Overview

overview

7

Static

static

3

15908a5e48...18.exe

windows7-x64

7

15908a5e48...18.exe

windows10-2004-x64

7

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ou.dll

windows7-x64

3

$PLUGINSDI...ou.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    15908a5e48ae84b6ffe5d3fe85f0d7cd_JaffaCakes118

  • Size

    577KB

  • Sample

    240505-cxawfafb47

  • MD5

    15908a5e48ae84b6ffe5d3fe85f0d7cd

  • SHA1

    b4db17efa58d3ff3f8a36b9593274e3167af6f6b

  • SHA256

    2479679e552f97a643b5c3781fe03c47db757759c4c1eab313dcb41858577463

  • SHA512

    9e6c65942d07f13ed8e66b6e29bc2dd74369ac08968c8926366453617f49cd9c1c51bb368ec43639373e973688b9351966414f37d29faaeeb983aa63ced58a7c

  • SSDEEP

    6144:iZ6IxwqFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFM:i0IWKCtQ2l6wEFv3kAGXstRRM4BTIRP7

Score
7/10
upx

Malware Config

Targets

    • Target

      15908a5e48ae84b6ffe5d3fe85f0d7cd_JaffaCakes118

    • Size

      577KB

    • MD5

      15908a5e48ae84b6ffe5d3fe85f0d7cd

    • SHA1

      b4db17efa58d3ff3f8a36b9593274e3167af6f6b

    • SHA256

      2479679e552f97a643b5c3781fe03c47db757759c4c1eab313dcb41858577463

    • SHA512

      9e6c65942d07f13ed8e66b6e29bc2dd74369ac08968c8926366453617f49cd9c1c51bb368ec43639373e973688b9351966414f37d29faaeeb983aa63ced58a7c

    • SSDEEP

      6144:iZ6IxwqFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFM:i0IWKCtQ2l6wEFv3kAGXstRRM4BTIRP7

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/NSISdl.dll

    • Size

      80KB

    • MD5

      8098a39adb804c6ae307ffca99cb67ac

    • SHA1

      27826b6261eb8a7db99e0f677e870dcc1c1efccd

    • SHA256

      ae6846b76dd50ce7659b35d7544e8274af552df124256e1019a95d875c51ab26

    • SHA512

      ecf720de8c1a317dd9e0e98ecf8b9931c684bcea05dc07ab2b9dc30b2061358243e1e4214a7325d5450f4452dc7148f0e0c8c3476070c8b8c20111b079c79e3d

    • SSDEEP

      768:VrzrTwuhr+m/Oz8pV0SR1svAMVaJkSrURzQ+ohYIQYIm1JyXLaRAcU4Uga1VG9X:VrzvCm/OzqV0S1QGJkrIhLst7aTUgkG

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/System.dll

    • Size

      16KB

    • MD5

      991d09235944414ae51be4dd7611f7f7

    • SHA1

      b34d6b0ccb1013ddb5c2eb80f02b03a2b893911b

    • SHA256

      3f13314bb93a92748e3a08f47e23b3206196a6c7e59f7aee3382a601b8c3e366

    • SHA512

      63ccdb59b7f7a940bd93fb0a4f9cf3c15a25e4a7ee0468d6c2072ebbfebe23d3a21f11148587c904acf58064ed576f460beeb90fac5af79235624b1679c4da38

    • SSDEEP

      384:Ga1UTL7ppMMq5hyp/mTsfTFALDiCcX2Ql:Gn85c8QLuOCcX2

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/WndSubclass.dll

    • Size

      4KB

    • MD5

      0a0218f11d82cdcc4f50de8edd58f3ca

    • SHA1

      ba387579a8ddd175811c762902a9bf3a51ba9fd2

    • SHA256

      938e4ae758aebc6f1609aab9f8d068689fba91c6f3bf5bb46e4df575616fcd29

    • SHA512

      46742bc09b5199ac16fb2753a4b1584fa1b39d497869719e297574dfbfe4a0aa86ba7c6b77ef38e5e27734005c9d15036c52a577b08cfdfa104daae2ee756a5e

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      20KB

    • MD5

      e541458cfe66ef95ffbea40eaaa07289

    • SHA1

      caec1233f841ee72004231a3027b13cdeb13274c

    • SHA256

      3bce87b66d9272c82421920c34b0216e12c57a437d1955c36f23c74c1a01d420

    • SHA512

      0bf6313e4cb7bbdcfba828fb791540b630adc58c43aa4b5ba77790367d0f34f76077cd84cc62e2a2c98c788a88547f32a11e549873d172c5aa2753124847cd0c

    • SSDEEP

      384:b1JO6XgZkjxm+NpXaWgzxUX//EUhU7ya4LQ0Ac9khYLMkIX0+GBty3Sm0:b+6Xgsm+NpKWgzxUXnEUhUua4Li70

    Score
    3/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      11KB

    • MD5

      0c7b5ed8d024133f937fbf9b8109bf41

    • SHA1

      0cbea8cc65a927ac2d67b2f7fa7e887d4d2a9298

    • SHA256

      62df4a84ebf07a467ad59f1ce9bd635ce819aff8e181bab5e99eb8ff3ed8e2d6

    • SHA512

      e79f4881f0cfbf3af4411e57a03c76dc5e08672df69c4c1edc852cf77d5aec53b2e08e5218e2372b86e4743c844fac57a968464fdad5d694228b009a9a7b4dd3

    • SSDEEP

      192:JH6E2YmXsGk7F5cikN7yZC9zbeLngVm3Emp:A8f5URezgVm3N

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/nsisXMLwizou.dll

    • Size

      12KB

    • MD5

      9f3d5344e7ede1f41f99d8fc37fd01ad

    • SHA1

      d0322ce3ba30a924daa1c9e322846a3d8ccda878

    • SHA256

      77aa1a74a556f00f16baf9b94637fa997bd4085695ba81bf496223644e43e815

    • SHA512

      2849b261b77fa2abf0d0efc7604ccce7f502d20a556eea9877cfe1cbc6d515d8fe41986943081629243b81987cddd54613ee01fc7859ae16eab57f6ca2cd4bfc

    • SSDEEP

      192:EWauH4FuPphUmX1VGsGN2kmQNJnm1ilWnE:EWasoMphljGs4NJoil2

    Score
    3/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks