c40d4c8da41f0f831d5f3987c9a819949586090e372e1749200c1ec42037f726

Sharing

Copy URL

Twitter E-mail

General

Target

989d63919aa1a35cc5579cec78b06b9e_JaffaCakes118
Size

6.8MB
Sample

240605-ts426abg8z
MD5

989d63919aa1a35cc5579cec78b06b9e
SHA1

eb5879ddba64704229027c546f0aa192c955f15f
SHA256

c40d4c8da41f0f831d5f3987c9a819949586090e372e1749200c1ec42037f726
SHA512

cc4a75846927a4339e2f0968e85b77a492c64f454286743f389a480d8c791d21fbdaa437b2a90d274b094f4053422686e3ee3182b383b5a5fc74abfe9f2d56ec
SSDEEP

196608:6m9ec6PrH7sf553+soZ/FNhw3/CPtH0BuRu6hU8gA:b9eDrg5dlotFistUBwuiuA

Score

8^/10

execution persistence

Malware Config

Targets

- Target
  
  changeme/Binary 1.7/build_4_17_2014_id29303.bin
- Size
  
  138KB
- MD5
  
  e9a2d2b26f5f267ccc00806bc7d3963a
- SHA1
  
  b92338b6db3810880824529e227a6650d529af4a
- SHA256
  
  62dd0d4b0ac16f65e363b601e65cbc171d0c48c528fd9bf71f5561f0b3f877a2
- SHA512
  
  1510a489775b083cf1f522a6c22f53a360fd1fb67042ff3ee70eadf078d21015d1da1bea3c30f2a0a1e648db81bd9782dd3c59f4f11d374bdc960de03b2a5a93
- SSDEEP
  
  3072:rXDPYNQtaE3M209bZTxFkXSBP8hVPkuK8lCpiSq:rXD/yb1fX8hV8uKuC
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Checks for any installed AV software in registry
- Drops desktop.ini file(s)
behavioral1 behavioral2
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/excanvas.js
- Size
  
  41KB
- MD5
  
  562d11cf3c8c6321b1f6be6f416eeb00
- SHA1
  
  a8c3c82d5c1e33451b40228baca13bcc67893f8d
- SHA256
  
  a1839d3e585b37513f9dffda4ed161c31493b1dd8e92c4778cee706c988df6cc
- SHA512
  
  9263b7e4b6ff5632675304804770a158603c0a29f93dbf256b0ccdcb6c666ea92968a2568b53dda60f6a9c0ce6c0a67e9b2dd193f1a7f9b5529833c132780f72
- SSDEEP
  
  768:t8aTcx2ReO936VmuNFr9cjuHSy3xJQcxQkQha9KuL:GFS79KVm8rYuyy3xJQcx9H
Score

3^/10

execution
behavioral3 behavioral4
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/excanvas.min.js
- Size
  
  19KB
- MD5
  
  ab6c724c99499bd1572cdbc195346c75
- SHA1
  
  89fb281beea44cd77555b592252bb69a7bf9f690
- SHA256
  
  91909e1538782730c4ab6309ca79295bfb3bc4b28f648d9a8261e26ddd4d06ba
- SHA512
  
  10f063c13a3a57e3c97f64070303e3d3c432331998c7c35db7408d0b996737beafd727fbdb8b9845ab192a52d3cfb8be7cb58014a35175f9bf08d151ae6a5244
- SSDEEP
  
  384:E+fnEo6/fvRhyZEP6iK8Svnfooy/9k1/9kH/9k+QUJs62RWk8MR3AEcB0:Pfnyg61CFV3t1
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/jquery.jqplot.js
- Size
  
  455KB
- MD5
  
  7eab074b3b72fcb0fb6f39d0ffa23537
- SHA1
  
  71df2722a3311617a65280b84c1b4c3feb4c5e72
- SHA256
  
  54e91d55b6a6ee3b7eadeeaf3c6b8f375376f9fcb361b493ed677a88aad6d162
- SHA512
  
  c300ae8a0b2fbc6dac1e8dcc91a2cf67c0d97861d32428876448ec8dca70b46cacacb508470b13bf2f51e19848c0dfde699307211e31e27a2df9e973b2bb6e93
- SSDEEP
  
  12288:Z3u9H+aDz6U0ilq4l3bbX6ud1j3f51kf+5vTg1ZFnyC5xkJ:lul+aDz6U0ilq4l3bbX9d1j3f51kf+ZN
Score

3^/10

execution
behavioral7 behavioral8
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/jquery.jqplot.min.js
- Size
  
  168KB
- MD5
  
  565d85c1c1f639919008b8e867faabeb
- SHA1
  
  061cfe25c751a0bd3de47a2390d3a02c3c056e41
- SHA256
  
  6f2d79e83c8e873bf5c9ca48819c3bf85ac03659ab34764ca0857c60e0b23e27
- SHA512
  
  7a6a5ae58f3b62f4265a8dd5676b592e8925d1cda5a6c907077e37f78364b796efde83542ce259c6a7cdcc68ad6d4aa0dacba7b7afea69d0285d8de4182a971b
- SSDEEP
  
  3072:WMbEMJlGqS4eFXUvIYOOpXLIJ7e1ygo+z4YGOOxC:DljS4eFN7e1ygo+z4YGOO0
Score

3^/10

execution
behavioral10 behavioral9
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/jquery.js
- Size
  
  262KB
- MD5
  
  08c235d357750c657ac1db7d1cf656a9
- SHA1
  
  9257afd2d46c3a189ec0d40a45722701d47e9ca5
- SHA256
  
  7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
- SHA512
  
  d62700e7a1ff41f9d6326ca024ba2be1d391bc8fbb2aeae0f427d74837899b230940bf7c2df3d193f5300a68bb3686706d4c31328234b5cda026a1bf52ef9e70
- SSDEEP
  
  6144:UvD8eq9mPKl4OfKcknEHZciGhjZPdDwjdwTJFPk78vmAnhZSxwI14i:UE4OfcaZhfOeATG14i
Score

3^/10

execution
behavioral11 behavioral12
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/jquery.min.js
- Size
  
  90KB
- MD5
  
  397754ba49e9e0cf4e7c190da78dda05
- SHA1
  
  ae49e56999d82802727455f0ba83b63acd90a22b
- SHA256
  
  c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
- SHA512
  
  8c64754f77507ab2c24a6fc818419b9dd3f0ceccc9065290e41afdbee0743f0da2cb13b2fbb00afa525c082f1e697cb3ffd76ef9b902cb81d7c41ca1c641dffb
- SSDEEP
  
  1536:dnu00HWWaRxkqJg09pYxoxDKMXJrg8hXXO4dK3kyfiLJBhdSZE+I+Qg7rbaN1RUx:ddkWgoBhcZRQgmW42qe
Score

3^/10

execution
behavioral13 behavioral14
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.BezierCurveRenderer.js
- Size
  
  14KB
- MD5
  
  194a91762d43544360b009a8a37327c6
- SHA1
  
  cf08a88fa16ff8d574331b631066e4d042528241
- SHA256
  
  371684f0707e5e34edbe094af607f7da0d34ef6753db814098b9d826ea7e46ba
- SHA512
  
  56eab45686076a33093136feaa9204702d86370068ddd6af0f2421979336bb16390fdaa18ddfe393a71c7754063243928762ea4e229668d15ead7e4be2cc214f
- SSDEEP
  
  192:9ittsmVBRAnOk5CdQTQ5inUTnOk5CdQTpIjW9ASdyenOk55KuxH5inUTnOk55Kud:9ittXo21
Score

3^/10

execution
behavioral15 behavioral16
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.BezierCurveRenderer.min.js
- Size
  
  6KB
- MD5
  
  c15c7ef8749cd702d07452e7a04aa21f
- SHA1
  
  f7185fc8ea06be7bc9af568cc134bc8cf75c876c
- SHA256
  
  af8d2f49acde1370e2df2565ef36c4c0d910aafbb37c1f88ad70a39be43eff5f
- SHA512
  
  82a1b48075aab7ed0269361f6dd0fcad76698bffec0e790cfd795f98fa66991aab11550ab90f4787765688c797fa3582dec23b58e6e9ea0f7e38e4121a805b21
- SSDEEP
  
  192:iS1QpJp6UuQpJlntSOQUOe6UuQUOpUAS9WYYCFd/V/Kaq8Vx:hWYFBF
Score

3^/10

execution
behavioral17 behavioral18
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.barRenderer.js
- Size
  
  33KB
- MD5
  
  7b7b7e1a7328c1bbddebca4710cd44c1
- SHA1
  
  2ef315e940ac0155a6a5832cc19d5c442c79f1c5
- SHA256
  
  8e0e487108c4813a3a7df79bd0263b42d52cd7b8c1fc525eb1b1b3169d6858d9
- SHA512
  
  c6412f03f378c204b29196b7f3b1905ccceca51e167ffb7f62efdb2336fb74dfc8f1a47804e54d980422758e45cc2ed0f9263dbf6f8dc6539efcb06c0c8e6c25
- SSDEEP
  
  768:9izdHVvOESGDof1+GRlpb0GDofBERLm8ihCT4:I51xSGDoQGRlpb0GDo5ERL6
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.barRenderer.min.js
- Size
  
  13KB
- MD5
  
  a4e0feecabf098441472baf28dc5b76a
- SHA1
  
  d65ae23883bce127a7ca2434993cce792f0a0362
- SHA256
  
  cfd104bcc10e11c4e8bca35aa3231cda38e1605b5620c5650b487c4bed228213
- SHA512
  
  53addf5f77bff4de057a2259a309c9e2f463afffb04bc366c26eedd4656b748f4c7698e03f794d3fa49fea1a227c8e0ffd3859c21eea51f39f3b045990277cbf
- SSDEEP
  
  192:m1Xkl8dCSISGZlAT8U3iZxBcg7IsrPUB7Q+djdkxC:+yQiUGxBci/Eaw
Score

3^/10

execution
behavioral21 behavioral22
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.blockRenderer.js
- Size
  
  8KB
- MD5
  
  933c9aaae88862934e8d4d892a8914a5
- SHA1
  
  92985a51b6b5bd8b3018d71fa36c9319def9cec9
- SHA256
  
  31ef6c2db973d0dfac20bc50e92b298aee775b5ace91f909146a4ababc69766a
- SHA512
  
  2462d132d91a5adeed9670d83b9dc09b4318a8db7b80f58ba27a6fbfdd7ccf4f27af8f439792c5d2270adbaf48a3db46034744072ea03aab01238e5544e154f3
- SSDEEP
  
  192:9ittlK4Wmf0/ofWXoPSsip5A9HOjgdBtXFPiKpS:9ittMantS9
Score

3^/10

execution
behavioral23 behavioral24
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.blockRenderer.min.js
- Size
  
  3KB
- MD5
  
  653ebb58e069d14b5112f0c56781acbe
- SHA1
  
  213a6a41a9fe2c8c847ae7e8f6a1e08a5a570b44
- SHA256
  
  c2d8902ece9aa35d4a89395990fb715ce1a5838c91fd4d74f907aedb12981337
- SHA512
  
  a400a7b5871e66bfcce5c21a39bfa897387188aeaec4bf5566d5f03ec4bdb0f20b2c38b2e69e7f938b757c7d7cabdbcd9aa405e8e148c287169e882f799b1fd5
Score

3^/10

execution
behavioral25 behavioral26
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.bubbleRenderer.js
- Size
  
  30KB
- MD5
  
  5a812388908e9607d7f7a5e7611bf1b7
- SHA1
  
  8ab66adb9a15ac8b832a0de222acb553e438106e
- SHA256
  
  514c2bb2ad28360a236a0ef10f5ce0e218180a75b4d20d599a3188b4b028fa9d
- SHA512
  
  bc46d7cb1cf5c0b36702df168858713a339c45287589691a77baa37fa93b00d812e217e28d1d1c7561a3e3c5ec9b31b27086f0dd9b965ffc29b177934bdcb813
- SSDEEP
  
  384:9itt4zUi9+HTkaO+w8rz+wJqLDx3G1fQ+4da307oCjr3:9izIXA07oCjr3
Score

3^/10

execution
behavioral27 behavioral28
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.bubbleRenderer.min.js
- Size
  
  12KB
- MD5
  
  79581bc3c74db37d5ffdc153cc4b62de
- SHA1
  
  7cb6154acad4bfa6f4560609bf254a58567f8c30
- SHA256
  
  2681b8ee61cf4ff2010c766288d3633b4104d4b0700a13469b20d98210b3b85a
- SHA512
  
  989c0a237701c881dc63d0fbddf3d40fc96211da73fd0157f9203767246b4a325acf8f00e2d466b17b05354546dea21327b0f7f1f76bc445420172be70e50e5d
- SSDEEP
  
  192:0YjSGGpDGhGtNgj6GMvG/Ew2HdICmgONG35WG4G6qWGt/svRZjm5Y:0YjwbCQ+Ew2H6Cm8E0Y
Score

3^/10

execution
behavioral29 behavioral30
- Target
  
  changeme/Panel 1.7/Panel 1.7.0.1/graphs/plugins/jqplot.canvasAxisLabelRenderer.js
- Size
  
  7KB
- MD5
  
  21a93a129e67d34b748fa38758a39ab1
- SHA1
  
  05237b5d01f08146af7acf2d9a89a1c7681ec91c
- SHA256
  
  dbbf1f9404e468b04305b3045a5f9f278917cbdeefd9362edd69e22eccae2405
- SHA512
  
  83c782faeada1cf1d715a70ebcd5f41ce41c751cbf3b22369da423fb69786ab8f3da4f047f00ab5c7921d5e27e57042fe9094a1596e3138c102ceac3cfc204b1
- SSDEEP
  
  192:9ittR8ymfxOR1T+vI0OfzK4IyQcyTZTDA73O9W:9ittRkmTeD+OQ
Score

3^/10

execution
behavioral31 behavioral32