9669d01ac7c432a79c329f4bec5df37c070ad65ccb5007987109411412b58afd

Sharing

Copy URL

Twitter E-mail

General

Target

86d240c18e0dac336e1375bbf67b372e_JaffaCakes118
Size

10.3MB
Sample

240531-nf9tzsgb78
MD5

86d240c18e0dac336e1375bbf67b372e
SHA1

e9464b3ca76e1a761cfb503fd6106fbd48e74e38
SHA256

9669d01ac7c432a79c329f4bec5df37c070ad65ccb5007987109411412b58afd
SHA512

5bbe957ab8c733fabcd358b762e39b2304845a28057bccbe200e5c46f7c447dee3e84dfe82daf60164c86d50214abc8ae712b06cb1342b818c64b54b516fe1d1
SSDEEP

196608:4DpooKcIN2OMrV5M8TsLcX7K5r3cRYJ3ImrQdsp/3JnyvJo3eifnG71uYxoa4ooe:4DOoPOWz+LcX7w2YJYsZ38m3LnY3earf

Score

4^/10

Malware Config

Targets

- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/Transcend48Bytes.exe
- Size
  
  232KB
- MD5
  
  6aef61413a1702daa7a31d686cf6acb9
- SHA1
  
  88f0b45185e5c2137aa2e1054f9e33e642ab6225
- SHA256
  
  0027824a801aef073434e581ddf79682a4db767fababdaa78c7dcc5c6ca29502
- SHA512
  
  f7cbc1a0b79843020b6f699a2680e2c508e28629d91f1d9a478ca3bfa7cc99c0efbc92e1d2d87f98be0b93467e0d971f26313f42a73f85c22871b011d906c7b4
- SSDEEP
  
  3072:3J47seGa0Rkr9DEJ62n7mt9TZghJSpyPlogrt4cVvpdlTh0c/KFb:e7L0RkpYnytxZghJUut4ivpF0
Score

1^/10
behavioral1 behavioral2
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_3269AA/DLLLIB/PretestIF_N0626V1.dll
- Size
  
  1.6MB
- MD5
  
  97a93e73723709f30d5258b15c3a4819
- SHA1
  
  8dce2d84881fa6c1508e2fff45866ec9b94b83e1
- SHA256
  
  09e3e5e2f73015718cd80f7000cec5dc066e6597453d464e6b22e44e8292dc2d
- SHA512
  
  a1ffa3cca927969083ff340b5367d1153a4f82390ea93716b2be948f85b0800e221ab9fff777c94cbd2152fb99498df0423029f91623a62ce8c6996f5038f898
- SSDEEP
  
  12288:KvzPbnD51ibqnoYxPDXJsurZnmsLdsuLNBjCNAp4zj9PuhLzv2AyNG95noDmBise:21EML3WNj9W6G92Dmyd/GWj3Vp
Score

3^/10
behavioral3 behavioral4
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Documents_for_SMI_Driver.doc
- Size
  
  391KB
- MD5
  
  69e50539ed3640a5233ad7963d83d779
- SHA1
  
  beb2d2cf8fa91c9b1f3350ec11704f25b9182288
- SHA256
  
  31ba4b475fbf247537245573f97e50ed946f57845282456c2fecdf94b0b73c48
- SHA512
  
  bf92f44570051246045d81928a545f3ad0fe6bb4c6982674d853397d80773972c19ddb64c06ae1d36709d2411a0d528aaebb3bee51a32b4d6e75914c5c64b249
- SSDEEP
  
  6144:MiVi+xZo/mAKBGLU9xYauC6p3qvte3Vm2mWQNgD1UsX+Sm8CA4ialo8Ij:MiViYZ0GQU967C6p3moVmJNLsX/PCAO
Score

4^/10
behavioral5 behavioral6
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win2000/SMI32X2K.SYS
- Size
  
  16KB
- MD5
  
  80ec18ac0997ef931427b2ea4fbd8e37
- SHA1
  
  ecbb12a78c2d89cf1192d5f1b9b1fb679c3303aa
- SHA256
  
  89410b8e661dc83882c4af3f34543e9b3467058b93ef5405877b3f1583a9a425
- SHA512
  
  ecc4d5b92087ade2f29372acdb2fa9619fb30814e80d19108aa22c20e9998e4176e9f15169b32f5218c0e24d0345dfd39a09d2707fba9dc91c823dc32d99de3e
- SSDEEP
  
  384:vwLgYAFwbqKGLvvHc2RQNNE2LVxwwSXHL5wfJ8DZ:4LkFwbqKGLnHWNEuVyTbqx6
Score

1^/10
behavioral7 behavioral8
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win2000/SMIInfUpdate.exe
- Size
  
  228KB
- MD5
  
  9ae62e6a0d3d43696f2c5e00fbb77b90
- SHA1
  
  07fc586aeaa5423ff90ddb5e8e1034fe258dfe29
- SHA256
  
  e086534ff1a2dd5dfbf5332b350c5afa72c929c5b6f8340416ebfba880b3d4ce
- SHA512
  
  e62202bb58b5b493f9371801a0bfbe43ac0fbb16d3badfd4fe81af185df9a898b70476fe83d58d9f574059b32dac7b829cdbb65e92cebd0382256c580f5f513a
- SSDEEP
  
  3072:UsOztKNSMt9JFR0ECHgtLUw0N2M20ei9hcRcUcM0s2xEluv0UbNI:Ufzmt9JFEHKj0QMSfEB0U
Score

1^/10
behavioral10 behavioral9
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win2000/smi32xPC.sys
- Size
  
  16KB
- MD5
  
  6ef0670fbdbacb5faef3a3efa7c9fe96
- SHA1
  
  ba92bbd734ee7ed91ac29e0507bd38bd9962c61f
- SHA256
  
  64d48ec215d2cdb7e8249316c15888126d705b560837c363bbae7ec3e8eb3a94
- SHA512
  
  b8791955ff32ae88bb80290fca7c89cb2b856140203c87a6f1b4a5370316ab55fc30df6746f0395adb2b38c5dd72aa5491d1992482b4aa1885867489d3225e26
- SSDEEP
  
  384:6uiUSBDRbxz7Ol2vEGCHwCASScSAZ9QMx8gS7MX+N4r+0z:9idxRbxz7Ol2qHhw5AZuMGgXuh0z
Score

1^/10
behavioral11 behavioral12
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win7/SMI32X2K.SYS
- Size
  
  16KB
- MD5
  
  80ec18ac0997ef931427b2ea4fbd8e37
- SHA1
  
  ecbb12a78c2d89cf1192d5f1b9b1fb679c3303aa
- SHA256
  
  89410b8e661dc83882c4af3f34543e9b3467058b93ef5405877b3f1583a9a425
- SHA512
  
  ecc4d5b92087ade2f29372acdb2fa9619fb30814e80d19108aa22c20e9998e4176e9f15169b32f5218c0e24d0345dfd39a09d2707fba9dc91c823dc32d99de3e
- SSDEEP
  
  384:vwLgYAFwbqKGLvvHc2RQNNE2LVxwwSXHL5wfJ8DZ:4LkFwbqKGLnHWNEuVyTbqx6
Score

1^/10
behavioral13 behavioral14
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win7/SMIInfUpdate.exe
- Size
  
  324KB
- MD5
  
  711cfd921b506ceca56fcbb47c842311
- SHA1
  
  ae6899a86a613019ec795eaa24ef033f7887bbd0
- SHA256
  
  65380b2eb926618e62d2e79a973b9af713cac0a22bdca3934b23bd61c2e88d02
- SHA512
  
  e3a760187aa0399a8c24b51b994678f45d84de6b0c12ca8ef54ab1f5c2dbd69d2662916627d350fd7382f6a99209f9c567d2934df44fdabfcf0b881439c613ea
- SSDEEP
  
  6144:J8HIQ2wSJBiplNxjjPiZPb/wadbDHMgvsvZIulN:uplLjjPilb/VHMgvSZIm
Score

1^/10
behavioral15 behavioral16
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win7/x64/SMIDriverUpdate64.exe
- Size
  
  235KB
- MD5
  
  325a0bee6ad5af0e70c7ad739920efcf
- SHA1
  
  2d57b909477998bde0610a359b1cf3dcc13910ed
- SHA256
  
  536816a848fca3bcfb16ccca56e29033fd4e6f07f6e0486cbc37ce3f8866ad79
- SHA512
  
  3acbb45ab8c7756be1b184b55171554ee7f2c7e665b77d3ee6f20a590766711be3e1c3f10d89edf245ca2bdc119381313836b05539139e13b567bdb32c02eb21
- SSDEEP
  
  6144:at/L+BZgWQsFxmGK1uJiwZONxSLk0sAB1:I/L+BykMUIwASL0AB1
Score

1^/10
behavioral17 behavioral18
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win7/x64/devcon64.exe
- Size
  
  80KB
- MD5
  
  3904d0698962e09da946046020cbcb17
- SHA1
  
  edae098e7e8452ca6c125cf6362dda3f4d78f0ae
- SHA256
  
  a51e25acc489948b31b1384e1dc29518d19b421d6bc0ced90587128899275289
- SHA512
  
  c24ab680981d8d6db042b52b7b5c5e92078df83650cad798874fc09ce8c8a25462e1b69340083f4bcad20d67068668abcfa8097e549cfa5ad4f1ee6a235d6eea
- SSDEEP
  
  1536:MP2K0pa0WfEYp9Y/XQhpgnbP212YCJpDhiF4O7W:MePOYe4bu1epDh8RW
Score

1^/10
behavioral19 behavioral20
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win7/x64/smi32x2k.SYS
- Size
  
  23KB
- MD5
  
  4f20d93b27392a3502452b425f7390eb
- SHA1
  
  c737c4ade8908c421e86136bdb81eb7d1392c110
- SHA256
  
  f7f4ca6cdaa974d8a8a3e7029308f083fd1e276bf40d6fadde89f5e55bea4c9c
- SHA512
  
  cb7fd8e840c612be5a4f13dd987b4bdc1e36e8ee1e7cd9d848d032a4f221f7c46212f66d33050aa5644e1d280bcc3c6f036ad1fdd49df37e251612b8ac61325a
- SSDEEP
  
  384:Q3c0TUIfMabXHWVFAcm0qqld94q57cA2MtvUWNKaXKScEpE3L5wfJ:ORUI0abWVFX9wNkNKiKdEpQqx
Score

1^/10
behavioral21 behavioral22
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win8/SMI32X2K.SYS
- Size
  
  19KB
- MD5
  
  e0c7782182f6d003b618a2645ebfbab3
- SHA1
  
  34a5e785190cfcd9fa042607df923b7b2ede8dbd
- SHA256
  
  06933ac72dfccafd8a297d270a73be7ecc8d74a4919bfb96e02bc7fae201eecb
- SHA512
  
  4dba581aa80aa54c466441b3b8263b4fef17e93747ea8d05ded8546bbd2b90e851aa100620490b6e32990a64b13db13c62e0f452f39478525ab01181f6ffa06a
- SSDEEP
  
  384:IJElARECi16M89f7Wzw27fFvbD2EZ3FQOv8U2SOgL6eRfJAt40:pS816XNpmFmE/Ql54fRxAt
Score

1^/10
behavioral23 behavioral24
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win8/SMIInfUpdate.exe
- Size
  
  328KB
- MD5
  
  cc4cec77c5178ee5c544b38e049ad01d
- SHA1
  
  603d4952c08a7b08cd41294ff6f6be51b2e171c7
- SHA256
  
  83a1c894ddf8e77399d4c20c67bfad14d114edb306f1fbbe7441c6ff947691a6
- SHA512
  
  aecd6114c44a8b0d951ec330b20a122e7428e005691fadfce37e4a768555f02addd854b7c0d8aac26ffb99e98466215f81ed354de52f12e44fbed875aa207e2c
- SSDEEP
  
  6144:58Wq9kv7o114glKaXUPRc6eQ3ftGszxO5:58z1NlKaEPCifttz6
Score

1^/10
behavioral25 behavioral26
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win8/x64/SMIDriverUpdate64.exe
- Size
  
  235KB
- MD5
  
  325a0bee6ad5af0e70c7ad739920efcf
- SHA1
  
  2d57b909477998bde0610a359b1cf3dcc13910ed
- SHA256
  
  536816a848fca3bcfb16ccca56e29033fd4e6f07f6e0486cbc37ce3f8866ad79
- SHA512
  
  3acbb45ab8c7756be1b184b55171554ee7f2c7e665b77d3ee6f20a590766711be3e1c3f10d89edf245ca2bdc119381313836b05539139e13b567bdb32c02eb21
- SSDEEP
  
  6144:at/L+BZgWQsFxmGK1uJiwZONxSLk0sAB1:I/L+BykMUIwASL0AB1
Score

1^/10
behavioral27 behavioral28
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/Win8/x64/smi32x2k.SYS
- Size
  
  24KB
- MD5
  
  1d8ba757c7c9c95a51f783c1bb47f585
- SHA1
  
  f80f66d3ed741792598118ee3838553cf049ee52
- SHA256
  
  d4cb3200ac3a2472fa71010827090e6ecf9029cf9491e258142437045a803633
- SHA512
  
  071deaaf316fe7aa592a08915429594a274d573cd4e80e0c4c94f01107fa333f393bc30c985ce0ef22706fe1ed6440fdfc2034792f1f4244ff1236e2a035aa52
- SSDEEP
  
  384:XS01AiC/1TWi4V8Vf8cjusheazrkZcKrnlh8LibgZQCOtkAPqcRH21MT0HpQwtUt:h1AiElL4aVEcjDsBCOzrA6Cpm9Ls0Rx
Score

1^/10
behavioral29 behavioral30
- Target
  
  TRANSCEND-SM32X-PV1.2.44-BY-USBDEV-Q1022/UFD_MP/FactoryDriver/WinXP/SMI32X2K.SYS
- Size
  
  16KB
- MD5
  
  80ec18ac0997ef931427b2ea4fbd8e37
- SHA1
  
  ecbb12a78c2d89cf1192d5f1b9b1fb679c3303aa
- SHA256
  
  89410b8e661dc83882c4af3f34543e9b3467058b93ef5405877b3f1583a9a425
- SHA512
  
  ecc4d5b92087ade2f29372acdb2fa9619fb30814e80d19108aa22c20e9998e4176e9f15169b32f5218c0e24d0345dfd39a09d2707fba9dc91c823dc32d99de3e
- SSDEEP
  
  384:vwLgYAFwbqKGLvvHc2RQNNE2LVxwwSXHL5wfJ8DZ:4LkFwbqKGLnHWNEuVyTbqx6
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32