e95b5f032ed246f3f9c0bc27017e46940056f5c5fa3dbb7b2f6e0c965e69a4f2

Sharing

Copy URL

Twitter E-mail

General

Target

0ebfb3fd777b3e5505694ed1f3653ac0_JaffaCakes118
Size

492KB
Sample

240625-tx7zls1apd
MD5

0ebfb3fd777b3e5505694ed1f3653ac0
SHA1

66ca1d459f1c8975b916254b337a0c42a311a477
SHA256

e95b5f032ed246f3f9c0bc27017e46940056f5c5fa3dbb7b2f6e0c965e69a4f2
SHA512

211ae9d16831c506d09784241ccdd188b88257a4101b6c3d28dc9156d128f25f6ec1b89c5233421ced307ccb45652a51b4d193e51c12f349293681452e7f4272
SSDEEP

12288:l/ppYgsSyi7MildgOUbYV1ILmaPQTYe1Dgs:VCS4XOUEZagx1DD

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  0ebfb3fd777b3e5505694ed1f3653ac0_JaffaCakes118
- Size
  
  492KB
- MD5
  
  0ebfb3fd777b3e5505694ed1f3653ac0
- SHA1
  
  66ca1d459f1c8975b916254b337a0c42a311a477
- SHA256
  
  e95b5f032ed246f3f9c0bc27017e46940056f5c5fa3dbb7b2f6e0c965e69a4f2
- SHA512
  
  211ae9d16831c506d09784241ccdd188b88257a4101b6c3d28dc9156d128f25f6ec1b89c5233421ced307ccb45652a51b4d193e51c12f349293681452e7f4272
- SSDEEP
  
  12288:l/ppYgsSyi7MildgOUbYV1ILmaPQTYe1Dgs:VCS4XOUEZagx1DD
Score

3^/10
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0285eac59530ff5cc91fe2634b4ed78e
- SHA1
  
  241c12aefca0740e776362f30aa1edffd66d6bdc
- SHA256
  
  44c822afaa4cc7cb95390eaa0ada076d280d3455870569f0cde03637257d9899
- SHA512
  
  1007fbfb82d4e6c04bd5fefb32cd81f4406022ceef4d409eda0f0ddeb8b1f124a2baec86498bc119778e0c241fc41b0c2440d8a8f6731a63ede936be94f81297
- SSDEEP
  
  192:8nK6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+MTgK72dwF7dBEnbok:8K6UdHXcIiY535zBtMTg+BEnbo
Score

3^/10
behavioral3 behavioral4
- Target
  
  YQL_Lyrics_Common.dll
- Size
  
  505KB
- MD5
  
  72dbbf502f310b3820ff4589cf4e9ae7
- SHA1
  
  710871a5957a7e3932b7ef2a8990cc133afa8058
- SHA256
  
  4549c30b9bf613d757e139b8f0f55294b04b6297aa358ef85dbe71bd6b4235c8
- SHA512
  
  a9ebc84313ec4dd876c2f6b274297c4d2d244a5dfcfa05f6b2d23145107c39278e7679c0eb230463f72e2da817ed8b62b3b6b4621da3e0ef13e438c4726b689d
- SSDEEP
  
  6144:SH3PvjePZck+afKQpn0qYUwhpRfh2pT41VrRBE1JOsgXf08/OlA:S3SPlPFd0qYVplheT8rnE1/W/r
Score

1^/10
behavioral5 behavioral6
- Target
  
  YiqilaiLyrics.dll
- Size
  
  136KB
- MD5
  
  66bd35c77e80654b1ef1956d1843cbdd
- SHA1
  
  851e8dae6a4e0df8a6d8d3dfb08f7d8944d39567
- SHA256
  
  e64e38ec3b496c6e65c1dd68e2f499824ed1b1269f0240900dd1d567bb80ecae
- SHA512
  
  ffddcb28ae2235c68ae6b0fbabf746e5d28311ea1d5d2a8f19bdcd7df6300383fb5bfa384a270f99eab0fd4247d936425f44c2fae9ba1c4d70aa886ca480284a
- SSDEEP
  
  3072:PcroPnyMEfcv3V4/m22ZzgN4tQGXn+Mra:MoPQfYWOVZMNZe
Score

1^/10
behavioral7 behavioral8
- Target
  
  YiqilaiLyrics.exe
- Size
  
  223KB
- MD5
  
  ae7f297b319bce3538bb1e4bf1e6e086
- SHA1
  
  8b9e66e2826bf406502d92b2d7e903390fe0b1d9
- SHA256
  
  f29666b7696eb4623b7c1c4e0065c436d1ec50c8c46fd97aa3fd063f1ccc313e
- SHA512
  
  e397cef50a6451428fb725ae19aa20e648c9de094bca682bb2ff5e414fe24070929aaa3412af113c99892c34766ea788a5263236ffdf9cc3e6d911e2bd2c38e1
- SSDEEP
  
  3072:++rDkp6ooNIzKMeUzHLqETXLTdE9nqODJgtQQwEH9tty2duoq+4ljoQ:7ooOLqKXLxE/RQVtnAoq+4p
Score

1^/10
behavioral10 behavioral9
- Target
  
  foo_ui_columns.dll
- Size
  
  213KB
- MD5
  
  a308080fdd393783483eac54002ced7b
- SHA1
  
  4ba112c878c23f400c29ad66defaaf00b68e8be9
- SHA256
  
  28b643f4299977b540a21fd8a77e97220f75b3d168c8290ca236115b8506591c
- SHA512
  
  c6734c7cd35abdd7ab7a413f8a75c15b7776aec2e5dc6fe9a00cf4c6736735d928d2d27ecdcb2ea632ecab204beef9fe60a8a83271362b80b193427d4a6daa03
- SSDEEP
  
  3072:sfxKyB9zdxVvGrh5BP3BVZjCuvSdgXCRWbIFJA3DBpfvRo23nVLR5J+iE9QRb2Zu:spKof+r1nt9hpFV95JUVtA
Score

1^/10
behavioral11 behavioral12
- Target
  
  foo_ui_yqllyrics.dll
- Size
  
  139KB
- MD5
  
  3d55027e9cc165b31995f0223cc9cd88
- SHA1
  
  a5f5708348d7bf2d939a8185b498918e9a7aedf5
- SHA256
  
  9002009ef1a039f773705ecfcfe95f5ffa3b38f5b2a792685e0b22e42d06af25
- SHA512
  
  95470e0db65a7f09032d54907f54fbe47db4211f0e4df1996eeb8a26a6ccbda500a8f4c7cb62567f709be928bcaa3543308c54cca33f6be54f415a69d0597f26
- SSDEEP
  
  1536:SFhS4dKE+/sl/q8dqq3GqcUGI8yv/Xx3M6eNn2ohQV0vtmgMbFu5PtZaU2O7D:QhtX1/q8Z3rpSt2VeAg0Fu5PtZaU2O7
Score

1^/10
behavioral13 behavioral14
- Target
  
  gen_yqllyrics.dll
- Size
  
  52KB
- MD5
  
  f811ae048d4c047327ed7e595910436a
- SHA1
  
  64ca166e6c5f004811aaf1f7947cbc98eb237e1f
- SHA256
  
  5d4e90ebdf0c5bc432752d0472950da456a32f097a029b42258a2687d67f9cad
- SHA512
  
  46dc4b8faee0466c5f28359aee1665d0a76e9bda6bf2365b3100a2d89855b07f88f3014950a0f33a3e895e75a6a344991e6e969e9349105f1af181954f340f6c
- SSDEEP
  
  768:3jzanFsHu9d+PN/qgR6UA8Omzaa9JZtltVtKYUqw9:3j6FLaz287zamztKYUqw
Score

1^/10
behavioral15 behavioral16
- Target
  
  vis_yqllyrics.dll
- Size
  
  70KB
- MD5
  
  20ada9591c78ef169ea83cb14093f7dd
- SHA1
  
  a1910f5b4b18c6156cfaf9b6a31106831c64b268
- SHA256
  
  3f6ad5027a9af95d042f3e6c3c370c5b806594f88098dc3d16f38d6d8af49e96
- SHA512
  
  08893ecf8bef19b00b44c493bd8a3f61b29094c07dbfeef6d33706a26b17adc3e2c9ee8ee1856588782b7918fb90f8f81825ca6e67277635b278491a7e343f44
- SSDEEP
  
  1536:8cpTdga0ik0jKJMK5IX6IEAdBGQhw78N:rpRg/mExAdBGYNN
Score

1^/10
behavioral17 behavioral18
- Target
  
  Ò»ÆðÀ´ÒôÀÖÖúÊÖ°ïÖú.url
- Size
  
  57B
- MD5
  
  e6151ebfbd640f4600a815e8289ac31f
- SHA1
  
  74e7ab2bea63b37c5d4814cabc74e5d5ddedf637
- SHA256
  
  d31a017641defd3f9573e86920ba77df3d41910c275e2d0ed6709dda7d8ef7ba
- SHA512
  
  196dbdd03f522940133d0359c207e5f7f951c34f11a097c8cccb68606921a19a2615719c81ba31340091241a340adba18ac06e991ca229442d7166a0a16c0532
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20