Overview

overview

7

Static

static

3

06895aae32...18.exe

windows7-x64

7

06895aae32...18.exe

windows10-2004-x64

7

$PLUGINSDI...db.dll

windows7-x64

3

$PLUGINSDI...db.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06895aae32530223ab159cb66b110cf8_JaffaCakes118

  • Size

    677KB

  • Sample

    240429-b2763aeh8z

  • MD5

    06895aae32530223ab159cb66b110cf8

  • SHA1

    b336ced504f823e836caf4fcf431d6a5c60791dd

  • SHA256

    7c8cb2000706400bd6deb88686c2aca0a7ef1160edb9ecabc3bf5fe336eb9da1

  • SHA512

    58912a4fd27e51dc9c3eb78189448eca2d0519129c187a4bdd460a62db970dc1498672afacd5ee7d5770f512fcfa516cefcaf0cbe42cb3f4fa4ccc9c7330debf

  • SSDEEP

    12288:rZrMVF0tn9VtwF5EZa08UeJaGhTGlbyz7QuxZEfrP+UwaVbVr0V7fbo:rZrMVFO9Vtwfm8NJagsK7HZEjGRaVbV9

Score
7/10

Malware Config

Targets

    • Target

      06895aae32530223ab159cb66b110cf8_JaffaCakes118

    • Size

      677KB

    • MD5

      06895aae32530223ab159cb66b110cf8

    • SHA1

      b336ced504f823e836caf4fcf431d6a5c60791dd

    • SHA256

      7c8cb2000706400bd6deb88686c2aca0a7ef1160edb9ecabc3bf5fe336eb9da1

    • SHA512

      58912a4fd27e51dc9c3eb78189448eca2d0519129c187a4bdd460a62db970dc1498672afacd5ee7d5770f512fcfa516cefcaf0cbe42cb3f4fa4ccc9c7330debf

    • SSDEEP

      12288:rZrMVF0tn9VtwF5EZa08UeJaGhTGlbyz7QuxZEfrP+UwaVbVr0V7fbo:rZrMVFO9Vtwfm8NJagsK7HZEjGRaVbV9

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/hzstsdb.dll

    • Size

      158KB

    • MD5

      28b20c20508850f03c1c9e34cebb24da

    • SHA1

      375b3803d3d2468595f9b65b099bb5aa6416a3f9

    • SHA256

      e93e02609270fb52f880697cce5417a7a20b37886a96e6e9d1c964e1ad0e5294

    • SHA512

      e4cb7636d7055be82485b91d8d072c22893cba35daa0b933df8c4348bcecf59af3cf4b515f9ab6eec91d138b465028a5a311734ecc3c617da9ccd90648333797

    • SSDEEP

      3072:VRlE+kAFGzHrozhuuA0Q3s5+JuUbIkOlQsj9:VR2wAHf0QG6I5j

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsisunz.dll

    • Size

      40KB

    • MD5

      5f13dbc378792f23e598079fc1e4422b

    • SHA1

      5813c05802f15930aa860b8363af2b58426c8adf

    • SHA256

      6e87ecb7f62039fbb6e7676422d1a5e75a32b90dde6865dcb68ee658ba8df61d

    • SHA512

      9270635a5294482f49e0292e26d45dd103b85fe27dc163d44531b095c5f9dbde6b904adaf1a888ba3c112a094380394713c796f5195b2566a20f00b42b6578e5

    • SSDEEP

      384:KExN66Yf2xL5Q4IsjuUjUZfqRDpImexpf88FwHxXvjX3hwlHt6oIfESxSHoOO8n9:O2x64GcVpI3xC8ynToIf1SIOhW4

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks