565ea5b207facf99f94297836f52c852726ec97eaa6ee93d6d2303a5e3629123

Sharing

Copy URL

Twitter E-mail

General

Target

fb45c6264eaee881daaa092e3ed6f4cc_JaffaCakes118
Size

1.3MB
Sample

240419-11774sgg42
MD5

fb45c6264eaee881daaa092e3ed6f4cc
SHA1

f9beb65e5e4c15afcd699183ea94179868861a22
SHA256

565ea5b207facf99f94297836f52c852726ec97eaa6ee93d6d2303a5e3629123
SHA512

5ef298f3bee8bcacd7ee177658d5af1c6dbfe883f6a439d0643a9e73e13b520beb152ce0be6c14f06f05d63e2ba3b2881b8801c7a112dd733d22a9cc60a58b2b
SSDEEP

24576:UUADOR/QHgH8Jl+SPfWc9WIPQvJIBtJpceDQLTV73hQljTChzwn35U:UnD6WoS3T9XEqn3p23ID3C

Score

7^/10

Malware Config

Targets

- Target
  
  IER.exe
- Size
  
  1.3MB
- MD5
  
  8f568cd59561acd2d01ad86f118eb5d1
- SHA1
  
  cc7fe66f16f1fbbc64104322ad8913897dc3174e
- SHA256
  
  c3ccf448aa4ea68d9af82ff2bee8ee868bba70350c0e76abd512e81ed0c750f1
- SHA512
  
  86953344aff3cd091347dafcdc50453b6041147b2e5fcc099568a34f87c9a039715536b0bec6053a9acd052ebfc40f22cc865747b6c86f63a2726784225f9f4c
- SSDEEP
  
  24576:EqD2EP5tKwQFMesBvFNeuew8Nj1wSz6m9xieWUQgjtp/Ttb3HToLmTgKgN/HNJ:EqyoXKJqepwUj1wc6m6CJjj/TtbjVgKC
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  //uninstall.exe
- Size
  
  42KB
- MD5
  
  c39718ffdc8f16f6ac80f8349670bfe0
- SHA1
  
  2afb5c7809b2e082ceee70646af36edfd044f7eb
- SHA256
  
  d55f3f9411ae4999c39e5f3c8a9f86ea7335f893ea0f97733ba1e51eaeded723
- SHA512
  
  a89cd54ae4b3c5dced72f93913a601f6fe6216d8c09bbded33e03c5d229b57d4499c102a792f910777b34134769b01d85503536c7a1f622b34105a9d27c1a34c
- SSDEEP
  
  768:mpUheCMl4kpfBzygqhknyKGm0MO+KjcqbVdjUMtFlBJ292GXQ:mpUheCLa9ygqgGm0quDBJgQ
Score

1^/10
behavioral3 behavioral4
- Target
  
  /AdMon.dll
- Size
  
  136KB
- MD5
  
  ea80b3432f3637db5e51868010506738
- SHA1
  
  57b753a962c0663f667601fc26173600ed08c370
- SHA256
  
  76e3c8fdb610d6e59a43e7e3f47d4939eb936bba78bda44ed83b3e6406762916
- SHA512
  
  68ea2490324dc7c847585ebe05e880503d192d7d7a6dde34af39ebde5dac550110482c18f90243c1987c524accb1e21f6cc4ad4f271c5f70cd89dfdb334b80f7
- SSDEEP
  
  1536:dAbTnUcUIAE0aGO/oL1qI9narA60VuJ6TEx4C1d8WjC6Uf8nhOqH9u5vAQOvpzp+:YJ47I/Ebk+CwWDUKOqHYVAhRAWpI6Tu
Score

1^/10
behavioral5 behavioral6
- Target
  
  /IERbar.htm
- Size
  
  6KB
- MD5
  
  7bbfb826bd2073de5eae12a6450df6e1
- SHA1
  
  1b5603ad21fa6ffa33c4ddbcc56061ee20b782dd
- SHA256
  
  dca376eaa9151bd42c406bf233e123b0cffb58b9747222b7aa36e5aa8f2dbfe9
- SHA512
  
  13d1a40e86939051cbb325217de588a8bb2217897a22d7b6715c7ff9b6da30ed102eafc6ee1c9d16fed0572a922651bd218376fb5fa247a7776298c6d419ae82
- SSDEEP
  
  192:Cp3NLjPFH2APVxypaEHW2sw199uh1/UGju:oNH2ymB927u
Score

1^/10
behavioral7 behavioral8
- Target
  
  /IE޸ר.exe
- Size
  
  462KB
- MD5
  
  35c84800480f6883488ebaa1f1628b32
- SHA1
  
  6502aed6d615cd09c2851756f14c1fd103fd06f2
- SHA256
  
  6aa595fe0f53af4bb4a1797f9999233850ce247a24209bc8ccd109ae161150ad
- SHA512
  
  690266f28cddfd074d4c5e2e7f70d460dc15f33f651dab737bd1e23434219ea0726429378209be4d7236471a37549c2388c1765b6618ae26abeadaa29daa1e36
- SSDEEP
  
  12288:FLAbbkk0hAlOeDPrmjz2du1GH0ygZ5yw+qI/xk:OAhAlnK6dusw+
Score

1^/10
behavioral10 behavioral9
- Target
  
  /LiveUpdate/AdMon.dll
- Size
  
  136KB
- MD5
  
  ea80b3432f3637db5e51868010506738
- SHA1
  
  57b753a962c0663f667601fc26173600ed08c370
- SHA256
  
  76e3c8fdb610d6e59a43e7e3f47d4939eb936bba78bda44ed83b3e6406762916
- SHA512
  
  68ea2490324dc7c847585ebe05e880503d192d7d7a6dde34af39ebde5dac550110482c18f90243c1987c524accb1e21f6cc4ad4f271c5f70cd89dfdb334b80f7
- SSDEEP
  
  1536:dAbTnUcUIAE0aGO/oL1qI9narA60VuJ6TEx4C1d8WjC6Uf8nhOqH9u5vAQOvpzp+:YJ47I/Ebk+CwWDUKOqHYVAhRAWpI6Tu
Score

1^/10
behavioral11 behavioral12
- Target
  
  /config.dll
- Size
  
  558B
- MD5
  
  e7d0f0201b7e3e039d227bfbae8769b3
- SHA1
  
  253ecad44ed3354f6d896bf85444c2a07559842e
- SHA256
  
  9380fc22a21f224e82369b80c8f22f281e9d619ce350cb065d4f2d1c23e92c8d
- SHA512
  
  3a965a8e9269d28280ff6671f334c290049c8bcbc9e1d1f842b078f3bb0f98b7f095c961458ccff90bcb51ba380e604ff566d7805be2f66c8305ad1ccfd558e9
Score

1^/10
behavioral13 behavioral14
- Target
  
  /gr18.exe
- Size
  
  373KB
- MD5
  
  d1a394175888d4c13d0bca01f951294c
- SHA1
  
  70290be73b0c5c18cea05f6f8a02f5cb3406f8ac
- SHA256
  
  887e4f3cad7785f7a6cca3ac8a0a4c5d2ef0a6c39246fe2170ab087611e8de36
- SHA512
  
  4b70ed1efdb83ed231136e3bc9943acdd9d51573f9ea936d8a74353dc516cfa16e9e9e87810208293fc6aed69b92d5dca83e843674c7ed70db5f2dcc21fc377f
- SSDEEP
  
  6144:hGDn+RXMXadxfM2pMJw3L5G26eHt9h2I1lnLjsp+bzHsunmU9HMPeqYyUbvRCM/5:cDn+SXGM3R/eHt9hLbLjsp+bzHsun9yk
Score

1^/10
behavioral15 behavioral16
- Target
  
  /login.htm
- Size
  
  6KB
- MD5
  
  2fcfc5bdf780b8ade22dade1d7aa9316
- SHA1
  
  20520542c16168be3ef69b5b56fb35db06f9cdbb
- SHA256
  
  8a82304f442edf13ff763f1b16e71628c2ef967b6f3cee22a3df9ded49951191
- SHA512
  
  ee96786bb932cf606d4978f92a7f7f6ed10308c2315108b1b7667eaf0143fce2e586f2110cdfcb5e80c06665ac8cdf1b0e29520e4cea7767fa073f05416b4ead
- SSDEEP
  
  192:Tsw3LRBp3NLjPFH2APVxypaEHWphaj0R6X4RGp:TdL7NH2yy4K
Score

1^/10
behavioral17 behavioral18
- Target
  
  /ɽ$(LSTR_6014)url
- Size
  
  110B
- MD5
  
  16bcbba756044d7fcad211311d214e81
- SHA1
  
  6f77c89828061429113fb0623e59eda52525fce3
- SHA256
  
  2f416044ad85b3408055c30929a8cec4ea4b72a16aaab0d5e558267891d8deea
- SHA512
  
  c620bc4d6c1e6da203dc61d13498333a1fb701973fad8769169c5d03a42593980c801cd03f2d3a6a2ce7198623bcbf4e3733706d4e1056f5d1a1fa9abbd261af
Score

1^/10
behavioral19 behavioral20
- Target
  
  /»ȵӰ.url
- Size
  
  76B
- MD5
  
  8c519d60499c5f1c7bebd59d2445275a
- SHA1
  
  4dcc278a4a7f7f5c7c9e752cb19c0f145f8a8029
- SHA256
  
  8aa560042de0842743910f27a10398b82783a7f694db0f37d80249f39092f798
- SHA512
  
  69b40d0acd7adddc973866dc277b312d6a634f6da39b7fdceb74b632c61b5f75e2aab3fa892f215f2f1fec0e21c1fcde9dc7ee966dcfb051768a97ca24dc9a45
Score

1^/10
behavioral21 behavioral22
- Target
  
  /InstallOptions.dll
- Size
  
  12KB
- MD5
  
  695751df50c11f303b060d63eababe1d
- SHA1
  
  ffa5fa91750c3e63589fecae8aa90c232611c94d
- SHA256
  
  4f871b4c8815758f7718ad68d688c6dc05cae205ddf3bcb00147a99746414435
- SHA512
  
  c9877e0d08c65b23717f3acf3be92ead79c6afde594bd4358694e128fb7149f4a1f33380fae0fb65411e5c68a9d91d2a353b4ef3da5169d3452441eb65880ce0
- SSDEEP
  
  192:ebtwKT+lyf+vQ/QnXN4dGIIvfe+ncp+hebyWLblA3xrh3Gr4:gtwKTOyZQX+dGNvfe+2+1WLbsxBG
Score

1^/10
behavioral23 behavioral24
- Target
  
  $_4741_/IERBar.dll
- Size
  
  213KB
- MD5
  
  9e166c73aa9816c4b6ac49229955e29a
- SHA1
  
  d3df2afe4eed9ad0d2a3d2693158bf3d8595f5da
- SHA256
  
  9ef8b102c57316cadba77864bbe183e084b7346a6f994c8a32c519247f21dd12
- SHA512
  
  78b440da36b73830cbfa9988dba99836a65d48eff8ba4e203f5de563d3afe7a613546291ec91e83c3ac44700c9317eef7fcdfb41811a07c912c80e0609c25214
- SSDEEP
  
  6144:077lHwhDMaw7RPBYmDzH0AIj6lIyWkLPkBvcEtdaY:0/RKX2P+mDzH0noIbkLt9Y
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral25 behavioral26
- Target
  
  $_4741_/flash9h.dll
- Size
  
  96KB
- MD5
  
  0fcb0e41a5e6f402c626e674f91e0778
- SHA1
  
  ba48c9b07c369504c198f844c4cf20a3c7c3d6e3
- SHA256
  
  756b22a3753c93491463ff22c362ff3bc173b47a69e77314b0c7c6e595967955
- SHA512
  
  7865d48c3362589fa2fb8283c631a58b38663aa062b5e1581c850b08295101572eeb284fa60c284d1713b3512694c21961fb15970aa834f1181343adaebdce0d
- SSDEEP
  
  1536:BNiTVFMfs2Yr4yK+H2nCKxdlQnTBDcpirm8lSxIJJoimcNo:B8VSs2YU4H9KzlQlcpenSgoim
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral27 behavioral28
- Target
  
  新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral29 behavioral30

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Browser Extensions

T1176

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Installs/modifies Browser Helper Object

Installs/modifies Browser Helper Object

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30