0b98e645f29f6ebf364734cb2545e4623800e0f420ea1324b37eb55742a9f731

Sharing

Copy URL

Twitter E-mail

General

Target

63e2c0f3620deab76f89e068a48dc471_JaffaCakes118
Size

557KB
Sample

240521-tgb71abc4z
MD5

63e2c0f3620deab76f89e068a48dc471
SHA1

01ab37fe55395248cd89faed265ac8c73bd2dfca
SHA256

0b98e645f29f6ebf364734cb2545e4623800e0f420ea1324b37eb55742a9f731
SHA512

42ce5082ff82e45fdaee9f660c89306f6ee746df48dd99bd6244602969342f29d36e8918f30a2ee5b1d8eeb528aaddb8214c19c17e460154e75af36d1ca20e28
SSDEEP

12288:J2U/vDfOF1yLB8PBcA8vB6Ord8O7PcbQ6AYtDK1AcFBcW3Yl:cwvDfa1yLiBo0MkbQ6AYtGqaIl

Score

7^/10

Malware Config

Targets

- Target
  
  script.media.aggregator/aceplayer.py
- Size
  
  1KB
- MD5
  
  94bd29a12d59a1344aeb61ccf20c9a36
- SHA1
  
  8d2fc8a51fd2b105226ad502947290d72c0f7132
- SHA256
  
  43c3ef97a3d88b8e32778fb696e3be51f9b7d8360e3e4ff613a2e816ed08ea67
- SHA512
  
  d4b8acd0dacd29cb725224afd690dfe2a39082f7419f528c214f176ce3f352e3e25e770d373c274bd38f7925755f92131d47d8c40804c0c3ffbce7c9a809e92e
Score

3^/10
behavioral1 behavioral2
- Target
  
  script.media.aggregator/afteractions.py
- Size
  
  8KB
- MD5
  
  5a5ff287c7fe7b437dccb974bd32965a
- SHA1
  
  efb1e01f9f5301e0c19aa84a2f9cf2b683fea5ed
- SHA256
  
  dd18743ff184cad18c977833e501bf2837faafdf78647eb08e3909da28294811
- SHA512
  
  c5acacf00ab69d64c57fe541ce4a929e071482dcaadf10376a711e17461725a457e7450d89931db810966bd0385c4e4a5cb02de524cb58a20bbbb6760f8973fb
- SSDEEP
  
  96:8NK52LuYiq77fx/cQ6gFmmuBeOqck0NPwQkh5QnfYArG/kOnPu0gD9rO3Ghw2jvg:b8xwbkUMyfYlfnPTgZrO3oTuv
Score

3^/10
behavioral3 behavioral4
- Target
  
  script.media.aggregator/anidub.py
- Size
  
  12KB
- MD5
  
  f181fdfc6a6ab08e9f5c057a16702c9f
- SHA1
  
  46bbe14bce594a92a4a44c745782a8077d7b3f04
- SHA256
  
  4d076a94dcbfcf0757b7b8cef44ecb99d9f7adc3b540dd68caa76173282972b7
- SHA512
  
  b533b30c38e3eedc11e15db453bd733b51abbdd69fc364fcb216efdd1da94988a722d72e83d3417b90b71135191b3d67865f37a8d370562bb1c34a5653c1fcb0
- SSDEEP
  
  384:pqahqAXn+TzpLXsmCdiqFbQfh3pHRV2eqIo+8BL:hYAXnoGmDqFQfh3VG/+sL
Score

3^/10
behavioral5 behavioral6
- Target
  
  script.media.aggregator/backgrounds.py
- Size
  
  14KB
- MD5
  
  5100532cc0f372034dfbab0b5ee5539a
- SHA1
  
  918a8d30405c7279f0e516903af0449fadf51987
- SHA256
  
  1012f12f7325868844d6c13fe4c11bacc5e8cba64ecbf5c9c504952f36eb28bc
- SHA512
  
  2ccb94640548d5be33cd555503d37b25d6c039d9f0eb7996e78d701990097eeace735e15e4bd822e0b46c7a0f0d0603b2b389da26e5792044aa375abf18d6b2b
- SSDEEP
  
  192:RB8EDCXF8cC49PYO/fwc0lsv/1ctv38UaM32W+JmRPRR7Akd+PwblOmskeXBR5KQ:RBPDIEsvtcwItO6Ob5KdcSY0s
Score

3^/10
behavioral7 behavioral8
- Target
  
  script.media.aggregator/base.py
- Size
  
  18KB
- MD5
  
  d6a0a20e0bbb4ef323d81a5b854961b0
- SHA1
  
  50a8deb13a8ee949e572402463eb9dcbd1c49419
- SHA256
  
  88278bd4b31196233067ba2d854b7c170d53b75f2c2912be43a5cfd92665b670
- SHA512
  
  e1f079471380892f50f3ffbc88f5d3430e24d029a84776b71c4440305aa1366d128fa7dff150d419ecf796bbcfd30707fa0dfde374667884e95b6526783e5cfa
- SSDEEP
  
  384:LShNDc8ryO0uXgS8FBa+D9pKZKXmo/oWXOYSPbc564Ng:uXDcEyOSFBay9pKZejQFckR
Score

3^/10
behavioral10 behavioral9
- Target
  
  script.media.aggregator/bencode.py
- Size
  
  3KB
- MD5
  
  4d212c8f17948c771eb176d830963d2d
- SHA1
  
  7b984352bcf42a73cc8b85fe87be2498867769c3
- SHA256
  
  b8b0dda8e1f1365bdc13df66565d50b6c4d571c6ddb7476ebe41a63b8b48fba4
- SHA512
  
  3add392004c923cc67a448ea481c92cb934edf2ddc3d98648ee5afcd7546150ef64684ec0129cb8a9188f67deaf8b30c2aab2a61a5cab7cb2057832c2a801c53
Score

3^/10
behavioral11 behavioral12
- Target
  
  script.media.aggregator/bin/u8runner.exe
- Size
  
  21KB
- MD5
  
  24735674aa04d36f56c748d89f40bfc8
- SHA1
  
  d8ea00e14a2caced07dde803dad2f702759a93e1
- SHA256
  
  97eb4203ee0b6b789388b55e0550c04865d006e6df3ff7d29edadb11b2bffa45
- SHA512
  
  030a43a7cba0c6e75790693160fe4b8ea5802f34c03e6fcde25a44dca7bdbe32da2b0a3643f816a6175d144173d09d69a52e6ed48b8699d1469aa9e9d307fe09
- SSDEEP
  
  384:ROV3Ohl55MJ+PtLcFuoInpqbiEB1+9GfrBWp+G6X:gJRQFHyiEB17frm6X
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral13 behavioral14
- Target
  
  script.media.aggregator/bluebird.py
- Size
  
  12KB
- MD5
  
  930589511a89486e3b83fd2534ddd884
- SHA1
  
  7e39ca5e5170d1f2642207fbf9a52103e6702033
- SHA256
  
  7b0ea6d3389ef0139b4ea2d290b67f682f090b6a68ee77ad183d913b844073f3
- SHA512
  
  93a5f87009c27119fc2d038cff9a04a92cf6a11ae2860df05213da8e6e77f9ac0e8306e0f203bf47d187f9785fe2b0e0d6c40d7ecd32b30b3b7d9cb88a5ba0e5
- SSDEEP
  
  192:ttcQZct7oCqH9pN1myacqI13FgDsrbIfp5tfhZcQNRZcHp6rrNTzgEKCW:ph9FgfI13FgDsr2bZ8HENTzeCW
Score

3^/10
behavioral15 behavioral16
- Target
  
  script.media.aggregator/complex_requests.py
- Size
  
  482B
- MD5
  
  cd8833af9d25e8dabf3302fe05c04784
- SHA1
  
  99a5bf22cfbdb5f3a864d2f80814ae790c4e2039
- SHA256
  
  eaa97f7e347728f1dadc0d8589ce8d04b63f777b7626257122b513949ac77289
- SHA512
  
  eb6153abe9d6f83306925a710b5bb0d461b41b6bd4deaaef65253d7014e3382085559b730d975cbb0eb72baed80fa09702d9a41df89dfd6b5b3371ea082a94d2
Score

3^/10
behavioral17 behavioral18
- Target
  
  script.media.aggregator/context.py
- Size
  
  13KB
- MD5
  
  846d8b3f68f8b386b9d2c856e8a391e5
- SHA1
  
  0d58314c2f0e2ed9b9442668f722e90b639f5432
- SHA256
  
  070515a87263de9d865a95df18f686b2eab3f6a01472ad6866b0ddeff4f46740
- SHA512
  
  58269576c62f281ad3194d9e8b41e2119c7ba4d437d70e28201fc49142d71532c53d739e62048c46f6202af342b20e0ba646bfb2f5b3aab413faa265764f24db
- SSDEEP
  
  192:K/zMYwiEWTMm6AMYyiLEOqmErWBlcP2/1G+M3DxFNeeaHvyhPQIs0KKdm7BPzTDC:K/I293yiLEO7AWkP2dVuKIt2Pza
Score

3^/10
behavioral19 behavioral20
- Target
  
  script.media.aggregator/context_get_sources.py
- Size
  
  390B
- MD5
  
  421ef20655da174e786179948e909a18
- SHA1
  
  1fec1a07de27bb45227a79384d8e95dc9d8122ca
- SHA256
  
  6ae4d6f8908cfc712ff8c9d36d849477845513a434ef08c085139c6db14761f2
- SHA512
  
  ca64558c9817cbf199a4fc81902ad82a0116ddf5a91c0954184be78eefbefd48ee8cce002443ddaeb3b3d2776bfbddb8d7137c39b9e15428228e70686e0a2d76
Score

3^/10
behavioral21 behavioral22
- Target
  
  script.media.aggregator/context_repair.py
- Size
  
  4KB
- MD5
  
  1116fafa181ff0ec02e2c4e0bc2a604a
- SHA1
  
  e5993a83168c98fdd94522a6b6d511a4ac9fe771
- SHA256
  
  8b9a22b3650e788249305638306eeedd0820d974bcfa67049d3efbfbc5b26b7c
- SHA512
  
  501ddea1bb7c432077b85f4ee5d858b68b49e0b334234b052ad0f8c9753669d438dd1a83b41c0daba25b8e752ab5d528bc9a1b0a71c987a4198caa646d81fc4b
- SSDEEP
  
  96:ZEV+sHJn7dtp7UorCDBcXThQyUw5hWLyh2q9FAzLuCT:ZE8spn7dj7T6cXThQyUw5hEyhZ9CzLuE
Score

3^/10
behavioral23 behavioral24
- Target
  
  script.media.aggregator/context_search.py
- Size
  
  464B
- MD5
  
  55124731005cfb82179f4674c7074df5
- SHA1
  
  c5951f0e20a754a571d41dbe0db617b916c6fe39
- SHA256
  
  148826180c8d4aff55e846c31bfff85f7eb6e10e2f8a9e19aac2db04143dc6ae
- SHA512
  
  4fcd2f566403d37b4b64962fd1c99693a66e9bfa3bfd994c375b901de87de815e0e1971a135a36ad850e4efb2cb92b2c456105897816f731b78ab0d3f9fc833d
Score

3^/10
behavioral25 behavioral26
- Target
  
  script.media.aggregator/context_settings.py
- Size
  
  80B
- MD5
  
  567d354b2fab22d7697889834ef22e47
- SHA1
  
  eca7f60805d0214a34635c4fad299e809e289099
- SHA256
  
  e916f531fb732614ec70dc1f347eb74bf11414e7ea409ea6af8a3307359be902
- SHA512
  
  75a911aa0d223c32ee4f4f5fde0eb5aa66bb5545ff5864801762659563ed4bef90b505280f509e036b7151bcc5f66b01318458cf66aca8694ff96c98e45e6e61
Score

3^/10
behavioral27 behavioral28
- Target
  
  script.media.aggregator/context_show_similar.py
- Size
  
  1KB
- MD5
  
  0ab65d97948e75fe95504ed6fca49f52
- SHA1
  
  f3f30121637fc944acc98be48cc15214cd13ddde
- SHA256
  
  7dfa3272e22b5d4b60de04027dcc1deabc16232560a6e54b06e5577b59070376
- SHA512
  
  542292e9ca6636fcc6ed4adfd49f31e6468d2cf1e50ef0300a99c31402acbf579bad22226dea39c6f046080ba973a4494ec0b897c459f7dd24774690cd9ad4c3
Score

3^/10
behavioral29 behavioral30
- Target
  
  script.media.aggregator/context_united_search.py
- Size
  
  297B
- MD5
  
  73b63c55212eca45a07d67c25f163af4
- SHA1
  
  4c22558c9cbcb0459238bcd8ecfcd18914fd444b
- SHA256
  
  945d3153d6a94caf41a64103503ff17f7d814b94f37b8ebdc46cb6d40485f9f2
- SHA512
  
  12f47e34da53534a5bc6e8e69589fe639523f37fb4c3fd00a13a409db70349f8ef7b8056145a69dae857dfde7d4a0bcaa5be6f59d0809bea2dcd3e6300186a12
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32