51488a93ef9db5733c189d0b986b62ed7384fd15a2b6b18b9cde2c5dd6051ab5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56cc8de1a789a1bdb833524631de1f8e_JaffaCakes118
Size

139KB
Sample

241018-lyytbstaqj
MD5

56cc8de1a789a1bdb833524631de1f8e
SHA1

16f151fc34f9f2eb3724591b8cfaa08aa9169a00
SHA256

51488a93ef9db5733c189d0b986b62ed7384fd15a2b6b18b9cde2c5dd6051ab5
SHA512

d1cc85b5a236d3a705778b906aee712675d33318a1f8076ccad442c40439fdf730b4464dc3de5a6af72c263765f14e19022f1689e1ab8e3f7c991868c7c368c4
SSDEEP

3072:C/eIs8qP9L9M4i+5lEal71dOfefPcUyyj+HE7375vtyCsQ8F:3R8qP9yb+3CfeHcUy2+q37HUbF

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  Aplus/A++ editor.exe
- Size
  
  60KB
- MD5
  
  2444b10ee3b296832b2c7a1eff0b8322
- SHA1
  
  062c0f8922e6e9f7c88614c056d913a8f930ef06
- SHA256
  
  81a7b94a7d280e160b8e54c16e1f91553523d6f74276518fd70ec1d831395888
- SHA512
  
  2b62e8c5a8b0625076d7f75d7bd79e4798c32199339c204852d0fa22db317cbc5368d2b15e88775eba588f7ff068c525bb2b02f34c74ab494af75b549018d531
- SSDEEP
  
  1536:/SvD2i32TZlVMgExIGa0eCAMRTnPCCD2:s6iwsGC6
Score

5^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  Aplus/A+++.exe
- Size
  
  172KB
- MD5
  
  a4f58f4fb59cb3d223905e1317583ea9
- SHA1
  
  a21a9fbc6e217636abe2bc91eccc8bf62fbf4918
- SHA256
  
  62ab0628522fcfe8cf0ced52da2a7259b109bc2b497a8d6dbabaa73da76a0e81
- SHA512
  
  95fc9ea0d345c9f930bf190fc8f62f8975c951a1e8b08757efb66b77df897b2702518a482b6da10dd6bd9b9186fb95db35bb638a0daaaf283d4b73d3fdf038db
- SSDEEP
  
  3072:O4M72pMLpvOWD4qpYkR8wXX73hBTi8paX3uwQch7xR:z6pxD4qynwn73hBT7aHuwQch7x
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  A.BIN
- Size
  
  176KB
- MD5
  
  59137f497534b152e83f102eaf1f0d1d
- SHA1
  
  a18695b1718620237d0d7a9370f4d780d68ddba7
- SHA256
  
  9e45eab0652c1c25ca63f3461bdf2d66d40ab95d78a28937a75c6a41f4b91174
- SHA512
  
  88120a9d04f5e8792f3093a7ca7188cdecc8620584f1e4e70099e11de146d63d917eecd0a9e00ae04ff19890d23da92cf5c2e9783dfa95da82d798a655886b79
- SSDEEP
  
  3072:Cq6H3ItKN8zbFN8uBSroiJ/GGMPZLs3KKGQa2eV3egDnQEvn4Yf3VaQBZ67G:Cp58zbFNdBdiJ/GG+ZLs3KKGQa2AegDC
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  EditServer.exe
- Size
  
  44KB
- MD5
  
  f006451b76e770b648a18562a9ca8217
- SHA1
  
  74a08bf6a0089c103af891b5aac26b0bcb1fd32c
- SHA256
  
  72fc82d40edd895210c5a36c597e064286359318d86d9930b04181796969561e
- SHA512
  
  8af0da7c7d258838435763c1e14e664172521b631cfbaea6105ad0fbe997bab80f6e8aa019933e084fe88a556c66a0ea2823cb8a7bffdbd1f95cb1c86b816a73
- SSDEEP
  
  384:/TDGvDpVzGyB4br0qZH4xc/58CCwmJBwdPw/TEt3EFr3WyQaDpVz:/PGvDbz5QnZYIeCCudI/TEVEhJQaDbz
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  Aplus/INSTALL.BAT
- Size
  
  80B
- MD5
  
  59b9f8431b27b3c63805fce7ec5b330d
- SHA1
  
  8ddd44ea8f44dcf3bb76cdf01fef77c4d8ec21b9
- SHA256
  
  0380131e0f313b77225d59b599b5b14a8c924d612fc58b7cc48c506f0c421298
- SHA512
  
  b51a03e229b637217808436601d7e317b6702874fdb5a1371bc59e3a6e0624e61c09e3897405721ada5029659754aec9b47574c62ce23d88389403b28b6d4a90
Score

5^/10
- Drops file in System32 directory
behavioral10 behavioral9
- Target
  
  Aplus/chameleonButton.ocx
- Size
  
  51KB
- MD5
  
  63ee153814711320c028c75a99b21485
- SHA1
  
  9196925c43d10548f49353bf2c9c9dcef66ad7ab
- SHA256
  
  1cc30d1ba483093de91244fd08d98e5fae550dba0164532c7e7335c76e46cc42
- SHA512
  
  5b04985c3762963dbf0466b4b16f3ec896aa61c56f25377b79455b75acc44c95e62a69719c310de9f052c21e874838b02fb01330af620e89a29e6ded77994da4
- SSDEEP
  
  1536:tqZ2oI0Ku81d4V8nhk2tzG/6lbsQp6U3C2DmS:IeuirtzG/Us26w
Score

5^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12