General

  • Target

    752be5fff55e3a059d9ec4be816d11a4_JaffaCakes118

  • Size

    693KB

  • Sample

    240526-meszeaeh9s

  • MD5

    752be5fff55e3a059d9ec4be816d11a4

  • SHA1

    e2f14b56875eb1e3ce4a2b3bd2ec92488eb51b84

  • SHA256

    a65e1e7ff8c9c03d3fa3abf621bbf69db210c1a437aebbe98a0da3b41518b698

  • SHA512

    b8c25e60c25303b212e986339d29f0b75fbaafacaef99848955b1e984603eb59102f00ac94cc22cc4c487fd9ecc34920f04f1599a543dd5643f8048c512f1b20

  • SSDEEP

    12288:rl1Ey2RgKt9rtmapruAbE7qO4R1F2LjBioLAuny:rlSmK7tm8qO3O43FYBNLAuy

Score
10/10

Malware Config

Extracted

Family

buer

C2

https://bankcreditsign.com/

Targets

    • Target

      752be5fff55e3a059d9ec4be816d11a4_JaffaCakes118

    • Size

      693KB

    • MD5

      752be5fff55e3a059d9ec4be816d11a4

    • SHA1

      e2f14b56875eb1e3ce4a2b3bd2ec92488eb51b84

    • SHA256

      a65e1e7ff8c9c03d3fa3abf621bbf69db210c1a437aebbe98a0da3b41518b698

    • SHA512

      b8c25e60c25303b212e986339d29f0b75fbaafacaef99848955b1e984603eb59102f00ac94cc22cc4c487fd9ecc34920f04f1599a543dd5643f8048c512f1b20

    • SSDEEP

      12288:rl1Ey2RgKt9rtmapruAbE7qO4R1F2LjBioLAuny:rlSmK7tm8qO3O43FYBNLAuy

    Score
    10/10
    • Buer

      Buer is a new modular loader first seen in August 2019.

    • Buer Loader

      Detects Buer loader in memory or disk.

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.