16a00880f3f5c82e93e3b60a0e79c0c29b9e0a5ec1b88e275a5915f6577451d9 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

222cefea1d...18.exe

windows7-x64

7

222cefea1d...18.exe

windows10-2004-x64

7

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDIR/nxs.dll

windows7-x64

1

$PLUGINSDIR/nxs.dll

windows10-2004-x64

1

Sharing

General

Target

222cefea1dc7c12860abf0d8270a650b_JaffaCakes118
Size

1.0MB
Sample

240507-3cf5tsge76
MD5

222cefea1dc7c12860abf0d8270a650b
SHA1

f39d957e969e9ae4fca7cdbb6b3c6c69a19898d0
SHA256

16a00880f3f5c82e93e3b60a0e79c0c29b9e0a5ec1b88e275a5915f6577451d9
SHA512

3eec4f19a2be9135143317319c13b2dadba53b1ac629f3a47d41cc6047fb759bbbcb5ed4fb6222d7e2a45a9f77beef8ed7d9d704bfab33b9bf2b581c3b7f365a
SSDEEP

24576:TxEq5GZN/Kfcg8oq3CvMx/o9YD66gK2wu6p/N89Q:9+N/eG3CvMx/o9n6gKFus/N89Q

Score

7^/10

evasion trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

222cefea1dc7c12860abf0d8270a650b_JaffaCakes118.exe

Resource

win7-20240221-en

evasion trojan upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

222cefea1dc7c12860abf0d8270a650b_JaffaCakes118.exe

Resource

win10v2004-20240419-en

evasion trojan upx

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/nsExec.dll

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/nxs.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/nxs.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  222cefea1dc7c12860abf0d8270a650b_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  222cefea1dc7c12860abf0d8270a650b
- SHA1
  
  f39d957e969e9ae4fca7cdbb6b3c6c69a19898d0
- SHA256
  
  16a00880f3f5c82e93e3b60a0e79c0c29b9e0a5ec1b88e275a5915f6577451d9
- SHA512
  
  3eec4f19a2be9135143317319c13b2dadba53b1ac629f3a47d41cc6047fb759bbbcb5ed4fb6222d7e2a45a9f77beef8ed7d9d704bfab33b9bf2b581c3b7f365a
- SSDEEP
  
  24576:TxEq5GZN/Kfcg8oq3CvMx/o9YD66gK2wu6p/N89Q:9+N/eG3CvMx/o9n6gKFus/N89Q
Score

7^/10

evasion trojan upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  acc2b699edfea5bf5aae45aba3a41e96
- SHA1
  
  d2accf4d494e43ceb2cff69abe4dd17147d29cc2
- SHA256
  
  168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e
- SHA512
  
  e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe
- SSDEEP
  
  96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nxs.dll
- Size
  
  6KB
- MD5
  
  8ca09b6200ffa05b54c6672d855beb4a
- SHA1
  
  daa16fe49c8b2250e9d2383b861cda51f876de49
- SHA256
  
  033e93ad470241c92762924ccfceafb849a525e263e5d4a3dbcfc2e07a8803c3
- SHA512
  
  6ab97181ec45430888d8ad3fd411de22423e1c057833e282af085a975198338c95f7ba10b7c69f33298afc88ddd38d01ab010998fd4a8ba8abb8561796bf9f14
- SSDEEP
  
  48:qnnScipSivON+tPTCkWqjqoay6NvC9A220B20BNatQK5zAgQIl0YawUy11TKcZ8Q:an3N+2AjqoWvC5VRxMLawvxM
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx

behavioral3

behavioral4

behavioral5

behavioral6

© 2018-2025

Terms | Privacy