210208179e5b58d849558ed55409a45dbc276935a4da1b5e53ec4745c7eb831c

Sharing

Copy URL

Twitter E-mail

General

Target

11b33f7d609534d8b66f5a0822e4de3e_JaffaCakes118
Size

347KB
Sample

240504-jeqx9sac79
MD5

11b33f7d609534d8b66f5a0822e4de3e
SHA1

54cc7edad01925b04322dac8098c6dda87cefa06
SHA256

210208179e5b58d849558ed55409a45dbc276935a4da1b5e53ec4745c7eb831c
SHA512

5bcc15d139987691f797fc51e59bb7749ac605247137a56ed351404b01b07c34a4b7b09554a62485bd1194c13376c7442138f64fd33f1fd2d72806dda3100067
SSDEEP

3072:94URpNUUX6z/DBXJfo/wGP2z5hS9u5rO+IpemPQ+Qir+2v:94SUjhto00HemPJrv

Score

7^/10

upx

Malware Config

Targets

- Target
  
  11b33f7d609534d8b66f5a0822e4de3e_JaffaCakes118
- Size
  
  347KB
- MD5
  
  11b33f7d609534d8b66f5a0822e4de3e
- SHA1
  
  54cc7edad01925b04322dac8098c6dda87cefa06
- SHA256
  
  210208179e5b58d849558ed55409a45dbc276935a4da1b5e53ec4745c7eb831c
- SHA512
  
  5bcc15d139987691f797fc51e59bb7749ac605247137a56ed351404b01b07c34a4b7b09554a62485bd1194c13376c7442138f64fd33f1fd2d72806dda3100067
- SSDEEP
  
  3072:94URpNUUX6z/DBXJfo/wGP2z5hS9u5rO+IpemPQ+Qir+2v:94SUjhto00HemPJrv
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  34466cab38abcbc09ffac768d526f896
- SHA1
  
  2684f5f6c2b005cba812fc8cc1157777554fa3a3
- SHA256
  
  8b4a1e7bf076c20240eb0a46cbdc8b835cfd89265fb78a3c1c5339ab820d2c1c
- SHA512
  
  5c6ae996a81f0fd9d3efe4e61c8683eb833cb203a476772c06eadb48e10e34d05a8fc2c837cf663dcc3a37713bd86694c8eb251868aa5bb42c4b21ba8c8e8fc7
- SSDEEP
  
  192:qcOqW13v5z+dHeMR2QwHu5S9i/yULWWBZYJCSJyejAK72dwF7dBKEw:qcw13v5SdHeMRRKkwsejA+BV
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  a436db0c473a087eb61ff5c53c34ba27
- SHA1
  
  65ea67e424e75f5065132b539c8b2eda88aa0506
- SHA256
  
  75ed40311875312617d6711baed0be29fcaee71031ca27a8d308a72b15a51e49
- SHA512
  
  908f46a855480af6eacb2fb64de0e60b1e04bbb10b23992e2cf38a4cbebdcd7d3928c4c022d7ad9f7479265a8f426b93eef580afec95570e654c360d62f5e08d
- SSDEEP
  
  192:aVL7iZJX76BisO7+UZEw+Rl59pV8ghsVJ39dx8T:d7NsOpZsfLMJ39e
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  20KB
- MD5
  
  c498ae64b4971132bba676873978de1e
- SHA1
  
  92e4009cd776b6c8616d8bffade7668ef3cb3c27
- SHA256
  
  5552bdde7e4113393f683ef501e4cc84dccc071bdc51391ea7fa3e7c1d49e4e8
- SHA512
  
  8e5ca35493f749a39ceae6796d2658ba10f7d8d9ceca45bb4365b338fabd1dfa9b9f92e33f50c91b0273e66adfbce4b98b09c15fd2473f8b214ed797462333d7
- SSDEEP
  
  384:EVJOXQZkjhm+Np3aWgzxljzbbEUhU7ya4LtU0Ac9khYLMkIX0+GBty3S:EeXQcm+NpqWgzxljzfEUhUua4LtG
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  e75ae7cfe06ff9692d98a934f6aa2d3c
- SHA1
  
  d5fd4a59a39630c4693ce656bbbc0a55ede0a500
- SHA256
  
  1f861aeb145ebbb9a2628414e6dca6b06d0bfb252f2de624b86814cfec8097d0
- SHA512
  
  ab4998f8f6bbb60321d0c2aa941d4e85319901960297059bf0832cf84b18dfbb120c3aa71963b46d3be3b7c9602434cb23f9a961c00de02403b3f266b294d41b
- SSDEEP
  
  96:3np41CMj95rKhkfL5RkEdKkcxM2DjDf3GEEE9v5E9av+Yx40ndY7ndS27gA:3nujesS4HREEK5MYxtdqn420
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  14f5984b926208de2aafb55dd9971d4a
- SHA1
  
  e5afe0b80568135d3e259c73f93947d758a7b980
- SHA256
  
  030bcfa82e3bb424835a5fa53a3ff17ab08557d3bbeea4815313036fc4bdafe1
- SHA512
  
  e9ec97dd57ead871789d49ed38d9fde5f31d3cb2547810cae49a736e06b9f9b28cf8efea825eb83c3e07d880ee798abfb9069c6957416d5973c83e4531814e27
- SSDEEP
  
  96:k7GUaYNwCLuGFctpiKFlYJ8hH4RVHpwdEeY3kRlDr6dMqqyVgNJ38:Wygp3FcHi0xhYMR8dMqJVgN
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsResize.dll
- Size
  
  4KB
- MD5
  
  aa849e7407cf349021812f62c001e097
- SHA1
  
  4cbb55b1d1dd95dcb7a36b5a44121ad4934539af
- SHA256
  
  29b0e5792679756a79d501e3a9b317971b08e876fac1c2476180d0ae83b77ba5
- SHA512
  
  4556baa49e8182d72e29e8d809635312142eb127039f5803ca0bf011b4359f0b584a670a3bd26a9969165a332cfa14a39abeaeae0b4d90519f91fdea755c54de
- SSDEEP
  
  96:Grb+u7Dk2IFEZsO22AxqX4PJ7G17JAgX0:yb+u7Y2IFEKOHA0X8i1NAI
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

ACProtect 1.3x - 1.4x DLL software

Loads dropped DLL

UPX packed file

ACProtect 1.3x - 1.4x DLL software

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14