Overview

overview

3

Static

static

3

ea330c923c...18.exe

windows7-x64

3

ea330c923c...18.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

3

$TEMP/getm...ss.dll

windows7-x64

3

$TEMP/getm...ss.dll

windows10-2004-x64

3

CrashReport.exe

windows7-x64

1

CrashReport.exe

windows10-2004-x64

1

Funshion.exe

windows7-x64

1

Funshion.exe

windows10-2004-x64

1

GetMACAddress.dll

windows7-x64

3

GetMACAddress.dll

windows10-2004-x64

3

LangResEnAmerican.dll

windows7-x64

1

LangResEnAmerican.dll

windows10-2004-x64

1

RouterSetting.dll

windows7-x64

1

RouterSetting.dll

windows10-2004-x64

3

dbghelp.dll

windows7-x64

1

dbghelp.dll

windows10-2004-x64

1

funshionplugin2.dll

windows7-x64

1

funshionplugin2.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    ea330c923c9410215d108d865dabe37f_JaffaCakes118

  • Size

    2.1MB

  • Sample

    240409-rt3vdacg8z

  • MD5

    ea330c923c9410215d108d865dabe37f

  • SHA1

    0ab0b37f979c7d10924733a819a0a734346e259f

  • SHA256

    e268e754254ff81daee4756b71edcd805d97c436d59af6d1d3f1ec36f79c1a49

  • SHA512

    dc5e4190fa273aa105883d14f00cb8f924844df94f3134e79864652d9a5456df89978e98aabcaad55d04962501ba5dc7d62515dcc6b18c2210a75e3b92050ad4

  • SSDEEP

    49152:57rcWSeiWaxnYfH+k18hBppdvIDbIAEJuZ8kTIJjx6750:hQWSaqsHx8ZvA8AEJueiIjcd0

Score
3/10

Malware Config

Targets

    • Target

      ea330c923c9410215d108d865dabe37f_JaffaCakes118

    • Size

      2.1MB

    • MD5

      ea330c923c9410215d108d865dabe37f

    • SHA1

      0ab0b37f979c7d10924733a819a0a734346e259f

    • SHA256

      e268e754254ff81daee4756b71edcd805d97c436d59af6d1d3f1ec36f79c1a49

    • SHA512

      dc5e4190fa273aa105883d14f00cb8f924844df94f3134e79864652d9a5456df89978e98aabcaad55d04962501ba5dc7d62515dcc6b18c2210a75e3b92050ad4

    • SSDEEP

      49152:57rcWSeiWaxnYfH+k18hBppdvIDbIAEJuZ8kTIJjx6750:hQWSaqsHx8ZvA8AEJueiIjcd0

    Score
    3/10
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      12KB

    • MD5

      1d5c649dde35003a618b9679d5d71b92

    • SHA1

      0409bbab3ab34f8c01289cdd847b4d1a32d05b18

    • SHA256

      0f4d3cee24e3f310fa804983c931d3628613988a24f0be7854f63a9309b8e45f

    • SHA512

      b432ebcc52905662d61a3f17e08e209a3f9d836a9071b3b5e80070af7ebcf34cf66c44426dda041c2a258fda4787e5692e2b35acbcd73288fb84fe3c977bbfd9

    • SSDEEP

      384:pKlm7i+c3QW6ckPhyDEaLnA2bbBBIXwZ:8qi8BcyhEhLBbbTI

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      6KB

    • MD5

      5aae8598d8b53bcec81d8e8c8a6732f9

    • SHA1

      d071fcc74a107c7d7bc5a493d305b00976b07464

    • SHA256

      be3f03c07be54354b8a9a30a8c0ac384f43c245c9b95ed1025549c76642f3fb4

    • SHA512

      d20af152b9d1903cd9cd0ff584f14f95ee69cd7149c9ef9369257d08659d1a7ab5860055b39ebd0ead67cfc31da2571175623a5676116ce999acea2b7a643c1d

    • SSDEEP

      96:VLJdRZk8OkmE+WHw0FMXF6CWhFxKpKsBQhEfP0:VLjPk8OT30FFAmCP0

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      4eff5fafd746f5decb93a44e3a3d570c

    • SHA1

      a11aa7681b7e2df1c7f7492a127d332d1495ea8a

    • SHA256

      cf61ddd15d63c25a12caee70f51ea736cfc02195c42e56ee01b33f689d3754c5

    • SHA512

      cde82d2a1f28506e4c2264f6b82017a00af32f138ebcdbaf4cc58463870fa626f708aa57465294c5a6f096c886841e7b9112b85bf3ea2f1d8f2da816b51b2d72

    • SSDEEP

      192:0OycJo/rJVCmIDNLU0dq5RD00lspbub76yL:6/QQ0d0RD0USq/6y

    Score
    3/10
    behavioral7behavioral8

    • Target

      $TEMP/getmacaddress.dll

    • Size

      3KB

    • MD5

      ab29592d8a29cde732fea3b98f6808e9

    • SHA1

      3b5e35a0bf8068a5bdc838247f76295fb42fe9fc

    • SHA256

      93cf8e896ee21770e4177dc65309a61688fef8bc03c59457cf2083cb6876ae14

    • SHA512

      e71d0e572f875a4ff38a83e8d644796eb48181c58505c878c4350ba0b383ee81a81ca04b149c223e358e3d0d69d9a58b9b828b977d6a849ecce2bf3ad2ed65a8

    Score
    3/10
    behavioral10behavioral9

    • Target

      CrashReport.exe

    • Size

      176KB

    • MD5

      add3d181255b187a044d152d6f230ce0

    • SHA1

      4f2576da2824efdb84617845a0cbdfdbea049a02

    • SHA256

      635cafc8f282a55050c1532fa30591e6cdba2af4627978ba05e8a65e05ba554c

    • SHA512

      e4f8d530d48615afce28f073bdcfa8d5bd78db551c1de414feb4351e07b7685ccf9fc30d04de12d28d3359d3b521f3fd06a3dea1c1909b09381ce673ef97b6d0

    • SSDEEP

      1536:HwpXU0d/zdxN8+IUMm7I60jXXDGbK4Lyps8Gm0XPO0vCDbNJWgM5ZB08aUdnToI5:Q9xNFUmpqSbcUXZ0iVTBfCCk5pp12Y7e

    Score
    1/10
    behavioral11behavioral12

    • Target

      Funshion.exe

    • Size

      3.1MB

    • MD5

      d8fe77984d6ef621e1cb329f3077b6e4

    • SHA1

      0fdbc3df79f4e6944756779627d7fb68746f2083

    • SHA256

      b2a1975bb2958c77cc4d82e7caa3b65608e5c84fb7def785d5c2384919b1f6f2

    • SHA512

      fc5a06b9e1ce8814ae8fdbcba71dff539caf2a5394ccc9d5c6d77e6a4ea2776e5e311f3a8306c6e7d95bed81f0defff7d9371eee4de1a8723863a525d48e5dc8

    • SSDEEP

      49152:u17D/Dk2P1aKw7BRknw7ScMWVXz/Fc3WxgX+6FfYRXhmA20j7LPZqT66fMV:CLR/i1MWVXz/Fc3WxgX+6FfYRXhmTfG

    Score
    1/10
    behavioral13behavioral14

    • Target

      GetMACAddress.dll

    • Size

      3KB

    • MD5

      ab29592d8a29cde732fea3b98f6808e9

    • SHA1

      3b5e35a0bf8068a5bdc838247f76295fb42fe9fc

    • SHA256

      93cf8e896ee21770e4177dc65309a61688fef8bc03c59457cf2083cb6876ae14

    • SHA512

      e71d0e572f875a4ff38a83e8d644796eb48181c58505c878c4350ba0b383ee81a81ca04b149c223e358e3d0d69d9a58b9b828b977d6a849ecce2bf3ad2ed65a8

    Score
    3/10
    behavioral15behavioral16

    • Target

      LangResEnAmerican.dll

    • Size

      104KB

    • MD5

      61c5b8ee664e337a01a77f6ef3b0d59a

    • SHA1

      3ae1292d0a2d36e712916c8a2f075f89549f92aa

    • SHA256

      c89a9f6e90694d381aac02b657400f65a8dcf5ad7ea17be943d6bcf46f056968

    • SHA512

      fe16100c71cdf2db46cecddad6a7f360d1c53dda4f9d1061da0d23fae8ef22e40131f6007e440dcd3c63453e9bca88177c09c36a4dea2f701d21cddc35bfdfb8

    • SSDEEP

      1536:n+2n4lUo5XbS5OsBJ5Ci2tM1g7IpW84RICJRyN4w:n6BS5rMi2tTcWSCfyWw

    Score
    1/10
    behavioral17behavioral18

    • Target

      RouterSetting.dll

    • Size

      164KB

    • MD5

      226a4a8125a828d5f572903c0f52d935

    • SHA1

      efd37aaccece75cd1da9ebd088bebcfdb932b0a8

    • SHA256

      8f4942522492292dce6b5a3a7e294462f030f5e1425d97cd52ca4057526ea9e4

    • SHA512

      9d97931d52bc04a55499f506143fb9f5ca13ffb14362fef273056033a5b151aa51d5130cd5c88e523e17852e5cf3c3e671299430f99d8e256b7f393cc68017b2

    • SSDEEP

      1536:5FSzjNAMbpet04Z/5oGRy+2v4i7/3nC+ycV4d2gBrYa6JiUXuGjhAoGnu5T5Puty:K9A+MDx5ri7Nk2lJiy1Aru5Vut4n

    Score
    3/10
    behavioral19behavioral20

    • Target

      dbghelp.dll

    • Size

      1020KB

    • MD5

      74edbb03de3291fcf2094af1fb363f1d

    • SHA1

      16b5d948ed7843576781dc4f2a391607ac0120a4

    • SHA256

      dca9f45efed8eab442b491aebda3e3cce7f5f9fc5de527d2dbdfd85a5be85dfa

    • SHA512

      b08eb03c54f25979c5aee745530ecd51c5761eb99871b867ff84e14590b32ef3247e17cf63bf953ee1efcb0fda8c4540191b9280db33359fdca352967e42b289

    • SSDEEP

      24576:YXm4cpDFYD2aC0jH5yrrXlpWrCSyZC0wLHr298TG00g8EAB4a:hpKD2aC0jH5yr7DWRyZlwH29vjDIa

    Score
    1/10
    behavioral21behavioral22

    • Target

      funshionplugin2.dll

    • Size

      2.5MB

    • MD5

      7e6f82f816cc1096bc1519e9eb4e23dd

    • SHA1

      b39c7da4affc932a6c6822117cb94e3a8eed1cdf

    • SHA256

      44932776088bbbc0ff9ba6f6bbf2ab8489f4dcfad9077360515c6e8792d49b37

    • SHA512

      3d19178f55cf8ddb805e124a871e4f99fa79b74c7467e9621566cd3a8de549abe739f97c4be947601fa35db2eb56dac68c7e886c49ef7f3c0ab04ed3ffd3dd67

    • SSDEEP

      49152:ZWuEFZVPr2thL64plyNTR9HmanTD8mIGd:ZWZet842l8aTDPIGd

    Score
    1/10
    behavioral23behavioral24

MITRE ATT&CK Enterprise v15

Tasks