5cea0fc60234b5e933ea3df804b8afcb08b116f0ce4ac57580b09f9d78d2add9

Sharing

Copy URL Twitter E-mail

General

Target

f070e5535278d0c95caf9e38883bd4e1_JaffaCakes118
Size

3.8MB
Sample

240415-gdq6jaga46
MD5

f070e5535278d0c95caf9e38883bd4e1
SHA1

a9af50965e7cdd1f57a8b7856693850a7f2db61a
SHA256

5cea0fc60234b5e933ea3df804b8afcb08b116f0ce4ac57580b09f9d78d2add9
SHA512

69a565cdf9bf14fa51137a57c429bdabe7b52a6b627060bb597b8a0a32ef249c9e4ecd7928fede313273277ad46715b76685ae063c448d6665e082252dcfc8b4
SSDEEP

98304:EXPSt5mYO3dq/HAAYtJndbmHfOqhk/pjIqn6lQF:rGYOtq/gAYtnqHmz/pjZn6lQF

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  f070e5535278d0c95caf9e38883bd4e1_JaffaCakes118
- Size
  
  3.8MB
- MD5
  
  f070e5535278d0c95caf9e38883bd4e1
- SHA1
  
  a9af50965e7cdd1f57a8b7856693850a7f2db61a
- SHA256
  
  5cea0fc60234b5e933ea3df804b8afcb08b116f0ce4ac57580b09f9d78d2add9
- SHA512
  
  69a565cdf9bf14fa51137a57c429bdabe7b52a6b627060bb597b8a0a32ef249c9e4ecd7928fede313273277ad46715b76685ae063c448d6665e082252dcfc8b4
- SSDEEP
  
  98304:EXPSt5mYO3dq/HAAYtJndbmHfOqhk/pjIqn6lQF:rGYOtq/gAYtnqHmz/pjZn6lQF
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $APPDATA/CCTV/tv/CCTVPlayer.ocx
- Size
  
  366KB
- MD5
  
  b737c23b2bdbd9bff0c841704d33e7f7
- SHA1
  
  9217e98aff05158ca3db595e7f0d806d6dbd723d
- SHA256
  
  bc9d2fc296e10ace28824532c429f9b2242efb39e04bbc3da42cc4962ee72bf7
- SHA512
  
  a02310ba74b94009e59e886e099ab7295829a47b152a80db6ab11f12f3dd72836b07056ad6112ab415e96fd7b00856dba7a15146e03d8bae53a3bdc508e49bee
- SSDEEP
  
  6144:9Jq9M2zf8BzbE5iwa9NceApLVM/0mxgHcaWuS+8eZTmjEhoqXCM39MahMI6lr:9B2zUNE53a9NdAp+6HFWuDOoho61h8r
Score

7^/10

persistence upx
- Registers COM server for autorun
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  $APPDATA/CCTV/tv/Reli_CCTV.dll
- Size
  
  2.4MB
- MD5
  
  a6af7f7bedbb27f2cbc6ab9144d617d3
- SHA1
  
  bb1d81552707e38d5d7cb43995f33eb5c6bdc928
- SHA256
  
  088e9c2fe73120d9bcc31d3c5a66b2e2cf7bba641e9b2ad8307bd54d221fcf3d
- SHA512
  
  f74b1a43c52e4d7e109e3b4ea90f549186c7b6ce7b09706157854e0b4a6ca277c02e47b753f9609046b48991a1c5036ae6ee505735eb7005b74ff230c00cc584
- SSDEEP
  
  49152:kofQYoJ5yjiQigAOl2vLvV5TQGIPfTv3Bwa:JfQYG5yjiQ1A7bIHL3j
Score

1^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/BrandingURL.dll
- Size
  
  3KB
- MD5
  
  9c3488b5e9655d1837c3963ecec33f70
- SHA1
  
  f0fa9b4c29e75c6e4419c4633d09f2797aee2ef3
- SHA256
  
  05ef4beb7fab9d04c1fb251874166fa2d73a34b4a7f2b145d37a2fd00c88979a
- SHA512
  
  6af9f88d65d2279a71620f2a656062b1737b3a9a1692ed4e5887bdee891ce08d21c5c0b25ab3acbe6da9fe255dcd7f8a517c2751e73dc56add216740c945e4a7
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  b18dfaded8f6d2380fdfd8f6b6969211
- SHA1
  
  969fa0e906240ab1123254feeb833c275626cf76
- SHA256
  
  747d0222b652dbfc85e0de4f8486473662d325a55e32c7eacb91e53e37ceba58
- SHA512
  
  25fb09b8657997d31e61c908f1cd08357c1a1b68bbb1ba377e87b6a3eb347a2ef96c1a771b6c4332853abb33728c55c83efa73df5da03f3dfc132f8a69a2886c
- SSDEEP
  
  192:66JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTLK72dwF7dBdcQOz:66JaVh4I5rpPbTL+BdhO
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  9b17a13f814b137f88b961c087858063
- SHA1
  
  c290dd3139b79aa340aec3ed3d674160433035e1
- SHA256
  
  e54792a179a06acbb9b69c117ee804dce070505d1853d6e7d512f2a055a801b2
- SHA512
  
  3a625f5f13e344c24973c79c074d1ced4d9206f87f392dc7c8f0c116d0f2b878b60340e2377d0240c47f0e34e25e4e3af8b196bbca1c6a29a0f51d8408e8b0ec
- SSDEEP
  
  48:SnNQ/z+vUML8eYXICmlmGYKHz0JSpXSxwo6mpwzcR3RqG8aEJcABofgMGKO:Bz+MM4eqmvz0JScx56mpwzAhWcGV
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  810f3a0aefe36a9f63e29e604bea91a9
- SHA1
  
  2559d3d4adf51f8ecbe2d07e669e344eb7d0bd80
- SHA256
  
  f160eb7a1b4eb8d2e99e7424ae058acd81ba5019e43cbfa0ce81e3102b356779
- SHA512
  
  836b73c38ab60260e1bc81ebf8347e14d02453fc361b7d6f10f137287b8189f8bc43758ce2d9def8fd1c71112aab7ef1930af2d64ae69f6d4e58a6fe17b310bb
- SSDEEP
  
  192:CO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1argMO:XKAFERdlxhGRYUzqZar
Score

3^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/ToolTips.dll
- Size
  
  4KB
- MD5
  
  9a0da2692764bb842411a8b9687ebbb7
- SHA1
  
  5c3a459faa08a704bdf162476897ad4580ae39bd
- SHA256
  
  28aeaa48c929188a0d169887cc3f16370741467ae49e1db59763f030710a6bbb
- SHA512
  
  814d686617df4fe9f50a93dac9428babff3a14836aa27b4666976379ec3fafcab65fd82d8886998fa65e7b59dc192ca067cf8b4cdeb8ef551812912d80dab8ed
- SSDEEP
  
  48:apm2+v7BWCLWQqLa7JZ0ZK59HXesxdrqZZSakw6/K:Ymjv7BWoTicJZ0ZKPHXVx1MOw6
Score

3^/10
behavioral15 behavioral16
- Target
  
  $SYSDIR/pncrt.dll
- Size
  
  272KB
- MD5
  
  13001eb0a58b4de96126b16ab15fd8cc
- SHA1
  
  4dfe6d2d02e9fa194f4af3d054b458b5a4bafbe6
- SHA256
  
  e983aa97fe1ce6af92f06433a71e03f54d3fc78392e26691cace927094bab8d7
- SHA512
  
  1a7c052bc1e7c824a3aff5e27c5cbd0720893e341dfb93062021b82c3a6d940c4ea23cbcdfaaeb174d90f51c36f0d8c62f693766f42172f894b6b689d26f49b2
- SSDEEP
  
  6144:3m7wHLiH0k6OgfjvQ0mvlxZ/PeT8Ah8EoHiIKaGo5RpTufufVvtr+dj7GcuT1JOy:3m7KLiHl6OgfjvQ0m93/5q+iIKaGo5Rr
Score

3^/10
behavioral17 behavioral18
- Target
  
  Codecs/ColorFilter.ax
- Size
  
  141KB
- MD5
  
  fa098ed1394496b2ba53f1773f70d711
- SHA1
  
  6db54dfee27c70e61e3ef1d5374513c16fd602aa
- SHA256
  
  19b84b912d782333cfed1727e69da83846b77d7c90736b5621b438f9f50d107c
- SHA512
  
  74b2704dba6ace3fecca0dd6e790162b961ca9fb9ae6240aefb1f0d52959f58456c626378c745cbc155a8928d850614b8df6804b851e8d017c5ebeca01c17a8c
- SSDEEP
  
  3072:9ymeNWoqvzMcvAXQQ0vlvYKQptcabWQlHs69rDc92:wE1vzM8bvhs7lHs69A2
Score

1^/10
behavioral19 behavioral20
- Target
  
  Codecs/RealMediaSplitter.ax
- Size
  
  372KB
- MD5
  
  b91968f4f21d803d2467da89d9cd7275
- SHA1
  
  a0e1a676fe340f6bd211a1b40c0b6d8d1715d82e
- SHA256
  
  4287023170ab52ec3883af9a464d281358ae44225b25b101697c2ae66c82f935
- SHA512
  
  047470fda7ff9cda15cc4baaf0d5031bc8c37a9a7a827601c0e6db149f3af5149860afc45dd92c1a035f537971a70cb0f31372de12c080cecc3d93a89e6b8d65
- SSDEEP
  
  6144:sbH9JP/W0D2hzNqURg44nlHR0urOU48+EQHapawA9MDL:OJP/W0D2Pq/rpR0urOU4lExnn
Score

1^/10
behavioral21 behavioral22
- Target
  
  Codecs/asfsplliter.ax
- Size
  
  64KB
- MD5
  
  4a7e26d268c355fb5da19a4400e7770b
- SHA1
  
  ebe3c19a94e12c2a5d39bc816317961797a6c89b
- SHA256
  
  5c44df6b0d4d212271a1ca4c008ea003a2dd1168059333169b3562c51065c3e9
- SHA512
  
  db5f0161d64b27cebc6de443e68cf596725ea1034f20c58f2a019f2d50e67574e33ffe65e8f5a9b21095cd2f309a97b58ee3603e528276aeefa67c9d7b3234f6
- SSDEEP
  
  768:Y9We0OJXnfX2c+AOW8gpukVl5sqiCpl3il7T59bSob4p9Gk0:Y9WEXn/2c+7jlkV4dCpN67t9bSXG5
Score

1^/10
behavioral23 behavioral24
- Target
  
  Codecs/atrc.dll
- Size
  
  76KB
- MD5
  
  ed7c402a17a33d428a6d0dad2e7c42d8
- SHA1
  
  93a6dcf0abe28a01403da578d685cc5c0b48bb82
- SHA256
  
  00cb4ae39a6e18c07e12ae53150ee29ece9ef4561a496920f19813aa431daff2
- SHA512
  
  bddc074123d3f144d7903d5f2502f8961ef79e1a06ce05d1769f37314eb276729444647a9f5c9e80fec0512cbd07b5e46be40f6f6015f8b1a255d7daf3ae28f1
- SSDEEP
  
  1536:k7b44Vh7qOxPccMvJY1cnd5unZsQDUhl:k7MuPccEYW3IZhDUhl
Score

1^/10
behavioral25 behavioral26
- Target
  
  Codecs/cook.dll
- Size
  
  64KB
- MD5
  
  fa220dae3898b8578c34791648321a38
- SHA1
  
  12bdd5396e996d071368980d36ef6f6c7b39f936
- SHA256
  
  f8b5898569a508e370eb25db27c1cba440c9d559529850c05589e56a93659835
- SHA512
  
  9c2ad73fd43de7ca16a1d75b2974a737dfe1478d094783861ff5e3f994e17bc9e36e31f130296b497bb8955849be31db526018c0621cf5b09496fc6e5c3d6f34
- SSDEEP
  
  768:79rczOVJc8avUhcRxV6Sz+b2G90YnGZosMwCJtVSk7K+t6tj6tVDWVp3Ghv+Xb:7uqc8/aUSz62G9LnOnMK+t6tR
Score

1^/10
behavioral27 behavioral28
- Target
  
  Codecs/drvc.dll
- Size
  
  260KB
- MD5
  
  e9ad4c6feede8ce70a1a21ed1dc0e2ad
- SHA1
  
  ec6b32969e43328a177456be63864d004d501fce
- SHA256
  
  ef8d7d81cb460db57f2e737ca0de3e0c6c06f78273e49a47b24f0a1eeaa2909f
- SHA512
  
  ccd0a54e989b882db33e932fd95d29922dcc3e8608f32beef5882182be0534d809f67ce4d54ac894165f51e237ad39402ca97cf05e933fdd3c01c4f6ae50643c
- SSDEEP
  
  6144:hsNg+cXo8ZJI54BxrFPpH5Dtf5DNWoEaeglljEz:hsNg+Qo8ZJPWoEillYz
Score

1^/10
behavioral29 behavioral30
- Target
  
  Codecs/raac.dll
- Size
  
  540KB
- MD5
  
  cbb31c7b408e92fe01bd7ef7248a2b24
- SHA1
  
  3854ea40efe0a6f1a3f752ea6c2d915b952fb22b
- SHA256
  
  80fe7db8b85c4e7c767ba7a9f3d2426933beec18f9cc4ce4a279e96b41683e27
- SHA512
  
  1cd5dfc6aa86f432915bce4b54b258d370fcbf41c4c87ca4d45b0daf0560b945f0bfddaf93e274a0fb71659b8744776142f8afb384a745108454f894fdd59c0d
- SSDEEP
  
  12288:SWTRJoKssbGkZvYdizYMEYeT6ueQpcNwtXDDDDDDDDDLDDD6NcKKKKYYYYYpDDks:SW8KssykZgdizNEYeT6ueQpawkNcKKKG
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Registers COM server for autorun

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32