General

  • Target

    9369094bfe5430d2b41fadecca6cdf39_JaffaCakes118

  • Size

    1.7MB

  • Sample

    240604-c436kaae7y

  • MD5

    9369094bfe5430d2b41fadecca6cdf39

  • SHA1

    eb71cf48d4fe381bb98efab45770461e2c0f5d93

  • SHA256

    d047f39babae81dbfbde5afee704e1b0d2314159691c8e0cee95dfaa8958e885

  • SHA512

    7587d0a3e632cf76ef41fcc7758e91d9d0e08533e4b5f7318787d96122e8be2c78e30e700ca008fa451711f16237736e6876ab52979a22f045509b32e7dd4bf9

  • SSDEEP

    49152:x1BH+WE9cV5Gx5xNnaG2gnVYPa1hS5jkkjxi:LZ+WEE5GCGbnVYyHHkjxi

Score
7/10

Malware Config

Targets

    • Target

      9369094bfe5430d2b41fadecca6cdf39_JaffaCakes118

    • Size

      1.7MB

    • MD5

      9369094bfe5430d2b41fadecca6cdf39

    • SHA1

      eb71cf48d4fe381bb98efab45770461e2c0f5d93

    • SHA256

      d047f39babae81dbfbde5afee704e1b0d2314159691c8e0cee95dfaa8958e885

    • SHA512

      7587d0a3e632cf76ef41fcc7758e91d9d0e08533e4b5f7318787d96122e8be2c78e30e700ca008fa451711f16237736e6876ab52979a22f045509b32e7dd4bf9

    • SSDEEP

      49152:x1BH+WE9cV5Gx5xNnaG2gnVYPa1hS5jkkjxi:LZ+WEE5GCGbnVYyHHkjxi

    Score
    7/10
    • Loads dropped DLL

    • Target

      $PLUGINSDIR/PW001.exe

    • Size

      879KB

    • MD5

      4c9ec35033d6049fc2b772d5bd7f063d

    • SHA1

      59fb04eb6a4ea03aa98967683a6bc58be98cd68a

    • SHA256

      b65bd44fcbcbe3bd70e1a665dc8f9e8a878c24eb230d0ebf5bf0e1adb017ec01

    • SHA512

      720a0d43693cdc5549c204dc352b2d55e65790575cba3f7f35b2a5ee5dce7f1b7c9989c34608d27d335dcc00460a305b500579d7a0959e3419e50af80c099e53

    • SSDEEP

      24576:jG50ZfFK6ln+3Med97Mjn9foX4OoIVRY0dGxsAI02F+02+tsC:jG5UfgQ+/w9fMhGx59Ov

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      bf712f32249029466fa86756f5546950

    • SHA1

      75ac4dc4808ac148ddd78f6b89a51afbd4091c2e

    • SHA256

      7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af

    • SHA512

      13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4

    • SSDEEP

      192:0N2gQuUwXzioj4KALV2upWzVd7q1QDXEbBZ8KxHdGzyS/Kx:rJoiO8V2upW7vQjS/

    Score
    3/10
    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      24KB

    • MD5

      1fc1fbb2c7a14b7901fc9abbd6dbef10

    • SHA1

      4d9ed86f31075a3d3f674ff78f39c190a4098126

    • SHA256

      4f26394c93f1acb315c42c351983dafc7f094b2d05db6d7a1ba7dcb39a3a599e

    • SHA512

      76d8ff7fc301cc5ff966ad8be17f0f3f2d869ef797c5a2c55a062305c02133a842906448741bf9818ec369bbb2932b9a9c2193ebc59835b50e8703db0090fdb2

    • SSDEEP

      384:ya3Bj/GAqvdXP4P4IVlht8zNHxKNSJvor9e9dQTIHzOZwceyeZwd6TJdpq:yRtqLhtqKNS5sAvQTIB86T0

    Score
    3/10
    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      4ccc4a742d4423f2f0ed744fd9c81f63

    • SHA1

      704f00a1acc327fd879cf75fc90d0b8f927c36bc

    • SHA256

      416133dd86c0dff6b0fcaf1f46dfe97fdc85b37f90effb2d369164a8f7e13ae6

    • SHA512

      790c5eb1f8b297e45054c855b66dfc18e9f3f1b1870559014dbefa3b9d5b6d33a993a9e089202e70f51a55d859b74e8605c6f633386fd9189b6f78941bf1bfdb

    • SSDEEP

      192:SbEunjqjIcESwFlioU3M0LLF/t8t9pKSfOi:SbESjFCw6oWPFl8jfOi

    Score
    3/10
    • Target

      SkinMagic.dll

    • Size

      476KB

    • MD5

      59e53588f0a12d54bf1b0b24182d098f

    • SHA1

      857f40508d08dfbeb26afc46601cad32fe1414b7

    • SHA256

      886c9d39ace6e0d914cd97a1a1233be51c4a201c22f6cc4861e7c0d90ac895ef

    • SHA512

      4cf12296de0273cf715cc3f9997ca97afff2cbb58327b62735100e33f38068444aa90a99b77d756990a816a57ce5bc5a040e1db9c2e5944b01e4a3211574f049

    • SSDEEP

      12288:jTKUXiZ222S+P01CDDnrUyRo2d8x3Ti+CBis9T:ViZeNP0ofrUyR58x3FCis9T

    Score
    1/10
    • Target

      UpdateApp.exe

    • Size

      327KB

    • MD5

      dd3f55f51b18813dcadf40b2690bb9fd

    • SHA1

      81699d1641af3e2218350f9d26feefc8c2dcf991

    • SHA256

      3012adea80c90e5fabb0dc794d6bd0bd6a8be1076d2a7381c56af952bc750be5

    • SHA512

      a2de0aca5e53dd15a5e69283bce285d5d36f1e5d0af08965437ab90a0e2cc33e9bdf7d3fa79984f47b925cc963a35156bd232b915b987ee3c2785a8d960df40a

    • SSDEEP

      3072:DOtBlrzu2WI0OHzHtBlrzu2WI0OHzumg9ytBlrzu2WI0OHz:Dqnzu2WITnzu2WIc30nzu2WI

    Score
    1/10
    • Target

      eMule Turbo Accelerator.exe

    • Size

      389KB

    • MD5

      a4ff177f2b932fd66525e80996603331

    • SHA1

      ec24a956dad9f3bf6e8a2a29e735f309ab8203f7

    • SHA256

      91ab8a432935a5408de4289783b4e24e48e2ee4a159ce9250a9b3f1f7af92cc9

    • SHA512

      29c456d803b655adfd68abb26e6facd7ffddca5b54bfe7b86027fddca4331ca78a4b71911ce32be22498903b08025f03c3f79d076bdaa8f3fd3d628b1fb722d9

    • SSDEEP

      6144:LJuNlS9WL/gx7uQNAbIbQMxQFIbm7cTjr5qS9ysYeWw1WGEl5xUBMw7hu:LJuP/oCQA0Zbf5D9yZeWlGgQ7

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      packet.dll

    • Size

      60KB

    • MD5

      c123eb3439ae8ab13a971bb6f0515411

    • SHA1

      3ffa02b544b90433e816136e3bbffad0ca19735c

    • SHA256

      0b681d867089f44fd9c25a343b94b229b3d9db65d060c6c3767535a31e3eeee4

    • SHA512

      99f91d83d43dd73b6737dbbbf4eebf045d9e6a3f2a690210c67f363fa734d1a60b8b306798950668f80762798f52c7c2cfb65260766bbc5aced65ef306fb7aa7

    • SSDEEP

      768:ZPwRf6Bph61db4Ws71Ti/kZSC2pZplWsv9Q/OpKX:wZGr71TiYSCa4ilKX

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks