85c87fa291657a6197e4ff20cd1851fd09bc4c3fcf074a127c212cb25f8c9512 | Triage

Sharing

General

Target

9f09d874344b39310aa6fe3c392916fc_JaffaCakes118
Size

527KB
Sample

241126-btqxtawqhw
MD5

9f09d874344b39310aa6fe3c392916fc
SHA1

006ab8f1f7f5c45b31cb1437a03b0708ca752dd0
SHA256

85c87fa291657a6197e4ff20cd1851fd09bc4c3fcf074a127c212cb25f8c9512
SHA512

3cb472ce3aae79f3f2a27e7f0974963d6576a003a4d508ac324feb246c941bf2f4b157296694e214d64dca787a195b80aaa6a15eb7ddabb2ea78960ac47a5b96
SSDEEP

12288:5AtXxIc65PF30fXvbjclse6ZOHbysU07h6TFo8d7pQEdS+SU:5+BIz5PF6/bjcae6ZOq0sFo8NBdS+z

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  ICOtbscq/ICO图标生成器.exe
- Size
  
  577KB
- MD5
  
  9efb008a30b2efd5600b066d0cde079e
- SHA1
  
  6098e424584cad9a0e7be4d1775f916bb2d7ba64
- SHA256
  
  41de2a2a67f03ed30631b332f07aa054e665d75e3569c0d4a7d1216f89e7e5f4
- SHA512
  
  28d95ea0fc201a37b127a4d48494491a2151001b7a64b28a7b34e4ceddb250d9c3f9cfdceb7919d97febf046bd69e385346d1e2160ad87bd508ee90f3b074d10
- SSDEEP
  
  12288:fhjMtwopV84vVcf1pPpz7Eb8HG4e0pRcI1dHTo7848lK:fhjMt5U4WXtLHG4z3c+HTo78VK
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  ICOtbscq/piaodown.com.url
- Size
  
  121B
- MD5
  
  51443532cefd342f1f97d6f7d3c27e3e
- SHA1
  
  3554a5defe7a5d0edb5a5ef4629aabb49a9be10b
- SHA256
  
  052bf134ad493468afa3e627e70b36c83278d94fdd4284afffe99a7d3462ae36
- SHA512
  
  bd26ccc6517f3fe6fcb4e65b2f703dfc05ab216e5244ffa73d03b2f24ea39a65751850986ae0ba460280aa8b8535b0d6b956f97fee82cfe0e3eeec12ab04f373
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4
- Target
  
  ICOtbscq/飘荡精品软件.url
- Size
  
  121B
- MD5
  
  51443532cefd342f1f97d6f7d3c27e3e
- SHA1
  
  3554a5defe7a5d0edb5a5ef4629aabb49a9be10b
- SHA256
  
  052bf134ad493468afa3e627e70b36c83278d94fdd4284afffe99a7d3462ae36
- SHA512
  
  bd26ccc6517f3fe6fcb4e65b2f703dfc05ab216e5244ffa73d03b2f24ea39a65751850986ae0ba460280aa8b8535b0d6b956f97fee82cfe0e3eeec12ab04f373
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

discoveryevasiontrojan

behavioral4

behavioral5

behavioral6