1d14500a00d5f63a796ae8002eaacb21ee3feb348ab52f3d74c85c0f914347c5

Sharing

Copy URL

Twitter E-mail

General

Target

6554571360f8c1385fb246d9e2845c2c_JaffaCakes118
Size

1013KB
Sample

240522-ap1qsaeg5y
MD5

6554571360f8c1385fb246d9e2845c2c
SHA1

25908f7c8f962f8cd0bbb322dfa86bbbe5b979f4
SHA256

1d14500a00d5f63a796ae8002eaacb21ee3feb348ab52f3d74c85c0f914347c5
SHA512

8fa9155d6e7b065cdcdb72399c521a278da447994c583f3e349238bea53a5aebc014cdfee2f35f8ed59bd6d55d84cb9ad407044f0d8a7b1c2a550c07a78dbb7a
SSDEEP

24576:dUx3bdywNuJA0g/2i4FmwKGpsAqCwoMZeZCkbx+HHP4V:dU3yiuePui4ItGpsAqC28gkbQHC

Score

7^/10

Malware Config

Targets

- Target
  
  6554571360f8c1385fb246d9e2845c2c_JaffaCakes118
- Size
  
  1013KB
- MD5
  
  6554571360f8c1385fb246d9e2845c2c
- SHA1
  
  25908f7c8f962f8cd0bbb322dfa86bbbe5b979f4
- SHA256
  
  1d14500a00d5f63a796ae8002eaacb21ee3feb348ab52f3d74c85c0f914347c5
- SHA512
  
  8fa9155d6e7b065cdcdb72399c521a278da447994c583f3e349238bea53a5aebc014cdfee2f35f8ed59bd6d55d84cb9ad407044f0d8a7b1c2a550c07a78dbb7a
- SSDEEP
  
  24576:dUx3bdywNuJA0g/2i4FmwKGpsAqCwoMZeZCkbx+HHP4V:dU3yiuePui4ItGpsAqC28gkbQHC
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  325b008aec81e5aaa57096f05d4212b5
- SHA1
  
  27a2d89747a20305b6518438eff5b9f57f7df5c3
- SHA256
  
  c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
- SHA512
  
  18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
- SSDEEP
  
  192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score

3^/10
behavioral3 behavioral4
- Target
  
  bin/FAXVIEW.EXE
- Size
  
  92KB
- MD5
  
  597da6a4cfcf7e889903cc827cd109a1
- SHA1
  
  b5294a0d548cf8e0f4fb8ddb5ef6a6bcf2060f21
- SHA256
  
  3035ffffe970d488f22eb137cfe31fb1eabe40d97b9876788e0a6519a13a3099
- SHA512
  
  bf7ae8ebd654f452d4369b734583ffc69f85ae84d6e33c084852c513527a33aea52550bf838834dc1fac6714ef2923bf58082dfc3153fd14dc00011a39b8b8ea
- SSDEEP
  
  1536:hXRjuNffcgYlmDQAvqkLnG2Zlhq8cBwZI/bjssk:pRjuNffcgYlmDQIqinG2Zq89Kbjssk
Score

1^/10
behavioral5 behavioral6
- Target
  
  bin/MFC42.DLL
- Size
  
  972KB
- MD5
  
  28f2911af34f73259a9c5dffcbf71a00
- SHA1
  
  ab00aa78540eced023d8a8484cdcdb7132c4fbed
- SHA256
  
  aa8c615c8bbcd8ad4a9b624addb512e0702223eb5f266ce8f6a9a005f718a483
- SHA512
  
  f58b47e485411c21d96afda97cc08d51ebb3c05e060411f6be98db309a485d71e35de7ffd5a413800934dfac3b8101b123b7e1d35c0c1108caea9b36eb8d7d11
- SSDEEP
  
  12288:ZDuuMGWwg2zR5wrbY8pH21TQYfuSuyKixQTUUAex9mSCQiF7Jm7VynzY09hctGa:8uP3cbY8tGvF3KiDU3PvZHUn6n
Score

1^/10
behavioral7 behavioral8
- Target
  
  bin/MSVCRT.DLL
- Size
  
  260KB
- MD5
  
  0b9c183d1565b48fa6e5d1d3d4b86bcc
- SHA1
  
  69697324c1e7ad80215fb07ecf6d786e378c568f
- SHA256
  
  2d5670881a6d13a100e37da297f6eeb876f68b63073a28eb5d650625c60f9bf7
- SHA512
  
  c836a4789270b216f8505074ce34b11d0b509e14b25133f3aab8db55ba5451e150b6633c4392cc83c1007f64da1c824596ff4a77aab5f7d340be4f631b2935f8
- SSDEEP
  
  6144:yncoHbacxB5pdVEweKMph18/VhTORAeFMWiFaNF7R5LWCC0uOpL:yncIbac33dVfnM2/Vg/5Bhum
Score

3^/10
behavioral10 behavioral9
- Target
  
  bin/Usr.dll
- Size
  
  40KB
- MD5
  
  14828ce2b7d4c9101aad4791716a0c7b
- SHA1
  
  52c0cab29f218af500024a4e9573c89f693eb960
- SHA256
  
  fa51349bff20e1fb76e6ffe380dd442f3debb318b3a39ab03b6509d6d6255f65
- SHA512
  
  30e22e8b141b528aa30e2dc4859d6baf3cc25af1095dd4ccb8c1ad7285da4658f95bb53957ddc2f14a3ab33679fb0b70260d6339d3523467ca8b5400afc8f241
- SSDEEP
  
  384:vF6hLMKyGvSZlSuaukh/eO0xBifeEXGSMdj6AVA:vDKya9GlTifvXGtj6p
Score

3^/10
behavioral11 behavioral12
- Target
  
  bin/XFAX.EXE
- Size
  
  244KB
- MD5
  
  007a70da16b3f8d94ead3c26b2594048
- SHA1
  
  79c5c2f1a6380fd41f205387cddb76e5fd6bb6dd
- SHA256
  
  4ee3036c238df591a2aef7378c58d919a9e2791d94beda7f701b86be73b710e5
- SHA512
  
  25501657ee0113c8e08a425e2316da4afbcea25305683cb5f9ac4ad3a1995d027f0040094b18707e124054b71eaf7c96c3355fa4727f064933fe38111eac9775
- SSDEEP
  
  3072:wpemlfezJqAjLMa4w/Y8Cil5T0EY/NU0BON+BUy0gf6jN3m6JiY6SS/yLZ:w1mzoAjLMa4wwU0EYxON+BUyX0N2vJQ
Score

1^/10
behavioral13 behavioral14
- Target
  
  bin/XOUT.EXE
- Size
  
  108KB
- MD5
  
  5b6c8f7ec905183acbb1b1537686fb31
- SHA1
  
  6fd720451577e7d714350754c646729a3391f598
- SHA256
  
  983e1129fa441bb6526fd6c916490500acb1e6af50ba690ddb1308cb8784db53
- SHA512
  
  0549cdbb5c8d0635214c59ef1f22f778dc49fef043a5208a92845575e3aae7a7a77d524b41c4db8998c4a87347ffef6f47d6f520bd7fcffe94baf49206c87531
- SSDEEP
  
  3072:eH/pLMa48Zu0y1Br1RZBlaJMXc556QVF7H:eHhLMa48Z29aJM+
Score

1^/10
behavioral15 behavioral16
- Target
  
  bin/setp.exe
- Size
  
  16KB
- MD5
  
  a0a01d94de68bb3b6d1ab76bde8f75f7
- SHA1
  
  7497c715841ea6a13cbec3af6eb842bd1675f8d6
- SHA256
  
  149e8a11abdaf8e79b728e2872a818648900cbb1cc62fe381431c8513a4ca7bc
- SHA512
  
  d5b29ac07865faec0cbb5d987b405c1e9379e99b85769276f5b775dd4b17b9ec952719076234a058c57ee2de7ce6252dd50d6a805e206a1bcdf66cd03a151dda
- SSDEEP
  
  192:QpMcXlQ/1D09S5Doa53L5bIb4y73TmdZ8hbO+STspTSSTyzGvZ/mV:aQm+5bIBadZwOIGSTyzWZ/
Score

1^/10
behavioral17 behavioral18
- Target
  
  bin/xMsx.exe
- Size
  
  84KB
- MD5
  
  e660931dd453ea780b47bdb9950f19ad
- SHA1
  
  a6568d94abab7f010989ec3cf4fa3d5ee1982826
- SHA256
  
  68e48fa8188a073ca3e5ca493cf32bea91e6a69f8ebeb5bd703cc683b2b56aa5
- SHA512
  
  e99dc665f0b60e87f52f34a6b90d0c877e3bbd398d75196e9c082bafb48d77492b63a2b3fb0dceac6b844700f5b28c3f624ac71c1b3a3cddc9dfc9477489622f
- SSDEEP
  
  1536:pojhlZaOa9+GJ98oPXE2Qq5ulfhPxL/ppDNo9ek5A5/lVUCys:po109+q9Z0JldpK0kiBlV0
Score

1^/10
behavioral19 behavioral20
- Target
  
  bin/xMsx2.exe
- Size
  
  88KB
- MD5
  
  e7a91e82f661fa164bb173e48e3a02a5
- SHA1
  
  5e6dedb0bd9757bc13ccabe4eee46cbfb05686a7
- SHA256
  
  7c38a5084424c369fc7f6f6f0303a225403ac13edd116ea4dd122bf1c43f050a
- SHA512
  
  47d7a87d8a32b1743dafa9984c3a7b83b778b7d506495e4a4cd66c9946ed4f83ffeb6885e2c8f4865839885f67d0462bf4afaebb93dbc168ba70bd77419b0fb5
- SSDEEP
  
  1536:nTmhy24vpJeAWWFRW5uricBjgkRGhvRLXVAgDeGZUhMs:nTaireABFsiNWeS0M
Score

1^/10
behavioral21 behavioral22
- Target
  
  bin/xPrn.exe
- Size
  
  40KB
- MD5
  
  4f0e03a2164014eb11607952a7e40554
- SHA1
  
  af168b9db4c6e17f71ff186609ce1e9f943c8624
- SHA256
  
  43946ab55fa4e0a346bd74dae0d26810b0beba752e1ca42b8f1ed74eb31dbc74
- SHA512
  
  8605be7ad5a6a0d6d40daedc9f0429f4b5bfa49f3475d073b133281c8f03fcb756bdbd93c9c3fbfd2a9c6c9a56155c437ceec108fc35f37f8fd44edea9a29e12
- SSDEEP
  
  384:rjmoASTVYnJap0Lp1TmCrEcumkamkNpw7/mkU:rjmIeJacTm2nkbkNpw6kU
Score

1^/10
behavioral23 behavioral24
- Target
  
  bin/xScan.exe
- Size
  
  108KB
- MD5
  
  d19629bb7227515252630d657c55c29c
- SHA1
  
  4142946516e0121b03df8d98c57482382c891ccf
- SHA256
  
  2b4c4dab44943138ec371cd15741b1d61a474ef2bd27461c7faa9a154afd9f71
- SHA512
  
  515c05a7a87cd578bfa58a059f3b47d7e693fc41e87a24f4e55b798b3e25030c88647d846f35830d6cbd3855c88fdcce8d8756644a320d47a14fb682cd586808
- SSDEEP
  
  3072:m1TEjRTq7frBQ4+mffCICfurCmk7+mrf3YG3Jnmt7Liyu7:YEjNq7frBQLgflCfOC4mrvYGZnk
Score

1^/10
behavioral25 behavioral26
- Target
  
  drvw7/AddPort.exe
- Size
  
  55KB
- MD5
  
  2d4f980dab00faf62a6d19d0beb2ed97
- SHA1
  
  051e3b09a03f086319ab9458419743a02a92f82d
- SHA256
  
  38949573360f002588aba77b8c2460f69392984d2f38c8041e6732c83d91945f
- SHA512
  
  e8c44026cc0b9d6f9d1044d7bd494ae3f77d807b8948aa8fc678ff43cfe6978f5b4d14402c6b3e20016a6c9677ccbc2f16439c5285979aaeba7fb0d1be59cd2b
- SSDEEP
  
  192:lC8zYBNgZXF+8LvOFJJROq02KRdZMFu2tx+8dE3UzSYUrGuunKRdZMFu2tx+8dEF:lCAWi08yFVd1xq3UZU9w1xq3UZU9PV
Score

1^/10
behavioral27 behavioral28
- Target
  
  drvw7/FaxDriver/AMD64/ifax_bitmap.dll
- Size
  
  29KB
- MD5
  
  9fddd52ff19521af7e848a1e26924ba0
- SHA1
  
  8ec7aed0e5810822547b7f27b61dec318c663fbc
- SHA256
  
  42b4e8cd8f01d0f890877103d4e8bee04edcec0a860d0b8de2e3591ac5bc3aea
- SHA512
  
  33bc4d9121f89ea38f98c4d0ceaee35e8b98d89c91a4d431a60c75f4283222e9b35a0498be4b7067306d0dcd02849bef0aeb77bc384a0db6194affecf0f53ac2
- SSDEEP
  
  384:x30rRf7yWMxWND/B+NWl4kpwn8NU/x5XYoqSzYR6EC2csBsSEBxOCnb0fLcQGmBV:ml7yUD/kNqFMPqSABvy/IQQGGe
Score

1^/10
behavioral29 behavioral30
- Target
  
  drvw7/FaxDriver/IA64/ifax_bitmap.dll
- Size
  
  61KB
- MD5
  
  06dbdd3b5d88551ba06414281ebce912
- SHA1
  
  5ca7a3b8d9310953c14b13dc8d3ee3d0cd155ba4
- SHA256
  
  30dbec1d9c3ce14a0433a59ebb6ec471ed094409748af6b1ca161a2c908e1657
- SHA512
  
  fbbc04b7c2260f85609b2cc0dbf0d0330a3e0cb334df8dba84672520074cd02186ebe5daebf29d373fce17014f40e28194a9b13e8c984f2749b6315ed1c612d6
- SSDEEP
  
  1536:o2tmHj0vazO40SQN+9yKLby+Sfb0AOCewB/V:o2tmovazOhSQNRKLbyvfYAOCest
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32