3c3cf3d710582ccbb7a45139c1acc3a8d6bcfc017b9a4aeae6bf34a292f057cd

Sharing

Copy URL

Twitter E-mail

General

Target

654e8b224a9e90ba0f239dda1cad5148_JaffaCakes118
Size

19.3MB
Sample

240522-ah4tvsee25
MD5

654e8b224a9e90ba0f239dda1cad5148
SHA1

3292a3f8cdd5a42ff63c3b85b8f150fe4a3fa07a
SHA256

3c3cf3d710582ccbb7a45139c1acc3a8d6bcfc017b9a4aeae6bf34a292f057cd
SHA512

a881c08953acf37e0713fa4905a91efdf75be08d118b1c053b49697e7a16eb1a9adc8175c723914e3ac6cee53693329b10db151694dd9f1bfcda4551bb933ee8
SSDEEP

393216:lbLBjVnsPkCFAleD+X0CPGcC4TeuPgnBiE/3hi:lb9xpeqX1PGaTVgBr/g

Score

7^/10

Malware Config

Targets

- Target
  
  654e8b224a9e90ba0f239dda1cad5148_JaffaCakes118
- Size
  
  19.3MB
- MD5
  
  654e8b224a9e90ba0f239dda1cad5148
- SHA1
  
  3292a3f8cdd5a42ff63c3b85b8f150fe4a3fa07a
- SHA256
  
  3c3cf3d710582ccbb7a45139c1acc3a8d6bcfc017b9a4aeae6bf34a292f057cd
- SHA512
  
  a881c08953acf37e0713fa4905a91efdf75be08d118b1c053b49697e7a16eb1a9adc8175c723914e3ac6cee53693329b10db151694dd9f1bfcda4551bb933ee8
- SSDEEP
  
  393216:lbLBjVnsPkCFAleD+X0CPGcC4TeuPgnBiE/3hi:lb9xpeqX1PGaTVgBr/g
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/ElevatePrivileges.dll
- Size
  
  81KB
- MD5
  
  662f8362261ba53141b2bc88499acbcf
- SHA1
  
  e976f6928f12451e5e30d707626cfa5eb8a26afc
- SHA256
  
  0d98f84230c3adddf5e5b91cc614071abf84a00b763e6c22117543796ae13e78
- SHA512
  
  d1027454efd2b905cb3a8a356c24647d8bace9895cf6968c65e1dbfa7870f34339bddac52d3eab52742a541b3078f2c79ead60e7bf495718167c5c3868abb8b7
- SSDEEP
  
  1536:hqpzymwTMsDb3BRhTmry0SkMnKBWCYRb4z+8vI:hq1ym7sDb3SywWCIbAvI
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  15KB
- MD5
  
  89351a0a6a89519c86c5531e20dab9ea
- SHA1
  
  9e801aaaae9e70d8f7fc52f6f12cedc55e4c8a00
- SHA256
  
  f530069ef87a1c163c4fd63a3d5b053420ce3d7a98739c70211b4a99f90d6277
- SHA512
  
  13168fa828b581383e5f64d3b54be357e98d2eb9362b45685e7426ffc2f0696ab432cc8a3f374ce8abd03c096f1662d954877afa886fc4aa74709e6044b75c08
- SSDEEP
  
  384:/MnT0MKT/Xwr2izZQ86mpAT8F9lN8Ov0J:EQMKzwTFnVX8i0
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  a1cd3f159ef78d9ace162f067b544fd9
- SHA1
  
  72671fdf4bfeeb99b392685bf01081b4a0b3ae66
- SHA256
  
  47b9e251c9c90f43e3524965aecc07bd53c8e09c5b9f9862b44c306667e2b0b6
- SHA512
  
  ccc70166c7d7746cd42cd0cec322b2adf4a478ff67c35d465f0f0f5b2b369c996a95557b678c09cb21b8311d8a91eed4196ddc218ea7d510f81464669b911362
- SSDEEP
  
  48:apTVWFeApYx2lxaKe3yfeEIWCGWNpBWLGGrx3pMt4z8mtJ7HofYZVSLa:RFG0xaKkyfjIWTW7BYrhSbmtJ7/V
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/Registry.dll
- Size
  
  93KB
- MD5
  
  33ca3018c1ba8cab6b1acf0e79103618
- SHA1
  
  e31f4c54bd9d76eb68f5e0ef08a99f241e981947
- SHA256
  
  8078be74f4cd4b6aeb4fb3d5d0d467d4ca32bdb18ea48ce2ab07dc61ab7484c7
- SHA512
  
  f0fd4fce7dc9d77ccfd8c692db59e5e3e90f54887947ffba8dee4452403746ecfa2281b44380c4b3f00c6c78cd6babc12c43805e55064d502e012f3f33c3579f
- SSDEEP
  
  1536:UdxbSzGuoHghElK3/O2yLvPmWwUgSc/Ze+tGYNJk1teOtAbltg:UdxbSzGuR53/bKeFUOltGYNJ0teOtAbI
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/SaveInExe.dll
- Size
  
  112KB
- MD5
  
  4220724491d7c37e1d6b7fce944fda68
- SHA1
  
  57a08c6b34e80e3af08e46f2caeab4eb24bb3925
- SHA256
  
  81f1601347be8e20da6111152cbad6a4a3306dbf425269059f44cecd408739d5
- SHA512
  
  c2fcd414ce065dcbd41bc8116db2622473ed32b1ef6912d20ed4df1d7b81775441ce14d49fb986e3a069b9e155d613a830a280ccc223f6ad205e5eab2f4c7a94
- SSDEEP
  
  1536:zxPYWXFW1iZtBfAWNkFkfOcxKIVNewI43P8gMaV6yy2W/SAO4tU72s/torLXqF2S:V5Q2fTTxVN4ehMFi7AjtU72sV46p
Score

3^/10
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  bf712f32249029466fa86756f5546950
- SHA1
  
  75ac4dc4808ac148ddd78f6b89a51afbd4091c2e
- SHA256
  
  7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af
- SHA512
  
  13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4
- SSDEEP
  
  192:0N2gQuUwXzioj4KALV2upWzVd7q1QDXEbBZ8KxHdGzyS/Kx:rJoiO8V2upW7vQjS/
Score

3^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/execDos.dll
- Size
  
  5KB
- MD5
  
  0deb397ca1e716bb7b15e1754e52b2ac
- SHA1
  
  fbb9bcf872c5dbb4ca4c80fb21d41519bc273ef5
- SHA256
  
  720be35cd1b4a333264713dc146b4ad024f3a7ad0644c2d8c6fcedd3c30e8a1f
- SHA512
  
  507db0bee0897660750007e7ce674406acf9e8bf942cf26ded5654c07682757b07c9eb767bead0966478abc554dc9a6461c4288dc35d12cacfadad4c128f1bb7
- SSDEEP
  
  96:J++xDiP4p7t7dNOt3stxtRFFXxGD6qxlnKE6ttdH3r3:Rx9pJ7jQs5toD6Cln/6tt1
Score

3^/10
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  4ccc4a742d4423f2f0ed744fd9c81f63
- SHA1
  
  704f00a1acc327fd879cf75fc90d0b8f927c36bc
- SHA256
  
  416133dd86c0dff6b0fcaf1f46dfe97fdc85b37f90effb2d369164a8f7e13ae6
- SHA512
  
  790c5eb1f8b297e45054c855b66dfc18e9f3f1b1870559014dbefa3b9d5b6d33a993a9e089202e70f51a55d859b74e8605c6f633386fd9189b6f78941bf1bfdb
- SSDEEP
  
  192:SbEunjqjIcESwFlioU3M0LLF/t8t9pKSfOi:SbESjFCw6oWPFl8jfOi
Score

3^/10
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/nsProcess.dll
- Size
  
  4KB
- MD5
  
  f0438a894f3a7e01a4aae8d1b5dd0289
- SHA1
  
  b058e3fcfb7b550041da16bf10d8837024c38bf6
- SHA256
  
  30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11
- SHA512
  
  f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7
- SSDEEP
  
  48:Sz4joMeH+Iwdf8Rom/L+rOnnk5/OCnXeAdbdOAa4GPI+CJ87eILzlq7gthwIsEQW:64c/eFdfS/SSnkxNa4G+ueqPuCtGsj
Score

3^/10
behavioral19 behavioral20
- Target
  
  $TEMP/downloader.exe
- Size
  
  121KB
- MD5
  
  3cdef963a7e1602dbec0d9ec6ef117ab
- SHA1
  
  688a6072efadc70c0e901681f32d7c8a49516a56
- SHA256
  
  fb1747a7cd68acd1ee8a95acd6c4973c46f2f3a7934645ec7f198d0eacb64815
- SHA512
  
  c67464b179e6c7441ae4d5394a44d1519e2ede422f2fc8da539105b6fae01cf2dc2d060ebd534002ebfe3f550e462192f7e89292bd6bba09acef8432deb4ee8a
- SSDEEP
  
  3072:3V270VcSvPA0PEjB8/Q3fU/9L6sYFCfTmK+bBFqY:F/DPM8I38/9L4FQS3uY
Score

1^/10
behavioral21 behavioral22
- Target
  
  $TEMP/vcredist_x86.exe
- Size
  
  4.8MB
- MD5
  
  b88228d5fef4b6dc019d69d4471f23ec
- SHA1
  
  372d9c1670343d3fb252209ba210d4dc4d67d358
- SHA256
  
  8162b2d665ca52884507ede19549e99939ce4ea4a638c537fa653539819138c8
- SHA512
  
  cdd218d211a687dde519719553748f3fb36d4ac618670986a6dadb4c45b34a9c6262ba7bab243a242f91d867b041721f22330170a74d4d0b2c354aec999dbff8
- SSDEEP
  
  98304:RuLgywiN1ah6HcG0UJrN7SDgndrHZDMeaNNjt0CKKBgY2r71pZ/APaOR72HgQo0z:I7wq1W6HqULS8djZDTaNNeCKVP5ORsg0
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral23 behavioral24
- Target
  
  CleanerServiceInstaller.exe
- Size
  
  35KB
- MD5
  
  ed76577230adc2088f1c741940eca7e0
- SHA1
  
  e07ea9d6abd073a466c298635b0501992ef1eba2
- SHA256
  
  b7243405dcabe0157a76f235adaff3fabce1efebbe395e30dd3840d1a1a51c98
- SHA512
  
  087d7cf1f791048369dd4ba2575f9792427793a8aa5a6679f402941fcba0825e7f8ab6e6e2a45bf3b53c201f7faee2be1f2622f631052279c7da6fb19c17df6f
- SSDEEP
  
  768:PEobe6/PgoBlSaFKl4IwCo4ef5bZKXsKz+isyb4O74EONTgvq:PEobeKXc4//x1KuiseL7DOwq
Score

1^/10
behavioral25 behavioral26
- Target
  
  CrashRpt1402.dll
- Size
  
  134KB
- MD5
  
  7f58c31ce19f798707f1937b676c805b
- SHA1
  
  03add72537338f2749a2ee95d36969bee89a8a4a
- SHA256
  
  12c5c87e14577a2fffc968a41b8f9060ee263f0f35792c00d859af0222d36372
- SHA512
  
  f66257155b9e99bda25f2502bd3b9c1a0d1160d1473ca3fa73bb57f1c22c97f704045961fa6b2acaca0fc36682183e6481f35a5a25fa449971450e8c36e79e1c
- SSDEEP
  
  3072:0FSYO8EHKGqrqqntxo1WOi3+T7iOHnxOf3z:0FSt8EHBMtxo1ptOf3
Score

1^/10
behavioral27 behavioral28
- Target
  
  CrashSender1402.exe
- Size
  
  920KB
- MD5
  
  db4d160045ebca0572466bacc7de41e4
- SHA1
  
  23d3f09fa96f217811aff61bc3a5cd2a015ae9f5
- SHA256
  
  92c2f9fa67ba634f41361c14a505a559c0f33f33b984f38c7cbfb7c9f8bc65a9
- SHA512
  
  c383b5bc35882a0c613c3da729990a88228b41392b6116473b5901a44400249cdefe2ff53700f62d903d35503534146ecb7259c72f610e4cc312f7f969e90e81
- SSDEEP
  
  12288:iIw45ZNnDQlGEMHlwW7hTv/BeUD+gTt5MyK//ndXESZ8jaUWbEb9WTyAqgy6e:zrr4GEILeA+ghy/dXDFb0kTyngb
Score

1^/10
behavioral29 behavioral30
- Target
  
  Qt5Core.dll
- Size
  
  4.3MB
- MD5
  
  e009fa6b9cd814e7f0c47989064ba0cf
- SHA1
  
  d7978b907d28510a11d938625fce3bb249fd2e3b
- SHA256
  
  f7dd1e22b136d0edbdc230eabcabd28fcaf43ffd798001de40ef84d80095d580
- SHA512
  
  b82db43b3950f7c29fc584d5bbc41a8dcf27d38c54077b81277de18bb052fc076c039827eef1f32fa55788eee1659ba6289b72ada858e4dc79eb0214c8829b8b
- SSDEEP
  
  98304:dlFjspp9Z4tkHj2FHH/eyrGJsv6tWKFdu9C76DqF:ljspp9Z46HiFGJsv6tWKFdu9CGc
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32