Overview

overview

7

Static

static

3

13f19cb5ab...18.exe

windows7-x64

7

13f19cb5ab...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...qm.dll

windows7-x64

3

$PLUGINSDI...qm.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    13f19cb5ab382ee5a034cadfee60af2c_JaffaCakes118

  • Size

    644KB

  • Sample

    240504-w3sg8aee8z

  • MD5

    13f19cb5ab382ee5a034cadfee60af2c

  • SHA1

    a743d355747d128fba97cb2ccd0f89cf9b73775e

  • SHA256

    1648b726d8a665ed74d80d01f26c18028450960bee5dd6988a526e7f39f15255

  • SHA512

    6d0ffef777a59a679f7705ea36888430745dc911ac79b2b1885c0ff7c11e38b32ddb6a01458dd61c42573e72ee7a90421fc2c1befdf32fd44e99e673a6968a3c

  • SSDEEP

    12288:W2G852b2j3oLhCtyoTcCB2iiEOysJIZj1QQDt58axX/1Ffc8vy4hi:W/fbSoLURTcm2FHIZjtJ58y/1a86p

Score
7/10

Malware Config

Targets

    • Target

      13f19cb5ab382ee5a034cadfee60af2c_JaffaCakes118

    • Size

      644KB

    • MD5

      13f19cb5ab382ee5a034cadfee60af2c

    • SHA1

      a743d355747d128fba97cb2ccd0f89cf9b73775e

    • SHA256

      1648b726d8a665ed74d80d01f26c18028450960bee5dd6988a526e7f39f15255

    • SHA512

      6d0ffef777a59a679f7705ea36888430745dc911ac79b2b1885c0ff7c11e38b32ddb6a01458dd61c42573e72ee7a90421fc2c1befdf32fd44e99e673a6968a3c

    • SSDEEP

      12288:W2G852b2j3oLhCtyoTcCB2iiEOysJIZj1QQDt58axX/1Ffc8vy4hi:W/fbSoLURTcm2FHIZjtJ58y/1a86p

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/aovkrqm.dll

    • Size

      169KB

    • MD5

      33bee7d1d03f49252286530df072fa5d

    • SHA1

      e0d1450ae77d2b0990ea6511553454c8fe15f297

    • SHA256

      8f2b0a236e6166ed3ff9c06a767f3e418eff1a28fb4d52a8249cc854d2a3ef57

    • SHA512

      ed22ac214a64ca2b42a5a25d73dbde5375804245c709db51263f19a6b64b5d2cd24645d1fee5ccd431347b43e3db2f5d03aac1a8d26bcf632f0c43397c1950b8

    • SSDEEP

      1536:GWqzaXMdXVOOsaKXGc4JpRfAlsu0mCS8FQ9CxMEgO4So10jc3tYg4ZOvVFKU32LZ:GhrdlKYPBSAHjc2g4Zy34+SwyzIUGwj

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks