92c85e1eb91946953ea405fb7ed00a13dc197f7952036b5366f9309c52fd9377 | Triage

Sharing

General

Target

5339e01d221215b2c3c4145455165e50_JaffaCakes118
Size

3.1MB
Sample

241017-xqzlfatenr
MD5

5339e01d221215b2c3c4145455165e50
SHA1

5fb11d4bd150d4c7b82617198b975bba9a50874f
SHA256

92c85e1eb91946953ea405fb7ed00a13dc197f7952036b5366f9309c52fd9377
SHA512

2190b8999cfe459ec6353483d4d9d01249470685b3b8f5418e46c09b3732a4a0f6427426069e563f0563a516ec72896ec4ada87029ad7020ae9bbdce28a82bfc
SSDEEP

49152:dZbwMX+bdEL770k2dPDybdoDoo04liOXgpgV/qqAld7IuVmO/oCbfAdZ45GgevAA:rok/t2NDyVo9lFQo//0PoCrFGgeAvJ2

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  Trojan-X- Scanner.exe
- Size
  
  48KB
- MD5
  
  efb9abcbe9575d7a3ffaa64019aab728
- SHA1
  
  e60d06358ca64089197c090ae7c8702c763a32f7
- SHA256
  
  dc3ecf600cc682b6b6c450edce18adc5b9294c1b94e092a59b81824be380b918
- SHA512
  
  c45187ef4f41af34bc64bfb990ad082a6c77dd1686afa9024500c12a91863fd003a9313608283c3efe60bc4439b7f423ff8f1dc958eb73f86ca6f3db7c8e1917
- SSDEEP
  
  768:mp1RkkrPmzAZ38M+Zd0l4e+xwHePSZNv4/YJWD62H0SS+WmaVVgfKsNYneRPSWkM:m9mcmp6xHeEYYJWD62H0SSTmaVVgfKsn
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  d9578ff8b495dc575e848c6670be85cc
- SHA1
  
  ef0b7a7859caa85bbbdc9cfc1fe2b6eb10db44d4
- SHA256
  
  a018a023d59bb76aef0b4dd6ff40aa16fd0783927972a9492b26a5e5d0433696
- SHA512
  
  08078f3c3d20e7887b0ce0f3a5aae195a30476f52b8b672e32217c9b515bad67304a91dde6a0c5edac26c2f0db70a0d31a52245fbe65f3430e1ee4a4454359ef
- SSDEEP
  
  24576:TvI5+k9ABzqwFqEMotJKC33aTjWVRGcaFHKC4xJq/6z/o:TK+kGBqErqC8PF4UWQ
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  MSVBVM60.DLL
- Size
  
  1.3MB
- MD5
  
  30ea35d4146b163e91278423f32c6385
- SHA1
  
  b1825677fc5b319bb32e009dde324a259abe65e4
- SHA256
  
  ac49f6b619bd7292045e557cbdf99ea8c649a8b70f660a5b000af9c71c8c6af2
- SHA512
  
  8d5f6441a95a5c827ca75b7785d397806e055055e00bd9f996979433471c4823b66f7d1035fd7f7ebf88b08c9f9de8950d3d9f1ab568dabd94105a913195a0f9
- SSDEEP
  
  24576:3TWpz0NS6ShiAl2C+pToAxafJ6QhT/3ZJ5tfzkIpL8X+PW3OD/nVG3y6Uv7L7M:3TWpoI6ShiAglpBGJjRpL8XWW3OD/Vz5
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  MSWINSCK.OCX
- Size
  
  105KB
- MD5
  
  9484c04258830aa3c2f2a70eb041414c
- SHA1
  
  b242a4fb0e9dcf14cb51dc36027baff9a79cb823
- SHA256
  
  bf7e47c16d7e1c0e88534f4ef95e09d0fd821ed1a06b0d95a389b35364b63ff5
- SHA512
  
  9d0e9f0d88594746ba41ea4a61a53498619eda596e12d8ec37d01cfe8ceb08be13e3727c83d630a6d9e6d03066f62444bb94ea5a0d2ed9d21a270e612db532a0
- SSDEEP
  
  3072:R7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfrb:RNkVsuaRaU6mHGb
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Subnet2.exe
- Size
  
  208KB
- MD5
  
  f18a1d0b7307da55b813ba696deb3cde
- SHA1
  
  bb682d298be08bacae4585fa3b107801893b8640
- SHA256
  
  4337c5614a926e3c15e63332e923d75916c2ebd5529916bc3da96f8cb8d0000c
- SHA512
  
  188f3ef2f84d2dd1b1ffb56f55f15f0fbfd396949b52b99ced08fffcf572d81d7a1fea3e3ce6af40b08c05795e94ab63a11b3e92f986e19e8aee7e68722f4619
- SSDEEP
  
  1536:pb7w95d0NfQZozCvvim0SchctNseNMhYu9m6L9RIqjMSH/cgyWs1QIr52W5uxIB7:pwv0NYZo2im0Zct2j3dlQ5a9P
Score

3^/10

discovery
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10