94fef3ee9512941ff1aa4c8a951598ae67c42b71fbc047d28f3164570497d0b0

Sharing

Copy URL

Twitter E-mail

General

Target

743ac40c6b7ef79481773fd14dc6bfe7_JaffaCakes118
Size

8.4MB
Sample

240526-eab64adf51
MD5

743ac40c6b7ef79481773fd14dc6bfe7
SHA1

f5b04c1a4fb752ab750a1ef91313bd6f7095eb61
SHA256

94fef3ee9512941ff1aa4c8a951598ae67c42b71fbc047d28f3164570497d0b0
SHA512

0104cbb1c5ec5610ed760289ada227921be8c1f526e5de0adf516ebad972cf1eff20fd59ac85a7cf1ea121f6036b4c67147f7d04515dd6f401376a3f11bcd164
SSDEEP

196608:TUWVop/eZE87qzzvrAhPtqCybuUuXwEED0Yoj:TUWyp/e+RfvrsPtyfuXwEED0Yoj

Score

7^/10

Malware Config

Targets

- Target
  
  743ac40c6b7ef79481773fd14dc6bfe7_JaffaCakes118
- Size
  
  8.4MB
- MD5
  
  743ac40c6b7ef79481773fd14dc6bfe7
- SHA1
  
  f5b04c1a4fb752ab750a1ef91313bd6f7095eb61
- SHA256
  
  94fef3ee9512941ff1aa4c8a951598ae67c42b71fbc047d28f3164570497d0b0
- SHA512
  
  0104cbb1c5ec5610ed760289ada227921be8c1f526e5de0adf516ebad972cf1eff20fd59ac85a7cf1ea121f6036b4c67147f7d04515dd6f401376a3f11bcd164
- SSDEEP
  
  196608:TUWVop/eZE87qzzvrAhPtqCybuUuXwEED0Yoj:TUWyp/e+RfvrsPtyfuXwEED0Yoj
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/AccessControl.dll
- Size
  
  10KB
- MD5
  
  055f4f9260e07fc83f71877cbb7f4fad
- SHA1
  
  a245131af1a182de99bd74af9ff1fab17977a72f
- SHA256
  
  4209588362785b690d08d15cd982b8d1c62c348767ca19114234b21d5df74ddc
- SHA512
  
  a8e82dc4435ed938f090f43df953ddad9b0075f16218c09890c996299420162d64b1dbfbf613af37769ae796717eec78204dc786b757e8b1d13d423d4ee82e26
- SSDEEP
  
  192:8SEWBGgiJM4LN+xq56XdNcNz/NWdlJmlyOcROQ:8SEPgii9KTzyt
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  07f44600b7eb220c2606e67a6d3f679d
- SHA1
  
  13b3aa534496ffab2597cc8ff3689cd91facc89d
- SHA256
  
  59f7effd3d516dabf92a41e9886c307bd26f0e0985d637414eba1b3f9f720dab
- SHA512
  
  63ec9038b718da687065f3938f87391c7925577b656c63cf5abc32de5b7daa7363f07ce973d2af8ea347321a3d1c543273b6cb1ca30eb414c8657f90cd0268de
- SSDEEP
  
  192:8nT6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+MT9K72dwF7dBEnbok:8T6UdHXcIiY535zBtMT9+BEnbo
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  f55b41485cbaf292389a52f8e4f0594b
- SHA1
  
  89e9b0d1291fa78a40cab358553c447cbbeaa130
- SHA256
  
  f16bc2ceb7a6bc7df0955530e72b0aa072ce27650c5cf7b33fd4ea82dea196fc
- SHA512
  
  938e8661b8cf418608156dc813c1eb0cc3fa5efa9483061a152bb103c4d821d5c6a82d4c110729e9686f99ccd4da188aebb38a85a01d8ecadb34bb9f6ba60d09
- SSDEEP
  
  192:uDKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQbfSF:uViJrtFRdbmXK8+Wfw
Score

3^/10
behavioral7 behavioral8
- Target
  
  EngineApiWrapper.dll
- Size
  
  174KB
- MD5
  
  e7b3a04330517223ccac06e69a19591f
- SHA1
  
  f095a99e6fecda3652203e9e45bc53b32f7017f8
- SHA256
  
  f303484b154f87be0c2d14f564b0e460caf752b1ecce53095b447ea70021bda0
- SHA512
  
  837522b5deb0e30dff0b7566050f067946335cc8ee1e4e835135bc0dbea459ba933f4dff88d18e764a11fdcbda7974ecc1c28b67ca1e0e57d54a435acd586965
- SSDEEP
  
  3072:CaXkbRmkwLAGDsN5VZj4FMB3VXf56gd3nIouCOtaJQ:s0kgOVSE6OTvOtaO
Score

1^/10
behavioral10 behavioral9
- Target
  
  Filters/LC.dll
- Size
  
  76KB
- MD5
  
  6316c4082cacf8f3f4f22daef56cb15c
- SHA1
  
  cea3de90b20396b092797ec8c7e241e822c8faed
- SHA256
  
  5594b08c79a4d188a674713011cd516618fa36d2f988f7d353fb3370939a4062
- SHA512
  
  e1e0a6440f91b208b61775e30d8fc1be299a298e00ed564ca7c74fa8728738af66e6c3c0805553abbc4a8d2838cd21bfde61ac2322fff4e62ac4d6796a0821bc
- SSDEEP
  
  1536:amAnsoKlNNzfkEMqqU+2bbbAV2/S2eVLVUJfKFjJ:aooKlNNQEMqqDL2/MJUJfKFjJ
Score

1^/10
behavioral11 behavioral12
- Target
  
  Filters/License.rtf
- Size
  
  62KB
- MD5
  
  8b1e3300d8671530e75c4ea201945457
- SHA1
  
  a7933ae925175f0cf6876506f56583cbbc18e966
- SHA256
  
  ab5e632345d9ced4f8bcb210bf6e0922a18479e0620943acd613d7b5c68f473d
- SHA512
  
  a58a7a2c473cf5e9d81664c30904c18a593c57a873ee9dfa20610594885be54fb92dec628dd3dc3d73c7d7f266b20c771447d9b1cd7d3fba7b66526ae6157184
- SSDEEP
  
  768:zgv96cAAxEzYDlHnnDx2QAAw44RmkXOQQrWU0CW246jm/grBT8UojwKA7npBL4Cc:apRyHEQmtmMy4uIxju0TfTRY
Score

4^/10
behavioral13 behavioral14
- Target
  
  Filters/Registrator.exe
- Size
  
  48KB
- MD5
  
  401513fe6b8abe7de06fa04687f7dcbc
- SHA1
  
  6d6572d11702c1d693e0d07c82a54f5093dfcaf9
- SHA256
  
  3854803c632fa99ce0f6796fd4e79f2a9139f55f4f664323e98b6c93e0d9b6c7
- SHA512
  
  ac8528bcc965cafa71ea0efd8bec26561fe97aa1c6c7c9be486656dcaef6002e3806ce986363c0c780cca39411213c3dd6ad853d88186988510fa52f2a55421d
- SSDEEP
  
  768:Qc00lI9yRArLpZKRBBVteiQ1fYy2JNEAhPIJAJ5jtOhfCXVUgE:QVYQyRqFZwB/fNy2JC2gGJvOGUgE
Score

1^/10
behavioral15 behavioral16
- Target
  
  Filters/elaudec.ax
- Size
  
  789KB
- MD5
  
  65bc164691324846b73009b2343293a5
- SHA1
  
  b042beae9cc028a54145f0580ecd545138deee2e
- SHA256
  
  d8fa0b5f6b8be1fa99fda003963dd0d011ce41039b71286befbd9eac827b29be
- SHA512
  
  094403dfbef9a0273b34e480018bf1d1a640c865c543aec8c9abc8b411745d0ab3163d313e0a86fe099c53ea357f9328f3c3b31ceb3bb2aee2ee4dad9ffdc5cf
- SSDEEP
  
  12288:9hbEyqYmKRKO2i/yl7OVGCd9Oy7CpLZN61n:nEyqQgi/yNOVGC/7lR
Score

1^/10
behavioral17 behavioral18
- Target
  
  Filters/em2vd.ax
- Size
  
  748KB
- MD5
  
  ef708c4484c105389e581ef2f571bb5d
- SHA1
  
  3913dc913d4d1719d23a656d14780596fbaf917a
- SHA256
  
  9fc33c2508e505d837485dcf8ccbde5cba2e9426be541480d3799324666b463e
- SHA512
  
  59a8f3c1e88bb4884b89eaa13bbf6a2ea9fd6b108e7f573abaa84944324c530b7196146f3f11696f7588762fe30f44f0b2a55020c3482a6e83bb8503b5785710
- SSDEEP
  
  12288:U2MtQQ8866Oxxve5snFhzVeNA23guAgcbeYt:U2MtJPOxxve5sPVmgZ
Score

1^/10
behavioral19 behavioral20
- Target
  
  Filters/empgpdmx.ax
- Size
  
  848KB
- MD5
  
  a50fa651ff1c47528bd079ef4921fb03
- SHA1
  
  23a992c2e072488aa8eca45786463c3209d1c973
- SHA256
  
  a0518a8519337018fde863053b4a90c3245bb011ab6a16a851eb6d488d6c3bdb
- SHA512
  
  d544d91caa89e8d13245d9aa51e048fff6f94d330df7730d0487590d7160e69481dda75f3cedad955f3abdc8d253c7dd0253dc39c3af771c8f53ec0755693da9
- SSDEEP
  
  12288:FImQqiH9O/Avi4iiqHb33q3cuWixNKYsZKC0KxtNvZPd7s:emQqidAd4iiqHmcKNwZD0KxtNvtd7s
Score

1^/10
behavioral21 behavioral22
- Target
  
  Filters/register.cmd
- Size
  
  88B
- MD5
  
  26cb1034edd008abd00d7a1f935b61c5
- SHA1
  
  2e45fddd2280a14a96b8cb1ed8b8e4c9707f9c41
- SHA256
  
  f4e0fbc265020d01aaf4f451ffd9319ab3742aeef949af7a38260790ff6e4670
- SHA512
  
  ea300163b36c9ee397812b6dc4fba07849014f6c57d5c2f07e243414c4ee1e156a4100d7eb4bc555ac48b3eda2c7990d0329d3c1adede29f54ae1ff7c17fb480
Score

1^/10
behavioral23 behavioral24
- Target
  
  Filters/thsource.ax
- Size
  
  280KB
- MD5
  
  e59e5822fd0b9a8ea17fd65a1947cc42
- SHA1
  
  e4ab66143da290658c7c3b37cb00ae5000e1e0eb
- SHA256
  
  521027a8c714dab4e0827e1fd8862665b31c7b119ab5d974cf4e4b845f3b8756
- SHA512
  
  8c0bf6c40981543dacb5ba8cd63551b6441d66343f482df7b8ce5133a6918b553dc69332f18039e0fd2db92992dd91c8280d2d458621d37e5a2bd062b715c1af
- SSDEEP
  
  6144:4dyQLQB9L/vMGS7krt3DAB0KEE6QBLOkcEtmnnkBhNlHe0d31yfQoxQaxQJ:QFQBx/omt3DAB0KBNlH
Score

1^/10
behavioral25 behavioral26
- Target
  
  Filters/unregister.cmd
- Size
  
  98B
- MD5
  
  db1bd76ff52fe427a03204673a307b12
- SHA1
  
  72232d601dbeee8e448af0cc41d2d517aa56296d
- SHA256
  
  6c3cefca10c5e5676a6ef14e8ca472f8f0a11c3ded7391b14acb24bf3d7b727c
- SHA512
  
  1bd2065ac82f7d858eded6ef3348d9d3cd5f5dfb2772d351b77f737a2378eaa7d7e05d6008a36a852647446fc60c9a388fa51e7a8f401c6c43fc287d70f10a24
Score

1^/10
behavioral27 behavioral28
- Target
  
  IPDev.SkinEditor.Design.dll
- Size
  
  92KB
- MD5
  
  3292edcde2f254626ba70a16db833cdc
- SHA1
  
  04389d7d7336757149691066ee6932cca9a9969d
- SHA256
  
  2d2c7d71422ae14098f1d9af8dae09d340f1c4da2e4aafdd6924f46d6353ff78
- SHA512
  
  c175d371ea7a5b53531e82df82b44974b86499308efa0464976c8b090e3fe057b6b24496ab6e6e8212403d7b725b1f90801453cfe281a74add94f9bc1d044c17
- SSDEEP
  
  1536:SZ6iMBbyzrroWFMQEX727hGRXif9BtcQEA1ZyjXBb8MylmJsYg668gnO+:i6iwArroWFMh+hGRwaNA1ZyjRgMylYhM
Score

1^/10
behavioral29 behavioral30
- Target
  
  IPDev.Skins.dll
- Size
  
  521KB
- MD5
  
  e9a66a90c1df2aaf2597222009106e90
- SHA1
  
  b854d2834d77730ad39064982c319d2c71c85792
- SHA256
  
  b3eea134326417fce6f8973ab8924e1d1fbda9c828ac2b3dd821715785fd3842
- SHA512
  
  3690e020ff604f59bf7f31ecc10475ca2d4be3da7487567886502e0b590fba9c84ce1f6e846fbfd517d897517d8a761ff29e4ab7247d28680acd5839a93ccef7
- SSDEEP
  
  6144:0tHffe0xSmyWkjtgkliuv1BwSRVLlW+1k1x636C3vS1OYhqtF+rZQKZS1Jb5a5UO:0tHHVqWk7mSRVz3qpS+rtyJb5aKte
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32