7BukAUdJoUtSOSR:3QggDWATWNCFh7BNddJoxO+
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/ShowAddressMfc.dll
- Size
  
  24KB
- MD5
  
  8d59da038914998f1de07b8ca093e5b0
- SHA1
  
  8b85ea7f90cd105883f8b97e03ff1b064f64fc00
- SHA256
  
  1da4a4a8704993421d7310448c7641f1a45cdedb80171fe1cc8e96306d71e1b7
- SHA512
  
  8a7c5f64def373d72e01623155d5e680cd20a6356a534d07460a4a24a79eab635f48067bc8b4d3c993599d0560d8edc8e709e5cf2e242f2a010d70c4b812a52f
- SSDEEP
  
  96:vAovzebRU5GTbIxzdvKHTscl1iHqAIyiHzf0uKSakIGRxYiTe:vAovaRngxR4zUqAInzcRBkIkui
Score

3^/10

discovery
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14