General

  • Target

    91d41147ba3347eccd58d19dbe562b39_JaffaCakes118

  • Size

    13.2MB

  • Sample

    240603-pypr7sgc32

  • MD5

    91d41147ba3347eccd58d19dbe562b39

  • SHA1

    6c69ec5cfb8ff635b351507cf2689b0769c2ab2c

  • SHA256

    c3292a1a8b5708160e8d863844eb20ee0aad7ea0d827cb7bec429c70416f35cf

  • SHA512

    95d4cc843e3ac133335da868d884a49405051a66021e594575ec3cb87be915e159e5f9ef10df55b5ba48533ad2f00d341318dfc126d368f259a6cc0299e7d6c8

  • SSDEEP

    393216:XtSgQPJt6GghfeoDbVEUcvmxVhiG0Ng5YsVKuB:tQj4GoDJEUppi/NpYPB

Score
7/10

Malware Config

Targets

    • Target

      91d41147ba3347eccd58d19dbe562b39_JaffaCakes118

    • Size

      13.2MB

    • MD5

      91d41147ba3347eccd58d19dbe562b39

    • SHA1

      6c69ec5cfb8ff635b351507cf2689b0769c2ab2c

    • SHA256

      c3292a1a8b5708160e8d863844eb20ee0aad7ea0d827cb7bec429c70416f35cf

    • SHA512

      95d4cc843e3ac133335da868d884a49405051a66021e594575ec3cb87be915e159e5f9ef10df55b5ba48533ad2f00d341318dfc126d368f259a6cc0299e7d6c8

    • SSDEEP

      393216:XtSgQPJt6GghfeoDbVEUcvmxVhiG0Ng5YsVKuB:tQj4GoDJEUppi/NpYPB

    Score
    7/10
    • Loads dropped DLL

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c17103ae9072a06da581dec998343fc1

    • SHA1

      b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

    • SHA256

      dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

    • SHA512

      d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      c10e04dd4ad4277d5adc951bb331c777

    • SHA1

      b1e30808198a3ae6d6d1cca62df8893dc2a7ad43

    • SHA256

      e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a

    • SHA512

      853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e

    • SSDEEP

      96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420

    Score
    3/10
    • Target

      $PLUGINSDIR/nsisStartMenu.dll

    • Size

      5KB

    • MD5

      8cc6e3eea71d040f30a3fe34c00b27fe

    • SHA1

      94d06eac6b90a0e70a3dc039233bfbf0bd1f08a4

    • SHA256

      bce8f1df36b787963bddb6496f44a148ba1a7b56d4c2a02f7e059f2258b1dc0c

    • SHA512

      e030918b5660f51b7f77f342bfcb68d5d3749f997e45670558b153ae0cea76c508788edffa555f1a24d6934838db989a8333e76a9869e70a89b0bc2df71c9ce7

    • SSDEEP

      96:VvX4nc1PgE30ne9N3ErdfUQhVEZCytwZCPBCkeHUnL7XzZl7C/l7CRR:5Xkc1vEne738mQhKztCCPwfUPzt

    Score
    3/10
    • Target

      dids.exe

    • Size

      140KB

    • MD5

      a7f667638f0c2fcdb2cd6be8119cf52e

    • SHA1

      70406b2108cd2874c2cf7757ac8604eb9e91c473

    • SHA256

      b4f8b34082780a88d5ca6dcb6b66ddccece01a2ba198494ce3b1b8bfb508b7d8

    • SHA512

      8f8b207fb0f61eada66ac00fa1134a77fe6b53375c3c928937f0ece6f5a9e52abb3553ada7a7060dabb8f94a3651f831b7f6ed694c9a6d04171d19e0bfa1032c

    • SSDEEP

      1536:BGtgHEjSO//C78d78wu7hWagwrLiJYe/zVkLwtomzAzpD6szlGQX7icICnOO:0LjSO/9d7v0W3GerPt1zy6stWcI0

    Score
    1/10
    • Target

      lib/bin/awt.dll

    • Size

      1.2MB

    • MD5

      0fdda4763c75e78f25e415440ea789aa

    • SHA1

      efb4fa000e34a253191795638a6ee657ef071215

    • SHA256

      6de97887ef757876ddf0549bd041a96bb32a040652a82e221bf7e4c8fcb9b5be

    • SHA512

      c21ab179b97f0ea1b27a6cd31651cc8516b921126c44ec44f7fcb240d614d8907168c1c068bf0a4d420141e2c91c636f769e6f1a067b4dcd7d8aef8384bf0a02

    • SSDEEP

      24576:+4PUQluG1lXO0QlgXCh3Rg66HaWP2RxKGStUGAPOzW46jtLML:de0QlgXC3g8WPF8POK4kpML

    Score
    1/10
    • Target

      lib/bin/axbridge.dll

    • Size

      112KB

    • MD5

      5d5af89fa4bde3597598d3d5a71a0bc7

    • SHA1

      f08d0b09124300feacf00f4ca9ef667bf0796bb6

    • SHA256

      b1a89ea7dfd0594d37cdb84c6f81ba57b5ae8175979a1605474ed3f9e5e8333a

    • SHA512

      113a1441a6e7f6e56c892dac9e310675aec275d77269d370beb77cc170a0f426611947495cddee09bc50bb595c70d1f770c6a46db7959196813f96670281158e

    • SSDEEP

      3072:v6TgoneEy94+BZ3N2ov1Azjb+cuc7B/h999VhwR:iMLEy3rqjSLc

    Score
    1/10
    • Target

      lib/bin/client/jvm.dll

    • Size

      2.5MB

    • MD5

      a1ac92c4eb1a4ae2906709a5fb94d822

    • SHA1

      83683f12dbfca9b0794afd73a7594a169a5777d4

    • SHA256

      b5a3db477b5a66b3b18323d68b231a48576325e8f415131df053366e07d16f86

    • SHA512

      f0285fbba7ececec982f52f7aeb06657c8c6a34e6a14a2fea56b06840d29b5c95a4caafcd0ba059bdd4f8a3737148c790bbf24763dd083b154b56c666e263e03

    • SSDEEP

      49152:ld9ikGk1xpLMkxjnhp1/ADrd0kMa9pQwXpyCbDFUda44Wru/+6TiLlhIIp7G+ncD:ld9ikRL3nhpaZ0uR7GDcv/G

    Score
    1/10
    • Target

      lib/bin/cmm.dll

    • Size

      188KB

    • MD5

      09f3599ea16b29d058af4643ca3de114

    • SHA1

      8c159ffca46e1ab3f68060694bd51dcfd7b5ca91

    • SHA256

      ea68a79686fcfef9f1b0c9c164cca1adee62113d46d7dc7efcb93d73180dfc5b

    • SHA512

      1b7f27eaa3030a53735402b11b41e2a76fdd69f09f33184696d2394043fa4319a2615849e77e56e11995dd464be525c2c622f743ca37f37574fa77d4b0b4c0f0

    • SSDEEP

      3072:svkU0Rh5hA/qvraiLSNyUuiZtoc4qToCe98cecykbyHeS9h:1U0RhgqDaiL0ToxqToj8rcG79

    Score
    1/10
    • Target

      lib/bin/dcpr.dll

    • Size

      140KB

    • MD5

      131b4a15d0a41c8346b837c8be017566

    • SHA1

      bb16db9ad675585b8fe816e54e6fd9652e0afb62

    • SHA256

      d6e172f859953f27dabd0ec0b930f76ab3e2b05caf929859c39281441591dd40

    • SHA512

      0b91bd259e300a73bc7accce6276ddc240b8e63fa62be9d40cdd1146b2e009c41926566dabc11044550e6e95276836bb60febb03947cec1449118531bd18e846

    • SSDEEP

      3072:H5f+Nlo9WEoITWojGylYCE2Iu2jGLF5A9bE8LUeRBcj3:oS/omTGgYCE2L1F5A9bEGUeRC

    Score
    3/10
    • Target

      lib/bin/deploy.dll

    • Size

      76KB

    • MD5

      d30b03edb557026f6f06602a9d04d61b

    • SHA1

      6d28e9d026442b78e624576bfbb3851951314398

    • SHA256

      cb7b92fd94033c26b69289971419f621768e7bc3c0fb57924a311f283b359cd3

    • SHA512

      a4543cbd5cb7bd4124908ca194d0054ae9ba1df4baa8e9a2941ec8428f47d466187afe58bb9e5b9cf7d6e60c862ee7ffe8531546b9dc95c8a282dfd18feafcd0

    • SSDEEP

      1536:HCEvelsCOXqVMyW5dIahCUM+pFps/XPPsHuSJ1PvCdfxGXNEZl:HfUVMhKao+ls/XsHuoEZl

    Score
    3/10
    • Target

      lib/bin/deployJava1.dll

    • Size

      401KB

    • MD5

      b8f7c6ca5f8e97249853dbe1dadd1fbc

    • SHA1

      c29d893d775cca32fa5cd65806867ad963ab356c

    • SHA256

      e4fb1438b24c73de0b455265f80a775bd441fc17a0d9d66104b891e4aa4398fb

    • SHA512

      8f56305f7240dcc2f9f73f2edbe67c76dbde3a159cd39f02fbf2a83d118511225afdfe3dfc35701d972984331b4301eab9b467cf791884a1ab6251ee3798e089

    • SSDEEP

      6144:zSWaXhK8kiR+iQbejtMm+jYQK6+vU9hT7yy8R0cSjvBD:tA3L+iDjtMmxvU9hT7yy8R0njZD

    Score
    1/10
    • Target

      lib/bin/dt_shmem.dll

    • Size

      16KB

    • MD5

      bf8e33c1ffe8a5ae8e922fa618312338

    • SHA1

      6be8f3af61fa260dbffa5daac7e355e1aaf06ddb

    • SHA256

      d6cd693f19af5e4b1d42637cb787cfa03e3118631e11a5137d5193b3cf1db3e5

    • SHA512

      4c618f027bc30c0712543502de0ca3339f4ff91a3b01affd849d1ba74307ffd4397d09a13637e13a7ed4f89c925b2b4458acdf0e305b16b8692c30245fb4fbfd

    • SSDEEP

      192:1/cfwk/Y2xCLUl2xL1Dl/XL6zJHudRUyGv5clxMaK6c5cioHyVik5GknvOXV3VCp:AsSE6zJOYyGhUtc5noS5dnGXuv0Cp9

    Score
    3/10
    • Target

      lib/bin/dt_socket.dll

    • Size

      13KB

    • MD5

      4c94557411dfddcb4febd401568a2c5a

    • SHA1

      095275cc38afa66caf6dbf92ba84af3c635c123f

    • SHA256

      509b6986a494c2440b8bf1f96b8c1976b7a7059a6e22942818d91e17e7ecb040

    • SHA512

      0c2082238463c732ceb7618107f0ff82a1ccb0eac7374c1bc97b274ebe1fe50e0c883379583da762ef25d2f25757b39c0b1d449fe445048b1c6a100c7dbb3c27

    • SSDEEP

      192:kXiWNRVcsKNXBREiOrqa+0M9gYnb/tSO5n89qQuWr/qSpgItvo9f2bbH:UiWbODXBaxq30xYbJn8LSfkbH

    Score
    1/10
    • Target

      lib/bin/fontmanager.dll

    • Size

      332KB

    • MD5

      788e5827a2887a87aedbcb59ca9ea9ef

    • SHA1

      f60cc7ee621586fa7dd94700b80613f138a805cc

    • SHA256

      bcae3e471eb725f583705206d621995a630effe6817a5c2a8e76c78b527c8e2d

    • SHA512

      092e595e87f74762f47aec8952672be6e3b8a674712c1e3fb2b454ceb142da7171a35e440c0a04537a60234df51a2aa441448bca33894da986076cf600238d11

    • SSDEEP

      6144:hZi3ig9n5WzCgdjLekTqxb3H9JO2IbMM40vl/EUwNF0K5eimn9AZJK:q3iK0FjLe2qxzH9JO2IbuZr0YlJK

    Score
    1/10
    • Target

      lib/bin/hpi.dll

    • Size

      15KB

    • MD5

      1d748a18416ce95461b79e5ccbeffaa8

    • SHA1

      bb1a14ac24ed6001937d428a733fef9f018b456b

    • SHA256

      c784a57bad005dcb63f4b5617037791817615042a8d8dc8ebd6c00a103459022

    • SHA512

      1d335b6f7f9240d6750560370333b5967c430f05020b3957ee18a0cf1c484d6d654e93dc64b47f727ab1496e2f2b2a5c830955bad1a8e26a4234807aa1bfe113

    • SSDEEP

      384:0Siw/hg7q6yuQoB5TqSxpqZyGR9sriWO:1iwgq6xQoBhRtGYm

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks