Overview

overview

7

Static

static

7

8acaf4743d...18.exe

windows7-x64

3

8acaf4743d...18.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDIR/exdll.dll

windows7-x64

3

$PLUGINSDIR/exdll.dll

windows10-2004-x64

3

bplay.exe

windows7-x64

7

bplay.exe

windows10-2004-x64

7

bslib/bslib.dll

windows7-x64

7

bslib/bslib.dll

windows10-2004-x64

7

bspadmin.exe

windows7-x64

7

bspadmin.exe

windows10-2004-x64

7

bsplay.exe

windows7-x64

7

bsplay.exe

windows10-2004-x64

7

bsplayer.exe

windows7-x64

7

bsplayer.exe

windows10-2004-x64

7

bsrendv2.dll

windows7-x64

7

bsrendv2.dll

windows10-2004-x64

7

codecmanager.exe

windows7-x64

7

codecmanager.exe

windows10-2004-x64

7

doc/ini_files.html

windows7-x64

1

doc/ini_files.html

windows10-2004-x64

1

mmkeybsupp.dll

windows7-x64

1

mmkeybsupp.dll

windows10-2004-x64

1

plugins/oldskin.dll

windows7-x64

3

plugins/oldskin.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8acaf4743d34b63fdb5c13262f46e560_JaffaCakes118

  • Size

    10.1MB

  • Sample

    240601-r5h94sff54

  • MD5

    8acaf4743d34b63fdb5c13262f46e560

  • SHA1

    26c688d6b56feec6a8bf080b1dc907854b18cd9d

  • SHA256

    c58f7a0bb02aed16adcbba017e510d08485175b25fb4c03007cf7a606aec7b54

  • SHA512

    54a5b6181e4d7c1738a4252d1d6c44c111cb95a0e58d01afc575fbc6c48007265201c21d3291ec5323d179e262d8e5d5edb62edc73cf405fdb644bb3aec6f2d3

  • SSDEEP

    196608:MLpxHv/kRy4KycVBbVdvuyT/XnMOchjPSahtHvKVG5UQKa/VQHTzv:qpxnkQOcXpdvH/32hTSahBvKo+lHH

Score
7/10
upx

Malware Config

Targets

    • Target

      8acaf4743d34b63fdb5c13262f46e560_JaffaCakes118

    • Size

      10.1MB

    • MD5

      8acaf4743d34b63fdb5c13262f46e560

    • SHA1

      26c688d6b56feec6a8bf080b1dc907854b18cd9d

    • SHA256

      c58f7a0bb02aed16adcbba017e510d08485175b25fb4c03007cf7a606aec7b54

    • SHA512

      54a5b6181e4d7c1738a4252d1d6c44c111cb95a0e58d01afc575fbc6c48007265201c21d3291ec5323d179e262d8e5d5edb62edc73cf405fdb644bb3aec6f2d3

    • SSDEEP

      196608:MLpxHv/kRy4KycVBbVdvuyT/XnMOchjPSahtHvKVG5UQKa/VQHTzv:qpxnkQOcXpdvH/32hTSahBvKo+lHH

    Score
    3/10
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/exdll.dll

    • Size

      9KB

    • MD5

      f0a2589a59eecbc46ba2c17b40d0b342

    • SHA1

      560b9f35954a5ab830dac119790098f57e78f788

    • SHA256

      2f3f85c10d780c9d58388526ab1cbe63527dff559cefc60c9d8bfad361b00bf1

    • SHA512

      c79297981e943e3a9a6173d663af69a3557e4881943b0b2f06a60395775bcd5b8ee72c6f013dfb6125ebdf098c5a7490729d072e9cc914a100818b04b784cdee

    • SSDEEP

      96:QLm0tjIs3MUyEhFtR8Ds0v+PbZwAy9av8BC4NPdAyfpZVwSir6xaZKDSLb:QLmKjIsv1FjasrD2AeBCQd5HngZgSv

    Score
    3/10
    behavioral5behavioral6

    • Target

      bplay.exe

    • Size

      12KB

    • MD5

      e057aa4a56a9a2a628a8053f25a27d7d

    • SHA1

      d839e5258bbdb871c746c2cef52e336487535c47

    • SHA256

      2519081eca56fadcf3b62e7cb22e55a1f839b9055e9f1e404fc28145d149e913

    • SHA512

      d968aa76b1483a14b7d829c755a99c7ad09163d18da6806f23b3a33664292f16a4695b596b0d2be619a3b6dc909cfcb8cb7ff236641d1cc012e4f438364945e7

    • SSDEEP

      384:azbge2/99IpWUFyCKaMgXGT/bl55oqyfvN:azb619IpWUFyQiB55aH

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral7behavioral8

    • Target

      bslib/bslib.dll

    • Size

      1.7MB

    • MD5

      c3b0aec5e51b718588959b0cb8e8daa1

    • SHA1

      d064653a6a2279ce6c7b3445d19f894708c61cd6

    • SHA256

      87a64512d374eb75aa4749b3c2bc5f696a81e19525ca3be16578b217bf2af4aa

    • SHA512

      6980b2f9ee3469b15a54361831e4c643e39cc673aa5edfd593f53ccfc8bf2dea0068020bc7d0c2c34e47b5f8a9fe6e75c541cc64e118c0b047e0bb384fe9d57b

    • SSDEEP

      49152:xjCtrtRp7ZoT4y3yz76Um1hpA3XEeOcXCEVnJHt:xOHl1fz71m1jAnEfc7

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10behavioral9

    • Target

      bspadmin.exe

    • Size

      43KB

    • MD5

      476eef440469777c8ae4346eb89960ac

    • SHA1

      9dc9e756f1a3cad6a1a4f87ae7dbc3e21c958557

    • SHA256

      5c337e5fd979694abaa8e8e649a45dd45416a120cf10853425b74a02ffcdb8c5

    • SHA512

      cbfc17a5e1ce05034d6ba0801953b973ca756f30d3f387b60ab17e4149620fab43964155514830f99e6f9edbf5a8cf77314b62bb74b72ec53af89a11ba672c17

    • SSDEEP

      768:nXW3u2xYG2fXpfZ1uufnOm+65c90TKwwSwwwwWZUj3l0Yd9EzquuL/G:Ge26RXdnDOm+kc+TKwwSwwwwWWT+Ydba

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral11behavioral12

    • Target

      bsplay.exe

    • Size

      12KB

    • MD5

      e057aa4a56a9a2a628a8053f25a27d7d

    • SHA1

      d839e5258bbdb871c746c2cef52e336487535c47

    • SHA256

      2519081eca56fadcf3b62e7cb22e55a1f839b9055e9f1e404fc28145d149e913

    • SHA512

      d968aa76b1483a14b7d829c755a99c7ad09163d18da6806f23b3a33664292f16a4695b596b0d2be619a3b6dc909cfcb8cb7ff236641d1cc012e4f438364945e7

    • SSDEEP

      384:azbge2/99IpWUFyCKaMgXGT/bl55oqyfvN:azb619IpWUFyQiB55aH

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral13behavioral14

    • Target

      bsplayer.exe

    • Size

      2.0MB

    • MD5

      0416366e8b79dc2866da9f5f3d3e2ad6

    • SHA1

      27c18d70edc01cd8fd901355e3515265517111c7

    • SHA256

      185cb02eaf5b1cbf2ffbebab027bf87941a6e7d4f27d771f75d64b220fc01157

    • SHA512

      b903c5c74f604b64418a7af11e27e8e4159a0db9fa9953f739c64af9482860f00686dadcc094156bedb0f4e30534f1abcee8e1d7aaeda8bae5416f19b93d0374

    • SSDEEP

      49152:F8Pm0MOrFEo4f/hT4cuvYa7Eu2nmOLFWm7h74te4C:OPmMFErXhXhaYu+d5mte4C

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral15behavioral16

    • Target

      bsrendv2.dll

    • Size

      5.1MB

    • MD5

      6d8bba6d3c44b4f619a3a3a2e55e2857

    • SHA1

      dfeb0aa114fe552105fe46d1d61e73cd759095e7

    • SHA256

      023fa13170b222ea5e2754e34a772d11c84763e05c0d8736d86178e58b320445

    • SHA512

      2fd367eda2d98ecb20eeb9a0d07dd0d6234b5ac1675be246fc291509ee270568378e42143f3731dbac8f8719587838cdc56363cf45c98cf4acf124237ed76905

    • SSDEEP

      49152:e+4ye0FFl1vq822/r121b5z0KZ1CYzW84kseontZ2sRFMfK+rMXrfS7hQZBYeHll:feMFk+8zzcGt2vkCkougHl0ojpT

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral17behavioral18

    • Target

      codecmanager.exe

    • Size

      546KB

    • MD5

      4f074e26182b981e1584245af284d3e6

    • SHA1

      b264cf16eb822effbde5be66a82a38094807730f

    • SHA256

      e13b36df1b5980d1a4e2998323e1e68b658d27fc7e33dce34fd6790096b7a045

    • SHA512

      152bf35a23eae446ab3dd3722daa1b51d73441f5e2b0c7d6924bb44714820c73626d4d3e4d79c13daf34e474f774a737eef7e339d164dc5070db6e8b653fb385

    • SSDEEP

      12288:NCEwflgiFhi/1mFdW1JW73v8UjgDuNq8ZyPIxyY8o2A:PwfCOW1A7jTmIMY8oT

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral19behavioral20

    • Target

      doc/ini_files.html

    • Size

      11KB

    • MD5

      dfb83144ee82abcde78bf27f94e0cc8b

    • SHA1

      33008cae6f3b878318d2085022e3c70f17219e15

    • SHA256

      73a429c1ad5bf28cdfa27cf89bc5992cb1d1abf93c6406604471772bbf41787e

    • SHA512

      30b4f8161590fa287fdca1dfc7a4016eec441ddf652ca7058a822ac78fd6c5f991b25f4604de7fdbaecd55b22157824e31c97a9dd030950bb5338dfb3fba2687

    • SSDEEP

      192:IyqRmLxVq21hjJ+eqaVS4j4qSczUrfbqY4kEOZ7hMzDe+6aZI:0IW32SeXUTWug6n

    Score
    1/10
    behavioral21behavioral22

    • Target

      mmkeybsupp.dll

    • Size

      34KB

    • MD5

      716df622770ee4c8eb452d0a09437ca9

    • SHA1

      11b9f48d821a04a49c5890a6ba5660497961209b

    • SHA256

      4a9e6d001b807f2cb53d1262b5305bc4c7a1fa0377cbba3a34a88398285beba0

    • SHA512

      265cc1d99484db505ca6d16e4db955b01a5e2f5e0b6b72b6366ccca7cb68e2f085b5d0c1dd42e696ee9b97cd0f4bcfd8de9b6ae6ac6bd753a945e1f82dca23d1

    • SSDEEP

      384:Dc2Cl0jnZL4F+UtSCXwH5R0bbf2BfXNWLV2hGK0qwv47S7uibrZrvADeXT4XNvdL:DcFATUtRLHf2BfXNWLIGKPwOCzrYDVr

    Score
    1/10
    behavioral23behavioral24

    • Target

      plugins/oldskin.dll

    • Size

      109KB

    • MD5

      90b6aa5ed53c4d9e107958c630dbaedf

    • SHA1

      4404e7872e9707f18793fb39d8c98a6072806fa5

    • SHA256

      9f5f1797cf5fc615cab9f2dc7253e9354e9de64f8edffe6679801bd1255ac674

    • SHA512

      f3d4d50faff270fbbe46a36d1ac7f2213aea294c8e46bbc0687b9eb468b4ee0a269dd464c4610a34c3d2a80ab5497343bb8521d95751e85bdfeee424df2dd524

    • SSDEEP

      3072:VSIq2ZR+pz/rxYZAedy4XGAt1y5Vg6iZK+4X:g71xgNyCt1GgjZK+

    Score
    3/10
    behavioral25behavioral26

MITRE ATT&CK Enterprise v15

Tasks