General

  • Target

    46d5a7676f778995c9138b9d06095e7d_JaffaCakes118

  • Size

    7.9MB

  • Sample

    240515-s2bxasgc32

  • MD5

    46d5a7676f778995c9138b9d06095e7d

  • SHA1

    0ea85dd454d07a9365a61f650c16c81c2c7dbbae

  • SHA256

    f14c579f4fcef5777365e27403e54ee6e10320632d959bbdb6aded1a66ac35a2

  • SHA512

    cff918a3428f15c8ecdf9d4e0c27508f090cb5337e2e0722ab117ceab0798bd1147f1b1a7d4679fbc15c48ae1009105c06da6e5de05658fb1c347ebb3cbfbfbd

  • SSDEEP

    196608:uoimyj7jo+i7bQVvX7WNrnQvLxHmX8zl+/FaIZtn5rqZm+KV:Lo7kVHQtX7OrCLxHmszl+/LZtlq8JV

Malware Config

Targets

    • Target

      kdygmdgd/PlayGame.exe

    • Size

      2.4MB

    • MD5

      ac64a4f2426a765c35e82ca6a82a410f

    • SHA1

      592eac781e50844db658acbff3868290bf5611b7

    • SHA256

      81667874b90ba0d18ec480aaa21e950ff51991195b7808042c29055b501c638d

    • SHA512

      27e09e34f8a4df2b098695630095d299cb73dfa39501c9746108508dde3675551a19c9ecc4e4ca65fc9231e38f2c651968d4919446e5fd038375676890203a9d

    • SSDEEP

      49152:BO5oWaKv+hyz8grnkQfKEUSKwmsDExssYDcv2p8:BEv7z8iCUD6Mc2i

    Score
    7/10
    • Loads dropped DLL

    • Target

      kdygmdgd/VisualBoyAdvance.exe

    • Size

      723KB

    • MD5

      b5b04285945b4342f5c7839434831bcf

    • SHA1

      69ca17b7cb3aba478db10a5c10dc373c919eeceb

    • SHA256

      af301e61a76ac2a5e926a6c10a0d903979d5503f379b3901b9643bb850a3c943

    • SHA512

      2792a2702724a4d5d54c3ed85dbf14051a1e39c6c95806a97472e3c7b636915f9880acbbc19fb240962cea973c9f435d510ebee568e3833d64c29c598b1b0d7f

    • SSDEEP

      12288:g/U6XK1X+uiI7iSg2jrbSJZzEQGLTPrSNtTird:IKt+uiC/unwQGLTTGTEd

    Score
    6/10
    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      kdygmdgd/梦之光点4.0.gba

    • Size

      32.0MB

    • MD5

      2fe66bbcf7439b30c04dce333ec5a71e

    • SHA1

      805a3ca43e3a8662d265a9c55bf439ef21031615

    • SHA256

      c7974f4c34d4ee61f304cc05869b7b1610e2ef838262b3f0e449ce6452685264

    • SHA512

      bbe0e52d4a2c762d60ae07b9a586ab5140a3ad0b62cacadc26132f494cf33372c636cc3fc3e75d764b058e15fbefbdf46dccd58da79211cc32ba2100035166a3

    • SSDEEP

      196608:JKOMql8ndTPY9KWnmK1Tds4MhAMKOlIi5xjau9yuclPiuTf:JKtq25A9dpT6u7

    Score
    3/10
    • Target

      安装程序.exe

    • Size

      475KB

    • MD5

      58860f344ef256d89bdb2da87956e1df

    • SHA1

      29dd02d0189427f01bf06061fa2cb1cce52d5420

    • SHA256

      80eb3ae83a4677c885ec10b0d9c0b6c99f71fcc2ee313c5783e3b4d741531672

    • SHA512

      a40988a7a8d0e6cb5c9a28148aa0b153be8dcd1f2c4cc843dc29187bb17c6ea9e3006c42badeb65bfbf08a48436e8dbd497ba09cbccc9b100ae23d3c6693940d

    • SSDEEP

      12288:BidNsyc5AeVjDe+NImEULEUm0DE9nCWpcHvmX//XZ4Nzdd:BENwAeIuzLE3owCa2eXXZ4Nzdd

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks