01331b4e2b83cff51879d394feefba66eb9b32cd3040c961379edf04f517235a

Sharing

Copy URL

Twitter E-mail

General

Target

43e45b0caad8d0e8f94b8c7fc2c2bf8a_JaffaCakes118
Size

7.5MB
Sample

240515-bexf2shd3w
MD5

43e45b0caad8d0e8f94b8c7fc2c2bf8a
SHA1

7b35ebba429026a5051a248a05a727e6e4afdb7b
SHA256

01331b4e2b83cff51879d394feefba66eb9b32cd3040c961379edf04f517235a
SHA512

cd312272c9a0175eccb0485415c6738a7725fa0915fa59b5aeebd3d66770daece9597b262bf4f787a78057798399b938e11689c2ca397cd941a3620aad6a0219
SSDEEP

196608:w7dqWhMyVH6Rfpt3Ns2E3eMNltj2XSfOIW7kS6LXKZ:6hnVH6Hm3JuSftW7kS6C

Score

7^/10

execution upx

Malware Config

Targets

- Target
  
  43e45b0caad8d0e8f94b8c7fc2c2bf8a_JaffaCakes118
- Size
  
  7.5MB
- MD5
  
  43e45b0caad8d0e8f94b8c7fc2c2bf8a
- SHA1
  
  7b35ebba429026a5051a248a05a727e6e4afdb7b
- SHA256
  
  01331b4e2b83cff51879d394feefba66eb9b32cd3040c961379edf04f517235a
- SHA512
  
  cd312272c9a0175eccb0485415c6738a7725fa0915fa59b5aeebd3d66770daece9597b262bf4f787a78057798399b938e11689c2ca397cd941a3620aad6a0219
- SSDEEP
  
  196608:w7dqWhMyVH6Rfpt3Ns2E3eMNltj2XSfOIW7kS6LXKZ:6hnVH6Hm3JuSftW7kS6C
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  9384f4007c492d4fa040924f31c00166
- SHA1
  
  aba37faef30d7c445584c688a0b5638f5db31c7b
- SHA256
  
  60a964095af1be79f6a99b22212fefe2d16f5a0afd7e707d14394e4143e3f4f5
- SHA512
  
  68f158887e24302673227adffc688fd3edabf097d7f5410f983e06c6b9c7344ca1d8a45c7fa05553adcc5987993df3a298763477168d4842e554c4eb93b9aaaf
- SSDEEP
  
  48:iV6pAvmNC6iMPUptxEZK65x/AmvycNSmwVsOYJyvrpXptp/JvR0Jlof5d2:2811GED5ZTvycNSmwVsTJuftpZR0Sd2
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10
behavioral7 behavioral8
- Target
  
  System/Shared/Utils/cmdmp3.exe
- Size
  
  134KB
- MD5
  
  4d86c049b41b608e7500031f4a35d981
- SHA1
  
  30a63c18cb0d419d602b10b28ef3bb54ea68f5b0
- SHA256
  
  65b57680a43703ce1c998edcc677b4fb6bea16e6c8cf12de513623a528d86d24
- SHA512
  
  90a633e68b719fa0c8980e6bdf6629f0724cf3665c8f02f98ffa3e91d0d29a5d5f71c7c58f8ec7d17a068e2df7ddbe409293a1dfe1a23f2bb2d63a3fb2605747
- SSDEEP
  
  3072:PqtlEUxmlgH3i1jaiecEsF44D6gOdmS3bq/LoOS4DKiq4l1:twmlgS1jS5QOuzoOS4Wifl
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral10 behavioral9
- Target
  
  System/Shared/Utils/html/twitch.htm
- Size
  
  990B
- MD5
  
  24df67de7360efbbfdc79fce4d5f19d7
- SHA1
  
  bd61032f2f7a552cfd2559ebeb281598c3ec01c4
- SHA256
  
  a5baf162b8d2642e9e5753e599b37660809d70c0f0e0613d578882a105cf8aa1
- SHA512
  
  bf1a043ce0d3a64cf3ceb3d9d67cf2b70ae3a90ae8f193e4ddfcf49956350d48b8a72489868039f3ba473b1b30ee1cbb52c17cfb1d6aced7cdccca4224f01129
Score

1^/10
behavioral11 behavioral12
- Target
  
  System/Shared/Utils/html/yt.htm
- Size
  
  1KB
- MD5
  
  f1d61be3741906f0fd1dc461bf12ca70
- SHA1
  
  5c3714d0f7d0db000e5d017e6894cf82a8bd06aa
- SHA256
  
  b21caf9a8fbc76e131be1a6c943be120fdd1653b2f273e91804e245d26cfba27
- SHA512
  
  c4f27d807aa222c105715b0fa97aa5c271392610bdca37f07c95e8da52f221a58ab514ba721fe5086cce7ee9887cebef5b2a2714d45f124ab1f0605765bb654c
Score

1^/10
behavioral13 behavioral14
- Target
  
  System/Shared/Utils/js/definitions.js
- Size
  
  119KB
- MD5
  
  d0870f750650c812c2493bb6f7baf3f0
- SHA1
  
  eaf3f0849f66c8dd72f3ed997d56a9ff0adc3227
- SHA256
  
  3dbb1add00992b0b1bf06df8405376a14c7d3267dcc4755a7d2953b32aec9cbf
- SHA512
  
  a7ee7a4c21298885cf968632fd86acb141ef01f58752455e8ab6133da05a4412d6c92992b6008464dfc86f51ab1121c0352ebdc516bac1ea6b5e75c12f7c3ea9
- SSDEEP
  
  1536:xw1S4pDxc3qWxuZiwyWdvQh5AksHxZTJ6Gb1+4hLG3oEMiJbuh1mcJvodJYPQjF:xw7pDxc3qWfBF5AL+KiJbU1mcJQl
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  System/Shared/Utils/js/execution.js
- Size
  
  15KB
- MD5
  
  71c5ff52d74e5ac8ca2b570ecab9dff0
- SHA1
  
  456fd6281181751cfbf12fa08f551c01e8282e01
- SHA256
  
  457fea5e38e50b3bf096e52b76497e2294f0f947b573f7b06671338a67a609b1
- SHA512
  
  8fc8ea27b3391118fc9b3ff6eb7cd6993e33f650557d16359f3fcf2a75cc3dbe3d5048282cf191a1ab2e648eb8140424430146f24237dd1b9f27d102bffdf440
- SSDEEP
  
  192:5vEhtdXKaBvGUftQywwIzJTrDRQArQEokVHhSRiha/2HIOI+mGQa6xLk9a/7uj2M:qht9vwU+ywwIdTv7V62oLbPRxLiiRG1
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  System/Shared/Utils/js/thread.js
- Size
  
  13KB
- MD5
  
  6a2c6917d2584a008b3dbe6565f4fb86
- SHA1
  
  6b920f015f909696c79a6e65b13c2a094a1cbbb5
- SHA256
  
  face13868bee5a6b8656acb833b5d8cdfcf3a0b9ffb05bf434d7e7ef03165f2a
- SHA512
  
  7e854bcae23e2009ec8c54071886c80746714676505a616678b6f4b41e38b19c37adf022aa14d6434e9c3f3164005dcb8c831553a17fe6a7b90660dd9c0ed2db
- SSDEEP
  
  192:qvEhtdXKaBvGUftQywwIkMLY1sxrmo0IcguGXmxVKsx+MQl5E0Q6QL:Tht9vwU+ywwIkv1PqMK3l5daL
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  libeay32.dll
- Size
  
  1.2MB
- MD5
  
  161579b703fb4a30674642d65504d54f
- SHA1
  
  a825295347e31eaa2ae27c7ad2ec20fed0e75b3d
- SHA256
  
  7d533ae5a26d51fead61f66fbaa01e90cae65bbf550d279631add10a43bad4f7
- SHA512
  
  94a01fb2b42cd2bdc38354f4f4dfbbb33eade60ec6b3695e6e21df9891b6ac9a421274c6de4ea93257050a1778db2f6bdecaedfd3c7937c6d087c1751a54762f
- SSDEEP
  
  24576:V0PE7+KpPA9xxo1baZprVWAXhE1M7dqLhOuu1iK71VpoeVVrK5d:jGRZ37K1M7dqdOKKBVposVm5d
Score

1^/10
behavioral21 behavioral22
- Target
  
  sqlite3.dll
- Size
  
  635KB
- MD5
  
  ee68b052a08fec0f574f2dae2003df27
- SHA1
  
  4fe217c85e91d3ae7c46acbc03b9ca6565a29a92
- SHA256
  
  cf5301c28275b1f04d5ebaecc7fc4ebd9ebc970e1c2c9512f5380e263bf9ddfd
- SHA512
  
  d39c9560380c8f8c0a8e15dd3c577bad6d1ffc479afb9dc81e67bc2510f61e8c9fca723c2b931065738b1f554bab73ff934e65fcf4334df1e1539ebd566dfab2
- SSDEEP
  
  12288:A+K+KVF/vfGBIv0GVp/I289a/ZTZFyfb3W/kj5tc+o9bKoISJQf:AdvfGSsGfI28IZTfyfy/Oc+o9xJQf
Score

3^/10
behavioral23 behavioral24
- Target
  
  ssleay32.dll
- Size
  
  330KB
- MD5
  
  5dbf9338e47e43bcee17f2da9f4bffc5
- SHA1
  
  eda920cf525e18bed7280352a02b0f3a7eec552f
- SHA256
  
  a78a1c2cba9ca1f057851aa43ecc34080fd607aa46026a5655cde8270dda3a05
- SHA512
  
  02eb426f6c8a5469b42c82ab0c25b59794eca21444f2114b603b399a9aca03bc558dbc4f6e6dd669dd1b341c3304d99fb207430cdc6770459850622f6fd9f1df
- SSDEEP
  
  6144:vgnOGg4dYb2HX5x9iJ64iqu7Zh6CMXl8h+i6z1tWjrP74h/vbA28eq7QvvygTUER:vw84dYyHX5x9a64iqUL6CMXl8Mi6z1tj
Score

1^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26