20c011abb545a90c2e1574ea59931491104c4ac9b73177fe958fd98973d9078c

Sharing

Copy URL

Twitter E-mail

General

Target

3b524be94560c0b4a6730acc225595dc_JaffaCakes118
Size

10.2MB
Sample

240512-wa4d1sbf64
MD5

3b524be94560c0b4a6730acc225595dc
SHA1

0566115bd3b08337655b2a68b8309b293714c964
SHA256

20c011abb545a90c2e1574ea59931491104c4ac9b73177fe958fd98973d9078c
SHA512

ca996a7e482077ba2d92350cfe9ef5b23895f37bfd7b76d75a6e2e900745ea670f841a58edc2c46a4011a20b1738a32947727291a2a32cc64b50d004a6a7ada8
SSDEEP

196608:y3r9kPT1r9z3Y3XV2mk4oNeEFbleOkLEglfHQ9XoWSuPHlz3r9kPT1r9z3Ym:Or9N3l27tNZFcLjlfw9zSuPHlzr9Nm

Score

7^/10

upx

Malware Config

Targets

- Target
  
  MP3-Recorder/MP3音频录音机/swrecorder_pro.exe
- Size
  
  5.7MB
- MD5
  
  56c9a49d08f00d5abb2691811b760fb9
- SHA1
  
  1a32ffa17b270f8a897bca2a4798a8d854367d25
- SHA256
  
  c4a099790e3f46b801d2817a17d058b25924568757ba5ac9777d4053e71ef1c0
- SHA512
  
  61b0a5e99f4d328a867fa5f61ea41c461ef5740ccbcb5437dca18051cc4a3fa9916a12ed47ee63b8f8e5cb1c9879ac5005d36e7a2395f3528836c11471e65752
- SSDEEP
  
  98304:VhzAPN+AZI4JEFVedumHooJLqy2KBjEfgrIXg3KfA0Lyr/IqYw205vbcZBeH2Z4H:VMfjMVedumHbL2MjEq8fAEKjhk4ToP0j
Score

3^/10
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  325b008aec81e5aaa57096f05d4212b5
- SHA1
  
  27a2d89747a20305b6518438eff5b9f57f7df5c3
- SHA256
  
  c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
- SHA512
  
  18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
- SSDEEP
  
  192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral5 behavioral6
- Target
  
  $SYSDIR/$SYSDIR/atl.dll
- Size
  
  88KB
- MD5
  
  8767eed69af09e16ebd375e22f0b62c2
- SHA1
  
  07a3cf996a552f9d4894a90e56ae6c9bd1688b9b
- SHA256
  
  ddcd10caa5a980e44c37e42a65d00dbc9595137268230a2c29764ac16658fac8
- SHA512
  
  8c9f9a2242a07f3967dc9a2f012d7301e66db991efce0a206c42eed07930c8d5e79d3f5cced9c03719ca94148dcd564818ce5156f65da5886e2c2d1279653406
- SSDEEP
  
  1536:bDMtOPBm/dd6giHvwJZyEbWMIOLQcL/X/xhG6QKZwmNXcTUukXP:bvEdMIJZyEzL3LP/xI0ZwmHukXP
Score

1^/10
behavioral7 behavioral8
- Target
  
  $SYSDIR/msvcr70.dll
- Size
  
  336KB
- MD5
  
  9972a6ed4f2388dbfa8e0a96f6f3fdf1
- SHA1
  
  61b8f573db448ae6351ae3475c2e7c482d81533c
- SHA256
  
  f68e4cdbc879423ea47d763a6768567f5f8063924f13a74239750c13fa8d168a
- SHA512
  
  d1b7513ae1176c9a933baddcd1bf93fa089eca605c8abcfd628d3bef2f194347cd96bb39d849ebc6d8da350b292116cb2efb8a001acdb1b1cde4ebdad33fa33e
- SSDEEP
  
  6144:SJXaB17daPjFKMrwgWs0uh+PGdmkV2EfFMQiFbNrboYgxg0bCAO5Z09:yXaXJaPJKMrwgT0u0PGdmkV8O7rCLZy
Score

3^/10
behavioral10 behavioral9
- Target
  
  $SYSDIR/msvcrt.dll
- Size
  
  288KB
- MD5
  
  055b02d711cdedb8c5997274c4e99cb8
- SHA1
  
  5c816eeb6e4d5f1c11e9f56c992ee7d452e7c0f9
- SHA256
  
  d7cea69a98579d928e534070f5293e80ed7df38baf611b20717ef55aa1344a18
- SHA512
  
  4774431fe768e424f46c833236a41d68f05d98ed14353b04428a5d190dbe213bb56087a5e5cca5cd98598f2c1611fddfed3a7a79bbd362bc02e586cc367907c0
- SSDEEP
  
  6144:yk54RkH8RKDou3LlG/3Roe0Ro4zJsdF9gjFMgiFjNr7mcl2oZhogKLOmJxZR92l3:R4RtIR3BG/3We0RVJsdFFUzchogKLOmc
Score

3^/10
behavioral11 behavioral12
- Target
  
  $SYSDIR/oleaut32.dll
- Size
  
  540KB
- MD5
  
  7deec00327800e6eef7361186626dfe3
- SHA1
  
  751fdacaa4e014bd429bb8e5c008f0def10aeefa
- SHA256
  
  5abc1d8f43c94ad5f05f64aa4849739097fa403da168cb82bc51519592ce9b79
- SHA512
  
  8a74c62fc909622c06223dcc4ef5b386e70ab2f31cbeb6d7f98eaf98e6d46e6ed2db612366b8a678b7806f11b9918e87c3dec18be70ed3a0d00749906a7c7ed4
- SSDEEP
  
  12288:xp6CeB+KtBRNEvqMZoTLBi4IRIRhlujCrU0f8K:T6CedtjNEvquoTLBi4vWjCrUhK
Score

1^/10
behavioral13 behavioral14
- Target
  
  MP3-Recorder/MP3音频录音机/破解补丁/mp3音频录音机.exe
- Size
  
  2.4MB
- MD5
  
  3000f4636a902cec37d633b1d484094c
- SHA1
  
  02b3791c2853357161b685c48ce195de244b84f0
- SHA256
  
  3412dca50adad1a7b71d1d9cef83fabc92e0cedfe57e377b35917e295c3527fa
- SHA512
  
  4eed967b776d5e00a7b954d4b7ef9e3c160cb83a92d6a3f2eadba5aab08475c69ceeb68a604ba9eee204053847cba95ef9039f3bd8382cdc3c69a6351c0f692b
- SSDEEP
  
  49152:qyXJcxS7BR9fSj2HFXkY36OPciwwPhPLSvKehOueoyG:yxeR9KSlXN3RLJxuvQueoyG
Score

7^/10

upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral15 behavioral16
- Target
  
  MP3-Recorder/mp3音频录音机.exe
- Size
  
  2.4MB
- MD5
  
  3000f4636a902cec37d633b1d484094c
- SHA1
  
  02b3791c2853357161b685c48ce195de244b84f0
- SHA256
  
  3412dca50adad1a7b71d1d9cef83fabc92e0cedfe57e377b35917e295c3527fa
- SHA512
  
  4eed967b776d5e00a7b954d4b7ef9e3c160cb83a92d6a3f2eadba5aab08475c69ceeb68a604ba9eee204053847cba95ef9039f3bd8382cdc3c69a6351c0f692b
- SSDEEP
  
  49152:qyXJcxS7BR9fSj2HFXkY36OPciwwPhPLSvKehOueoyG:yxeR9KSlXN3RLJxuvQueoyG
Score

7^/10

upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral17 behavioral18
- Target
  
  MP3-Recorder/西西绿色软件.url
- Size
  
  132B
- MD5
  
  1a4c9703b2f373dd164a9b85126b2b9e
- SHA1
  
  5b8da3d5d80a79dc24b72d846211098e429339ed
- SHA256
  
  b1d246104baf9b5239ee52679a587a1423fe87b0bcc176526d79aa69387ff524
- SHA512
  
  b719864e523db81180f59e7541bfdbfc5c80477ef234265bb1687a149798ff0ee041a8f87ae9dd80356bdb4e155dba09a1b891bb2870fecace3afb8eed82f44c
Score

1^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks BIOS information in registry

UPX packed file

Checks BIOS information in registry

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20