Overview

overview

7

Static

static

3

5d265c3a87...18.exe

windows7-x64

7

5d265c3a87...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...uz.dll

windows7-x64

3

$PLUGINSDI...uz.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    5d265c3a877964e0731e8518f96e9e6d_JaffaCakes118

  • Size

    763KB

  • Sample

    240520-exjjpabd36

  • MD5

    5d265c3a877964e0731e8518f96e9e6d

  • SHA1

    252fe1865fba75c43bb49bc561a0d366654f620a

  • SHA256

    16f28fcff9585956cc90f812d07bc4e0d51d99eb9e0482bc65cd9e5df8f4ab73

  • SHA512

    8d863f9bb1fe7418051db7a072a804a961f8a1b83f1fa94f355b70be9ceb5638f9cff3e6ecd094e05c98bf60684c2ba4c59ac94827d78e5489c656f44c88358e

  • SSDEEP

    12288:KA6RHO3N09zl8ALjwRcmZPNdKi4BujutAfBPJTkD7d/m4Tsr3PQ3QFQzfc8vy4hH:KFRu3NEZjwVPLKi4BuitSPydCrmJg86A

Score
7/10

Malware Config

Targets

    • Target

      5d265c3a877964e0731e8518f96e9e6d_JaffaCakes118

    • Size

      763KB

    • MD5

      5d265c3a877964e0731e8518f96e9e6d

    • SHA1

      252fe1865fba75c43bb49bc561a0d366654f620a

    • SHA256

      16f28fcff9585956cc90f812d07bc4e0d51d99eb9e0482bc65cd9e5df8f4ab73

    • SHA512

      8d863f9bb1fe7418051db7a072a804a961f8a1b83f1fa94f355b70be9ceb5638f9cff3e6ecd094e05c98bf60684c2ba4c59ac94827d78e5489c656f44c88358e

    • SSDEEP

      12288:KA6RHO3N09zl8ALjwRcmZPNdKi4BujutAfBPJTkD7d/m4Tsr3PQ3QFQzfc8vy4hH:KFRu3NEZjwVPLKi4BuitSPydCrmJg86A

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/okjamuz.dll

    • Size

      126KB

    • MD5

      9e1d2fb8a94dab7d6b9e1d8e3f70948f

    • SHA1

      1fb6f1e5278164fbc7ab9cddbc820613b09f6fb1

    • SHA256

      15ca80cacab210f9973d39a3e2f0b3248237299e6fed157b546644b312802191

    • SHA512

      1effc5a52928f59817e9fc6c15f560ac18ebaa409b2e9b632dc217396983e35a2063cd95b5fc21a8cf1295c48ec2d9ce45969c7d5c9c7f8dfaa8a12fa3ef1be8

    • SSDEEP

      1536:WfbTza5njfuZ0VimmoMjVvkHTS+eHZ4+cOI30iRPmVWL2nwqyZkT56jHb:KXY7sci3jRkH65fMBmGEyZG56f

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks