General

  • Target

    84728b48146559476d8310b4dd1d8d75_JaffaCakes118

  • Size

    17.6MB

  • Sample

    240530-rnb5gace53

  • MD5

    84728b48146559476d8310b4dd1d8d75

  • SHA1

    118f348a85cb373ab1eb70dc7402e2af7891ec2d

  • SHA256

    4dbb413893d89a2ab0ad20db7e8ba364bcccc02fbd3ee9ac6f66b5f3e0b1f7aa

  • SHA512

    dd27a12919a2bc07bada0058cfe8bb272e9947eecdff64f5e7766b2deae5d8c7413d0f9722ea523848459b6f2717c61216fe0a2437ab0fb73fe925906c8e8955

  • SSDEEP

    393216:pito1fEwnRNtiXRto1HzGRLRkGSKHuRdIEg4K9zYWV9kqMX6to1osdg+ezcUszr:0to1fNRNtiXRto1S5VxmOy9xX6to1Zd7

Score
7/10
upx

Malware Config

Targets

    • Target

      DVR4000qud/Autorun.exe

    • Size

      2.1MB

    • MD5

      e4cc37a313630251e5274eb045b56079

    • SHA1

      08dcf76ce3bba596d53d5b3b6dad671377c84234

    • SHA256

      070693526aafc1fd9be1cd60f92a1f9429d0af41c07ed7f19493e2e93d4a9e17

    • SHA512

      1b8aa9edc020415ed992c100141a94e15ccf3c277162413aca1b6a714fbb99a085580183d07df629a2f78d9ca21271ea741a95eaf9c329ee2849456e6da55e28

    • SSDEEP

      24576:mLCoB6R0VLnf6nuTdzBvIuvpBPwcLZCJe:HYcIL6uTN+uvpBPwcl

    Score
    1/10
    • Target

      DVR4000qud/Client/DVR4000-Client-Setup.exe

    • Size

      1.4MB

    • MD5

      ce16a2e1e6f4b86834fc1b2b737490a6

    • SHA1

      a003f627e5bcfd0b21534dd1d471d828de76ab33

    • SHA256

      71b7bcc43def69079781ad9b5ee495f64cc6e99595283d3e42cef2ac6803991c

    • SHA512

      e7fae233cc83ff85e2f6e5f36e7b7e26f5c38566604f59e832cc400a25335d9a9729538bab1cde632e5e431bd58e82951f8fd19a4241317d212b10fdbb6d5e84

    • SSDEEP

      24576:04vDh0+JQF32yCeFWryU93Ey7OwgpxLJQtGM/osjPteMxLKXyoaY+3JzuCI:hvV0mveF4yUVE8apQosjPtHu8YoPI

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      DVR4000qud/Client/doc/Simplified/Client.chm

    • Size

      353KB

    • MD5

      9f98275c60e339557a22b5be4a609d8f

    • SHA1

      c7e0974fc5046afd28d85de88fcb72c393103388

    • SHA256

      754eaa92301abe87c215f039a6c10039c848766343e87d2fb984655894c11904

    • SHA512

      969d566dcf4ca9f76d5e7080eea265df9c04e6fc5e406b69519d84311d9abde84dbadedcba1acee05a2cd25220e4a6b7766a64e833d5395ad4b4fa6348fe9cef

    • SSDEEP

      6144:iBbTGM46TM2e8zKXshJdKKQHJFOsJOz3BNwXuCEnlI:ebTrMeEshJdQpxuRNweCEu

    Score
    1/10
    • Target

      DVR4000qud/Client/oem.dll

    • Size

      2KB

    • MD5

      1f98944e669e8a88ddd2def6dffca99c

    • SHA1

      d52aaafd2c7fb584315054b69fc3d13475a849aa

    • SHA256

      49f9373d7e9b9a997fe33405379e4f1f529de4f3e1d64545f46f0af1a257f13d

    • SHA512

      1b4448cc64306a9d71cd0d784c17091b6500795dc4a3bcca12f870ea4eb2b139a6cb47e2b3b0d0da7da2089a9ab525ecfdbc80349855150d2b69c1c05ee3a71e

    Score
    1/10
    • Target

      DVR4000qud/Driver/DrvInstall.exe

    • Size

      303KB

    • MD5

      ff84509116255fd3cbee12c61b6aa27c

    • SHA1

      8cdbb65e0af39021a21daaab0da8dad3c38dfce1

    • SHA256

      767aae4accf7fce8b374e963f280e6debf0ee75fc03abcf8110ad065b8fcd659

    • SHA512

      2befcc552d49207e591e04543334834e87c95e5b014b641a64df2990f06247838311dea70df2e95d0bc03fadf0d50f663737b7a247b0f00a7024c832edd57a91

    • SSDEEP

      6144:sMJYE1cNwPLvoqg0R2VhPefm0ToyJTlb7oiSdHPDz4ptd/HQg:sMJYE1c2obY7TJTlvoiuvDz47d/HQg

    Score
    1/10
    • Target

      DVR4000qud/Driver/hvCapture.sys

    • Size

      40KB

    • MD5

      6b8c293c061e5b76c2a0a1ce2fc96468

    • SHA1

      7776965b39c6679aeeec9afaf82ef26899a27a4b

    • SHA256

      038cf61d21beaa2f08661f035226e4c8b2b453bb8a245fb81ea71b9c61bf09cf

    • SHA512

      1493250340548ea098161648de01268dd6580cd0f429b44659daace70276356f6add2baede0b2f5f1602884d239229636898fc11d9600b2dc23663674d0df717

    • SSDEEP

      768:9PS3vNB1uGmURVxlrbi7nPCzknJt3sZu0pcNUfHOdsp:1S/NXuGmURVzrbiGzueFp

    Score
    1/10
    • Target

      DVR4000qud/Help/Simplified/Client.chm

    • Size

      353KB

    • MD5

      9f98275c60e339557a22b5be4a609d8f

    • SHA1

      c7e0974fc5046afd28d85de88fcb72c393103388

    • SHA256

      754eaa92301abe87c215f039a6c10039c848766343e87d2fb984655894c11904

    • SHA512

      969d566dcf4ca9f76d5e7080eea265df9c04e6fc5e406b69519d84311d9abde84dbadedcba1acee05a2cd25220e4a6b7766a64e833d5395ad4b4fa6348fe9cef

    • SSDEEP

      6144:iBbTGM46TM2e8zKXshJdKKQHJFOsJOz3BNwXuCEnlI:ebTrMeEshJdQpxuRNweCEu

    Score
    1/10
    • Target

      DVR4000qud/Help/Simplified/Client.doc

    • Size

      591KB

    • MD5

      ca078c68bbdf9969d9b6e96e7fde31f6

    • SHA1

      635676433d50b88b1b514930aca6c8e4c65fd111

    • SHA256

      c7ac97b169d5c5fef79c1ae747a340ab4714a436b7888a35ae9c54f1a23d43e8

    • SHA512

      5a266bfbdef9d6dba76c5540558d6b90600daadfb905e638b71ebacfac5d54720ad8169296367e7dab7d47126ea1ac40ad0247b1d342876c644b48e39b262d72

    • SSDEEP

      12288:Gm6bDExpNr2cV6FIKaw5RQXuPLNprKhSp5nmE:GmcAx6cyIKHRQgLNRGSPm

    Score
    4/10
    • Target

      DVR4000qud/Help/Simplified/Player.chm

    • Size

      287KB

    • MD5

      a1b82750b9724e146c0566e2d1ed8446

    • SHA1

      d81d7d0d44974bb79cb01cac0aca0c598eed1aa1

    • SHA256

      65da75cca849fe8b94379397d4260981b77e779b4ebd09082e80ad8329a37d2f

    • SHA512

      f2485df069bd2a9e1f546deb564a8490e72268ec6fd0e32b2adccedd0291d8df9fc191559f1857df276d8609604439e140ad5d19c1fe2c5ec6caa27531c98eae

    • SSDEEP

      6144:SljOarlf7wsxWyree8OK1XZrGpDZUsPlJJBKV4Ih/o5Su3Q:ILs9MRYJrGzUWJ9I9Su

    Score
    1/10
    • Target

      DVR4000qud/Help/Simplified/Player.doc

    • Size

      344KB

    • MD5

      dc33e9c7076596993327f8eb3e60d303

    • SHA1

      d2b223bac490908d8dac2c843b93f70ea13cccdd

    • SHA256

      9f405abdd960b78464c741eaadfc430a077accefb3a0a542e6125a9c183bdabe

    • SHA512

      b7baef5351c9ba5eada9a3b81aea4db39e310948e35825e16b84da42fd36429e19017e9ea0af7bce5f185462530252bd8e16a9d25f71cd9b56380f7099694dd0

    • SSDEEP

      6144:9XM8+YoSU+yRpReUwqAox8h8HHreo+oM3c9csu/Ehw428493l6oR7j:9XM8+YoSU+HUwqpCqHHreo+oM3c9cyh4

    Score
    4/10
    • Target

      DVR4000qud/Help/Simplified/Server.chm

    • Size

      1.0MB

    • MD5

      fac90db1b39f2bac5f49acb9dd1ec02d

    • SHA1

      4a74746848c29eed1699367158f5c8ee6094866c

    • SHA256

      1b485cd920e0a06640635be6d2e8d815eb1de2a1da724b329ab45426682a833e

    • SHA512

      80ed4fb6006acf587a5ad1e69d169c8e440c4a12976c0eb509b860ae7c45bc94397701275722f1d370fcd0f0542a87f00ed2aaff1249688c776ba8899f3a347a

    • SSDEEP

      24576:wIdB9FLD0h+iqeQ62Z6MvxDYVCikDmO7fL/8Fkg8oAc:wIdB9BDu+iiDpx8VCiQL/8Iod

    Score
    1/10
    • Target

      DVR4000qud/Help/Simplified/Server.doc

    • Size

      2.1MB

    • MD5

      0d4c796c4d5421bcdeeaee7284cf7b0e

    • SHA1

      8b14873c5d8e7bbfdbea3fa549bab7bad9a29810

    • SHA256

      858368cebcbb539b941a2554bbed5b160216c84484f132a56537463342e375f4

    • SHA512

      89b1b07c4c985fd0846bc0ac20aef67236201ed18768a2ee94e276e1e55d5f217e51e0a0d8a32a7a021ce37162b2d38e88175c62c23d40a7db2b7f7b76211908

    • SSDEEP

      49152:xAgwXgET3ImttBWWXW4IFiRQVXZLcmlKEpYZ6Tdx:k9WWXNYpaEE

    Score
    4/10
    • Target

      DVR4000qud/Help/Simplified/WEB.doc

    • Size

      832KB

    • MD5

      16fefc9a8ec86980d85ccaf3ec078e04

    • SHA1

      0453c85309ef94c448191aed1e3a1940f0f87d43

    • SHA256

      d5bc2f6487984eeb2e47da51d43c2efb6c00b1ab622929c37ff67f163801e5ad

    • SHA512

      627a94cb709b90bd1b6837bf20a95d7fe321bc732fe709ff931a1eefa6a719f1af1db10bd7f516aeaccbb4bf69328102e5ec3d83926e4d0002d9e6cbab42d097

    • SSDEEP

      24576:1pwykKY5a0ObQaDkw8om3pppppppppppSyS:rwykKY5a0ObQaDX1upppppppppppSyS

    Score
    4/10
    • Target

      DVR4000qud/Help/Simplified/Web.chm

    • Size

      317KB

    • MD5

      4c6a0951c845bcbeaf4f346f1e905ae8

    • SHA1

      f781893a96e3b35715361f28e1146aa1591e19c0

    • SHA256

      73e5fc0ae3a4321a9d814671db75ad3502e8f19349326c26a15685aa7c8ebc6e

    • SHA512

      088ecd321c53c85df216959cca3b159eb9221006712ee10458dffd08a9a138a63f08ac59f2ac10669e59cef4f7c1c48e6e4967a3c4f8ee119f4673a62719a262

    • SSDEEP

      6144:TsLpMmqvHV8y6tIUkBRxDjfs+Wgx2C+ztHzNuLO3DGmYhgtjTnJmQfgpmdYW5:oDS8/gBzjfhx2C6NIoGjh6nJFfgYdYW5

    Score
    1/10
    • Target

      DVR4000qud/Server/DVR4000-Server-Setup.exe

    • Size

      8.4MB

    • MD5

      9827031a80570a7e8a088e3ac868a895

    • SHA1

      3e6d589901b48b240e4e7232f36be082a5a99d6f

    • SHA256

      5a7be97b308b22f7472d1cb8afa8c264848a9dadd5d1d63ba46d6891548aa16a

    • SHA512

      74054523542f683c48ea9a05e001a98530f58f2cc40ef8cf48befecb5ca9ae36c0170722844850010f2a939a00666cb0559b65f751059c77b9210bd37e2639a4

    • SSDEEP

      196608:o7lP3bTVOWSXuP96gxwQvmziIgRbHho7qc6H7DsS01:y1ZOWSXuPEgyQiiIgVq5M7oSo

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      DVR4000qud/Server/back.dll

    • Size

      225KB

    • MD5

      f5cf208cd3fc785833b5115273e0cfa0

    • SHA1

      84b673548aee6ade79afa607b52e4d3724f2ebe8

    • SHA256

      83674c3f035ff909d72f85abc7ba579f0a36483967a50f464fb7f0c82e3b55cd

    • SHA512

      24b134fcca5c9fc68675c4ab9449ced7d70f95a26e828e11c3f90a09e5fef971a82646d52cd7e6ba68ba07ce2fdbf9bc52fd56ac750cf862c336be1897b9eff4

    • SSDEEP

      384:wHR4fpIyw5F2PUnTWOluW2tU7NqCSZigP8iQxqfjMACsLGnVnBinbCSt1MO7yx41:2RBosVJ4cWNzaCbTyJvRuxAu

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks