General

  • Target

    846c1db10939a9981031427b3683ca9e_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240530-rhaz8acc94

  • MD5

    846c1db10939a9981031427b3683ca9e

  • SHA1

    7543022244277b050a6988d551c192e830aff053

  • SHA256

    906f0b1ec60e48f26079a188f7ce4b175c2ede2922f7c39a8b0f5b9bc70aaaab

  • SHA512

    00c64a949daf09e5ee30e8234d01bd162b7d5c5fb816dabb0805cb9719c072823e183ab206209b5fd97b315dd40664a77d5f28c416c3cb72479b897d9aa1dec2

  • SSDEEP

    24576:aTVMyx3KzRVYnSTKO1oFCHdHLsHkDlBlFxWViUzIF6YF0v:HI3y6SOZ6xy4DW0Uz6hF0v

Score
7/10

Malware Config

Targets

    • Target

      846c1db10939a9981031427b3683ca9e_JaffaCakes118

    • Size

      1.2MB

    • MD5

      846c1db10939a9981031427b3683ca9e

    • SHA1

      7543022244277b050a6988d551c192e830aff053

    • SHA256

      906f0b1ec60e48f26079a188f7ce4b175c2ede2922f7c39a8b0f5b9bc70aaaab

    • SHA512

      00c64a949daf09e5ee30e8234d01bd162b7d5c5fb816dabb0805cb9719c072823e183ab206209b5fd97b315dd40664a77d5f28c416c3cb72479b897d9aa1dec2

    • SSDEEP

      24576:aTVMyx3KzRVYnSTKO1oFCHdHLsHkDlBlFxWViUzIF6YF0v:HI3y6SOZ6xy4DW0Uz6hF0v

    Score
    7/10
    • Loads dropped DLL

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    • Target

      Module/CSN_HTTP.dll

    • Size

      254KB

    • MD5

      45fc366232ba9cbe05e9a6efb77af652

    • SHA1

      88b3c017bad1262429b351d6b1916ed24673c687

    • SHA256

      d8b6c8b6d476fc9c055444cf3d2c28f197a11e93e8885e33be2fb8b2de31c398

    • SHA512

      0536b567ed1fb5f7b57789f18f984138191ce2dd34b7207ddc7468adbea11216285a085ae4847df28757a150ff61c424bb1a2a79393e34814513f673f9799b6a

    • SSDEEP

      6144:LicjjGdQDr/uM4aBndRGus8Y87AgqZApU:+cjQFM4aBdW8J0gqw

    Score
    1/10
    • Target

      Module/LibBlowFish.dll

    • Size

      70KB

    • MD5

      2c0930372dcedd71263cf58cb8be28b0

    • SHA1

      00adf1e5408727ce9d26bdb6ce703ef71986ba7b

    • SHA256

      1c9c52ec9f253e4ec10508382cb8c9f41fd459fdee2ba0dc35d0734c8e5866e4

    • SHA512

      0a3ac8e26da06c70e1e6ffdcd8c96da21ca7790de75359fc29a409f3bfca77867794626bdf2e195308fecc8c6f9d2911ff9f77e400ecbcbefc53b984582afe7e

    • SSDEEP

      768:I443DA6OdeGFqRJt9BireY6c0kAPZQ7Zk7n/SgLa1x6rUt9e5QXsAbI:h43DA6IxqJi5YPEk7nLauN5QcA

    Score
    3/10
    • Target

      Module/OTPMacSearch.dll

    • Size

      205KB

    • MD5

      f2cc648123c83d3247df9948493df440

    • SHA1

      344ec96e115fd62dfca4626babf40fde4ba19311

    • SHA256

      85385f4c7a348676703ab7367c701932572c64fc20da46335b0bc6a069ee21f1

    • SHA512

      feacc42ed8937b48495b4eda9b5dd6e2e3805cc7e57eeb3ac1db02b18eb8d6c74724269c6f0810cc7cbdc2506f2f372031fc4ba55ad607edf21133b54124ab3d

    • SSDEEP

      3072:KBKUvPitoilaF9nBZuOQP1p6yrteXuut9SF0eWRPfpRT5x8zr0R19:cPijaF9njuOQL6TuutI0t9H8f

    Score
    1/10
    • Target

      OTPWidget.exe

    • Size

      1.7MB

    • MD5

      63b03eea92746000b6131888cf7ee6af

    • SHA1

      0ee7d2178dddc1ffecb081e42c86f2a0a14b5062

    • SHA256

      acad8d1c63865f6b3c6aae4afb3b1975f6c36f9a70e76a0fc5d622b03a382fd2

    • SHA512

      ee3b498ca57996c33661598e6500aa75fe45a01ebca68096b7b8f76565e7f9ff16c3097e13718dc4e8620e34dbb38f86a6bc2b60b8d929a7046f75e7f4df55eb

    • SSDEEP

      49152:F3nJ54ZFhNaWkqaOvzpSPc/M+eR4uqOYcvThNXdNTa:BJ54BcWNaOvzpSKMtR4uqqvTrXdN

    Score
    3/10
    • Target

      OTP_AU.exe

    • Size

      11KB

    • MD5

      5b12e5507401c34194ab18c5f0e2d588

    • SHA1

      8c73af35514e552150b3e5de66e10b680a181d12

    • SHA256

      a59ebab0463a5abc1226d7067b0a3521430069c7c1451da98af0342aa0874061

    • SHA512

      110514b275c4de47b0f23ba85a553e6e509cb8d85f41a5f325094dedd6e5db07fdd4d3f07040ee996cf8afcc68bbc432cf3ec8e3e15081bbc7daddc2b849c677

    • SSDEEP

      192:WRcMkHa1lr7fdZz1+IerqH1/py4+osK4nXvWJJ9Eq/ka:OcMkHa1lfEIerqH1/mWh

    Score
    1/10
    • Target

      uninst.exe

    • Size

      48KB

    • MD5

      4c18b8d8b614d6d5bef9c697d6240137

    • SHA1

      d8e9eb1a0dde1940bf2fe3f925de90271df028ed

    • SHA256

      68935eee9d5805e3a0737066a9e18214cb25caa3e516b10d6abed74780f2771e

    • SHA512

      e504a8926aa5ee9f3d72f53cc1dd458ec53e1c8e23338116bf193aa4bb9ac4862cf0ff2d9c6c6ef162731c0b73bb60ac7f4511d1b09092338b224cfb66af3e63

    • SSDEEP

      1536:cpgpHzb9dZVX9fHMvG0D3XJMgdLeAyNTM:qgXdZt9P6D3XJMceAt

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks