5c8dbf03a1f45997b2e786379007835b15804920bd6ae064faf94f3861737bb0

Sharing

Copy URL

Twitter E-mail

General

Target

42af8a31ea73e1f7322b1a86f58c7f18_JaffaCakes118
Size

3.5MB
Sample

240514-x3rflacg63
MD5

42af8a31ea73e1f7322b1a86f58c7f18
SHA1

260c8376ecc8c2c58011d902ca8b47fddb9e2c86
SHA256

5c8dbf03a1f45997b2e786379007835b15804920bd6ae064faf94f3861737bb0
SHA512

5521047b715c79e93e64ada9fe108c86c3fc60a4199bf97fa0ebf378cf9e22cd2677d58bea5039662a2b9c607cef3d7de3f3b68f7a22eb4a45bb5be85b40b1a2
SSDEEP

98304:5ZobYQt85KTKzl4aJKQZ0CWX3uFCsyU2zXGi:Ift854m4aJKSBvEXGi

Score

7^/10

Malware Config

Targets

- Target
  
  42af8a31ea73e1f7322b1a86f58c7f18_JaffaCakes118
- Size
  
  3.5MB
- MD5
  
  42af8a31ea73e1f7322b1a86f58c7f18
- SHA1
  
  260c8376ecc8c2c58011d902ca8b47fddb9e2c86
- SHA256
  
  5c8dbf03a1f45997b2e786379007835b15804920bd6ae064faf94f3861737bb0
- SHA512
  
  5521047b715c79e93e64ada9fe108c86c3fc60a4199bf97fa0ebf378cf9e22cd2677d58bea5039662a2b9c607cef3d7de3f3b68f7a22eb4a45bb5be85b40b1a2
- SSDEEP
  
  98304:5ZobYQt85KTKzl4aJKQZ0CWX3uFCsyU2zXGi:Ift854m4aJKSBvEXGi
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral3 behavioral4
- Target
  
  QtCore4.dll
- Size
  
  2.5MB
- MD5
  
  0b2271c32d08fa9bc917b15197d507b9
- SHA1
  
  294cb8d23af48658c339eef82d022db683f88580
- SHA256
  
  970795eacead6dbaf3756983a1206b957b7f465a083106809f4288814dea328b
- SHA512
  
  9173d33097c40c470e44191304b42b9ae40adce24f49877b199d03cb9b5d8fef3123eef68aca4507024aaa696b5ad9a5893df21fd1c759d929579f6a00b73fc7
- SSDEEP
  
  49152:vNt3iB8mwK6LX/DE4GgJsv6tWKFdu9CAT/LyvL/6mShMZtmjNUVrciV5P+7QVg0M:vn3iawgJsv6tWKFdu9CQ
Score

3^/10
behavioral5 behavioral6
- Target
  
  QtNetwork4.dll
- Size
  
  1.0MB
- MD5
  
  da051416dc20b309dec04c3095de71a3
- SHA1
  
  5289f3a56c6bab189d74ac9ef96d6cf45e14e6df
- SHA256
  
  2d7f56e115cb77067d67d24af27431ac75b979a19e6fa0e12b87afcd4206580d
- SHA512
  
  a729c9284f24898de9272d47e29d114e7f7c0496757ae0042a4c93817bfcb2c91091d6151d7063f7225a0305200ff97f54c0f685b0555280b19ad58b33841bb4
- SSDEEP
  
  24576:KixRX8bN72+YWsi5fZVU82ugkpgU32lhh5di:KEjIhVAugKg0E5di
Score

3^/10
behavioral7 behavioral8
- Target
  
  UninstallMini.exe
- Size
  
  1.4MB
- MD5
  
  6e26a940c1331d1205815fa17315415f
- SHA1
  
  d381cea4547a049cf6964e497445b77f47173411
- SHA256
  
  f27af16873f70b7af8b33d79d34753f0cdb95313a257cb006714fb8f5a9540fa
- SHA512
  
  b0d931ea8088df33cac69e05e94585c9b75cfd31d74139bc43413194f1766d9073aaba170f239fb560ba65d2c037fd0990e26d097a70e7c025a7a292f02bec9c
- SSDEEP
  
  24576:xYDnUUTrtf5A32TBqr2Aj5zM8+P1YmOAUGcS9nZn6jH8lTctKe/oPF38:OrXp5A3du17OAUGbkjclTkKgg8
Score

1^/10
behavioral10 behavioral9
- Target
  
  ayprivoxy.exe
- Size
  
  362KB
- MD5
  
  9b416fac618fb017deaef396e256b210
- SHA1
  
  ef0866b891ff18a230d9ea7c60197fa952991939
- SHA256
  
  0b3aa7e9e6b654463c37a80f0d68354f2a8a0e75e989ec3f55d85df4f2477bfb
- SHA512
  
  be19d0563c8d74c70a5014540a744bfa023c00db9c25ada8231d436029690e9624ce000a94011b11bc330565340eb52e94f5cd6ad950afe6ec30a8b1560089de
- SSDEEP
  
  6144:/UMDzXGbJcQQVqHCkeXGHqprBOb4CJn7CptLKC8dr08HweyrM4F16:/U+X1F8CPGHqprBOb/R48HweyrM4F16
Score

1^/10
behavioral11 behavioral12
- Target
  
  aysocks5.exe
- Size
  
  885KB
- MD5
  
  90e72aee2ba09fc893428b0f67686aa3
- SHA1
  
  506729f2dcf21a9a017ca01fb8ec00c1c4fb6399
- SHA256
  
  63b84924166792cc5ff197ba5755ea18b8495ef79c53bcee723e43f6eb8e9a28
- SHA512
  
  6c59e3735c00fff70c5a0e8610a8628c7158d85f5a1a3c6623e3bc3a6edd7427cb1971b08a6b362c025b22d645fff76a1f2ee57e148e48aa82c0a85548eff19f
- SSDEEP
  
  12288:AUaubFaHOz1FSJ3bGG50GfCIYId6lQeNC1ZPwo4FVwgS2aUniw/J3Y:YIFa81FCrHiIdd6G71pwxAw/6
Score

1^/10
behavioral13 behavioral14
- Target
  
  jiasuqi.exe
- Size
  
  2.0MB
- MD5
  
  66858efef1fca4bbf376e58363007183
- SHA1
  
  dde0f6bacace94fe38d2ab04ec8a88b15e40427a
- SHA256
  
  fad05b304f8aff31f6ac1959307e95e1f97a58d81a68f47cfbe257676ff9771b
- SHA512
  
  c6892b5a6100f32704537f2b717d94ecefddd199327622d0aabebf9e1dc12c384707a987e2e63213ec79942ceb53555e363dd7affb30c10835e1efffaac5effd
- SSDEEP
  
  24576:Jaw6dP8FRQU+0CRZNeXpMPu35IjGR+Y3ThGG6DeURfN2DWZE5hTcAnJ5JUkrV:JWP4WR1f273Tw3DeU7bE5hT5nJ3UYV
Score

1^/10
behavioral15 behavioral16
- Target
  
  jiasuqiEx.exe
- Size
  
  360KB
- MD5
  
  d3ada912c682f34a0ac73d0c02439f22
- SHA1
  
  ff310bf4d4b5ad30f4eb899b90e210ef8478ef69
- SHA256
  
  44eb40aa51c47c21230b9d5ac004ea81db532268bbd371213708055d921e7a61
- SHA512
  
  b1e5e61dacdfee53af9bb347f7dcaf7dbeca6d56909dd510f530327c177ac121ace6bd3644f136fb81bab8284e506f00ce6382a4438bd9c6f24de35f817af8a6
- SSDEEP
  
  6144:OaTY6vcAnKO5Xb+43xsDakMy6pq9oVIY5NwfDBQ:LUAJi4BsDakMy6pNLu
Score

1^/10
behavioral17 behavioral18
- Target
  
  jsqService.exe
- Size
  
  331KB
- MD5
  
  f3b241e33a454050b7fe4b263d126a37
- SHA1
  
  2b293afa300e0f28856210562ca92fc2bfdd1775
- SHA256
  
  b788f5ad3c754d0ae122a1490e7afccd391b7856351eba032264f297905affcc
- SHA512
  
  3053eea7f0fb896c2ff391a96cdcf3e0f4da247a27816e4daf25580c7ad3ce1e7d6ba0ce7199a31948e8d9ff8f235ae045ddb7ec9d02c90c522bb1c71cbc8bd3
- SSDEEP
  
  6144:8ac2gQVcRVMdoKaEhBRGYCuSZ+cpuxIFuKLIYO/L:LQwoOhBRGYvSZ+cpuxIFuK
Score

3^/10
behavioral19 behavioral20
- Target
  
  mgwz.dll
- Size
  
  84KB
- MD5
  
  90f8887cbfcd2ff300214c70348e19ec
- SHA1
  
  a648e409e0f5864efb76b75380270823095aded7
- SHA256
  
  d181863de3240980542c7af12daf57eb1c5231e5df75470a96c21ea9d2dc04a7
- SHA512
  
  e9595757d248216173ea7ac220a0a2339299aaee0e7ba81fe45731115a34ae63c5e3732e39272daa7a828761efb16a6915baa1582957343b7cb374616ab5be9e
- SSDEEP
  
  1536:0jy05n9QfWra04EA7ggg3kU74ILsLV8A7sncWnToIfz5uIO+IOWvqtMz:0j/9QfWrayA0h334IL+V8SsncCTBfz5s
Score

3^/10
behavioral21 behavioral22
- Target
  
  msvcp100.dll
- Size
  
  411KB
- MD5
  
  03e9314004f504a14a61c3d364b62f66
- SHA1
  
  0aa3caac24fdf9d9d4c618e2bbf0a063036cd55d
- SHA256
  
  a3ba6421991241bea9c8334b62c3088f8f131ab906c3cc52113945d05016a35f
- SHA512
  
  2fcff4439d2759d93c57d49b24f28ae89b7698e284e76ac65fe2b50bdefc23a8cc3c83891d671de4e4c0f036cef810856de79ac2b028aa89a895bf35abff8c8d
- SSDEEP
  
  12288:iHEqYsrMWIqz473PTiPoH/aGhUgiW6QR7t5qv3Ooc8UHkC2eKq87:iH9YsIWIW4rPTiPofaDv3Ooc8UHkC2e8
Score

3^/10
behavioral23 behavioral24
- Target
  
  msvcr100.dll
- Size
  
  752KB
- MD5
  
  67ec459e42d3081dd8fd34356f7cafc1
- SHA1
  
  1738050616169d5b17b5adac3ff0370b8c642734
- SHA256
  
  1221a09484964a6f38af5e34ee292b9afefccb3dc6e55435fd3aaf7c235d9067
- SHA512
  
  9ed1c106df217e0b4e4fbd1f4275486ceba1d8a225d6c7e47b854b0b5e6158135b81be926f51db0ad5c624f9bd1d09282332cf064680dc9f7d287073b9686d33
- SSDEEP
  
  12288:fQmCy3NeRjkpQmj3oaMtQqjoygfXq3kon9IlbgaOxQdVJJ6j5EBKX8hR5:ImCy3VQs9MtLjTgfa3kon9FaOdEz5
Score

3^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26