5f3f05fa89a5cfebb47bd88e205e83e4420e981bb870b04f1ccd23dc8ea55cbc | Triage

Sharing

General

Target

JaffaCakes118_5f3f05fa89a5cfebb47bd88e205e83e4420e981bb870b04f1ccd23dc8ea55cbc
Size

1.1MB
Sample

241226-vdaqfa1pdj
MD5

c591f75c4d947c2737578d8c3d290a12
SHA1

74d4aa79879b67448791e0e49cf766ff4cd60960
SHA256

5f3f05fa89a5cfebb47bd88e205e83e4420e981bb870b04f1ccd23dc8ea55cbc
SHA512

2f6059141270136c1c45660076032375cdcddb96f0c2f2fdac2d08c81839a843cb97f7a01b10a54cc78659d594eb43c73cacbf4d84a8d6da9eabfc98a6b22efe
SSDEEP

24576:bFa098TFPOMGrGeKVIwXeMdkImqQNwqN6:wTNlG4Vv7yqqN6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f6dfbdabd65fdbd63419adaaebe639436ddc2f4da25538019ed3025d49f06ae7
- Size
  
  1.2MB
- MD5
  
  af2b4ec1f44c02befbcaf4ff653368e3
- SHA1
  
  db7955d29c649c29ce8f2f3a9c1a2361d3eff802
- SHA256
  
  f6dfbdabd65fdbd63419adaaebe639436ddc2f4da25538019ed3025d49f06ae7
- SHA512
  
  d42e1b36d4fb0eb9e1abac44d231e3e5fc46bb8748ae233bebb87e4329c0310e07c29d332eeda84a22c3948d611ab99138706599b9f9c564762955c025be7022
- SSDEEP
  
  24576:ZbYXrTMthgJlYv48EJ0jcgLgfl1uLfaDknYfxp05LsGnDwLYqCVfYM2AeugpFUWY:BYXrTMthgJSv48Vj7LfYkYmsYw09Vg+/
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  cff85c549d536f651d4fb8387f1976f2
- SHA1
  
  d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
- SHA256
  
  8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
- SHA512
  
  531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88
- SSDEEP
  
  192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  BtTray.exe
- Size
  
  829KB
- MD5
  
  9d868f97431a3d174947b1d867b72b33
- SHA1
  
  4a60287dcbee585b943e8f897eb02185feafb73f
- SHA256
  
  cc3cac186d69b1a5a88ed13448f1b4235ce33284827843c96abbc1e94de91a18
- SHA512
  
  73cd56dd0b55e4ed412fd6c9e39ad4278d9e4fb3ee9bfe879d3bbfbd00f3db2848441657627bc7a67b45e604a56e39e0d998ab7b2ccf54bed6a1543b44d8fd99
- SSDEEP
  
  6144:sEc5bna5GngT7fwbXlfjydbM+FZvkoxSAvxMS6DBV45xklKMuGYBqHLw5tAqKlyl:sEcwYbXB8LvkoxSND45UJuGYEeSQl9
Score

1^/10
behavioral5 behavioral6
- Target
  
  api-ms-win-crt-math-l1-1-0.dll
- Size
  
  28KB
- MD5
  
  8da414c3524a869e5679c0678d1640c1
- SHA1
  
  60cf28792c68e9894878c31b323e68feb4676865
- SHA256
  
  39723e61c98703034b264b97ee0fe12e696c6560483d799020f9847d8a952672
- SHA512
  
  6ef3f81206e7d4dca5b3c1fafc9aa2328b717e61ee0acce30dfb15ad0fe3cb59b2bd61f92bf6046c0aae01445896dcb1485ad8be86629d22c3301a1b5f4f2cfa
- SSDEEP
  
  384:jOTEmbM4Oe5grykfIgTmLmW1hWSsngm0GftpBjGm3SAlD16hX:lEMq5grxfIndCngVis5
Score

3^/10

discovery
behavioral7
- Target
  
  lang-1040.dll
- Size
  
  164KB
- MD5
  
  e415d6b50f5aa9e6e6dc4e88736bbfb7
- SHA1
  
  ea13ccecd2f6288276ff535dd7dd3e0ed0c939e9
- SHA256
  
  dfa39a6eb2b93529e1596884cd698639b3460a6ac512295895ab427adf2157d7
- SHA512
  
  0fd2bea4f8d398429d7c41610e5280200228db6aed6ad903740b47ddb0025bee3ccfa5f18875197ed518bde978642f6668c800986f01af56e6d4faf669afe80c
- SSDEEP
  
  3072:4LwwdDYhO5h3sHlGtqEzEk7V7QgxdjJaxceShSLsyNcnV2BeAK22H/GALYt7gF3m:4LwwdkY5qH8oEzEk7V7QgxdjJycezsyD
Score

1^/10
behavioral8 behavioral9
- Target
  
  lang-1054.dll
- Size
  
  148KB
- MD5
  
  3caae611d0e53760782ab3762cc6220c
- SHA1
  
  3bb99dde9390632e7200154da35077cf603f37fa
- SHA256
  
  3d417761db5f7da5833244e7343f3a65e66f3b79fdb33853fcf7e6372004b58e
- SHA512
  
  9646dd28d086f0beb239416f5762692a88319942eb25f060358ca6c10d11ab5b94e0b66afeb196652e42cf2ab911b185cb3c491e67bf5c8b8e6c098cc4f62b6d
- SSDEEP
  
  3072:vGZVlF4/MMhFz7NV+iBLMShHBkaonGwnW5x7S1Ac4bCWI:BJ0
Score

1^/10
behavioral10 behavioral11
- Target
  
  msvcp120.dll
- Size
  
  444KB
- MD5
  
  fd5cabbe52272bd76007b68186ebaf00
- SHA1
  
  efd1e306c1092c17f6944cc6bf9a1bfad4d14613
- SHA256
  
  87c42ca155473e4e71857d03497c8cbc28fa8ff7f2c8d72e8a1f39b71078f608
- SHA512
  
  1563c8257d85274267089cd4aeac0884a2a300ff17f84bdb64d567300543aa9cd57101d8408d0077b01a600ddf2e804f7890902c2590af103d2c53ff03d9e4a5
- SSDEEP
  
  12288:uZ/8wcqw2oe+Z3VrfwfNOOoWhUgiW6QR7t5ss3Ooc8DHkC2e77/:W/8wVwHZFTwFOOos3Ooc8DHkC2e77/
Score

3^/10

discovery
behavioral12 behavioral13
- Target
  
  msvcp140.dll
- Size
  
  439KB
- MD5
  
  5ff1fca37c466d6723ec67be93b51442
- SHA1
  
  34cc4e158092083b13d67d6d2bc9e57b798a303b
- SHA256
  
  5136a49a682ac8d7f1ce71b211de8688fce42ed57210af087a8e2dbc8a934062
- SHA512
  
  4802ef62630c521d83a1d333969593fb00c9b38f82b4d07f70fbd21f495fea9b3f67676064573d2c71c42bc6f701992989742213501b16087bb6110e337c7546
- SSDEEP
  
  12288:McPa9C9VbL+3Omy5CvyOvzeOKdqhUgiW6QR7t5s03Ooc8dHkC2esGAWf:McPa90Vbky5CvyUeOKn03Ooc8dHkC2eN
Score

3^/10

discovery
behavioral14 behavioral15
- Target
  
  uUDFImporter.dll
- Size
  
  500KB
- MD5
  
  b392d2bcdc38f26cff47ef385e49ccd2
- SHA1
  
  564b6f33f7850f66225b693890a2f1f03231d4df
- SHA256
  
  c51e39f09d39e39343c3030fb9549452f1e548e4d8bc9fdb6138f7605d9eaefd
- SHA512
  
  6b248183aabcdab5f5228cbc4d950e23b0ce9f5a000b0f5e200d2dd09edff93d41f373b9d688695424b7d254ce3c18f226511338c157cadffbd8bfad20b1ee82
- SSDEEP
  
  6144:kDpRIYDddKQci/lR3rszSeJFv+iKhyMrV5rGO3Dg+2RMPIJBmfqDF2pFMBbdcqN3:kDpR5RaHynrGO0+2iPIZFw27cqfHu2
Score

3^/10

discovery
behavioral16 behavioral17

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17