5ed97453be92c324567e6d0baf4bc7d001b5925e71ad957e495463893ed1af1d

Sharing

Copy URL

Twitter E-mail

General

Target

1732a9dbaea2266a368bbc0f85a1553d_JaffaCakes118
Size

8.7MB
Sample

240627-xw2yrawckg
MD5

1732a9dbaea2266a368bbc0f85a1553d
SHA1

1e7ee83449a05f1dc395b1006a97b1ff39261e4b
SHA256

5ed97453be92c324567e6d0baf4bc7d001b5925e71ad957e495463893ed1af1d
SHA512

ff7e97666406c90df33afce24334427561e3d514d5bba2b9ac4ac2dac15c051fd3b9214f74f7de994310ff8cf98861c65deea007c36bd8dc3ee1a7b011a6bab9
SSDEEP

196608:pw5j8wsOABpFucADqe/t5x/4g3jsVdfzA7E+F9yQW+0PgSaj4wgDlVhVd1oqi:pIjgn2DfxZQfUEeFTNSaj4r7d10

Score

7^/10

Malware Config

Targets

- Target
  
  karaokeplayersetup.exe
- Size
  
  8.7MB
- MD5
  
  1d17a88afc3352c9f775e9c421a3cfad
- SHA1
  
  1a1170d061dc8bc20a840efa2c2688d4b6ebd407
- SHA256
  
  bd0a83689ee76a213460ad1a3362b377c497749489d3647ca6494f2504c7e9b6
- SHA512
  
  7c93215fecb5ab46cdcfb47599687056c1ff89dc6261d4a0fcab99f3417bff7293f967fa2985ca94fcaee4d1de5e2c0b6b7b0d6c2b9cd903255e81ad23109811
- SSDEEP
  
  196608:qqKeBrrRFK/yEupORztvg+DdOtqbYYl5ubq1h14/z5mi1a1:qGB51sztvFJOt01E21G0Oa1
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/BrandingURL.dll
- Size
  
  3KB
- MD5
  
  9c3488b5e9655d1837c3963ecec33f70
- SHA1
  
  f0fa9b4c29e75c6e4419c4633d09f2797aee2ef3
- SHA256
  
  05ef4beb7fab9d04c1fb251874166fa2d73a34b4a7f2b145d37a2fd00c88979a
- SHA512
  
  6af9f88d65d2279a71620f2a656062b1737b3a9a1692ed4e5887bdee891ce08d21c5c0b25ab3acbe6da9fe255dcd7f8a517c2751e73dc56add216740c945e4a7
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  b18dfaded8f6d2380fdfd8f6b6969211
- SHA1
  
  969fa0e906240ab1123254feeb833c275626cf76
- SHA256
  
  747d0222b652dbfc85e0de4f8486473662d325a55e32c7eacb91e53e37ceba58
- SHA512
  
  25fb09b8657997d31e61c908f1cd08357c1a1b68bbb1ba377e87b6a3eb347a2ef96c1a771b6c4332853abb33728c55c83efa73df5da03f3dfc132f8a69a2886c
- SSDEEP
  
  192:66JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTLK72dwF7dBdcQOz:66JaVh4I5rpPbTL+BdhO
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  9b17a13f814b137f88b961c087858063
- SHA1
  
  c290dd3139b79aa340aec3ed3d674160433035e1
- SHA256
  
  e54792a179a06acbb9b69c117ee804dce070505d1853d6e7d512f2a055a801b2
- SHA512
  
  3a625f5f13e344c24973c79c074d1ced4d9206f87f392dc7c8f0c116d0f2b878b60340e2377d0240c47f0e34e25e4e3af8b196bbca1c6a29a0f51d8408e8b0ec
- SSDEEP
  
  48:SnNQ/z+vUML8eYXICmlmGYKHz0JSpXSxwo6mpwzcR3RqG8aEJcABofgMGKO:Bz+MM4eqmvz0JScx56mpwzAhWcGV
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  10KB
- MD5
  
  810f3a0aefe36a9f63e29e604bea91a9
- SHA1
  
  2559d3d4adf51f8ecbe2d07e669e344eb7d0bd80
- SHA256
  
  f160eb7a1b4eb8d2e99e7424ae058acd81ba5019e43cbfa0ce81e3102b356779
- SHA512
  
  836b73c38ab60260e1bc81ebf8347e14d02453fc361b7d6f10f137287b8189f8bc43758ce2d9def8fd1c71112aab7ef1930af2d64ae69f6d4e58a6fe17b310bb
- SSDEEP
  
  192:CO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1argMO:XKAFERdlxhGRYUzqZar
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/ToolTips.dll
- Size
  
  4KB
- MD5
  
  9a0da2692764bb842411a8b9687ebbb7
- SHA1
  
  5c3a459faa08a704bdf162476897ad4580ae39bd
- SHA256
  
  28aeaa48c929188a0d169887cc3f16370741467ae49e1db59763f030710a6bbb
- SHA512
  
  814d686617df4fe9f50a93dac9428babff3a14836aa27b4666976379ec3fafcab65fd82d8886998fa65e7b59dc192ca067cf8b4cdeb8ef551812912d80dab8ed
- SSDEEP
  
  48:apm2+v7BWCLWQqLa7JZ0ZK59HXesxdrqZZSakw6/K:Ymjv7BWoTicJZ0ZKPHXVx1MOw6
Score

3^/10
behavioral11 behavioral12
- Target
  
  $SYSDIR/AlphaDIB.dll
- Size
  
  740KB
- MD5
  
  08f61aa236190c5ae82ac2025312fc67
- SHA1
  
  17561c1bc8526a14e19168ac2e72000874250e40
- SHA256
  
  45d06642016f4037ae707a1ed07546cdfa679ab96b9bb2c808b8c846334a7a88
- SHA512
  
  057ab52f42c2678cd4597cbd1df39e43809c00420a0086a11d812cf7e7e0f85feb75fe818cf7ce5f70a518589200caa4e2b27b41cb9c8de3ba418e468328c85f
- SSDEEP
  
  12288:Wgkq1G4jM9zwvWIIDeV5VGRDSZvWH5O67EMI/zXy/Xwu/sro3X5AzTtTnB:Wgv1DjMJwvWIIK5VwWZviO67EMI/zXy
Score

1^/10
behavioral13 behavioral14
- Target
  
  $SYSDIR/COMDLG32.OCX
- Size
  
  137KB
- MD5
  
  b73809a916e6d7c1ae56f182a2e8f7e2
- SHA1
  
  34e4213d8bf0e150d3f50ae0bd3f5b328e1105f5
- SHA256
  
  64c6ee999562961d11af130254ad3ffd24bb725d3c18e7877f9fd362f4936195
- SHA512
  
  26c28cb6c7e1b47425403ab8850a765ac420dd6474327ce8469376219c830ab46218383d15a73c9ea3a23fc6b5f392ee6e2a1632a1bf644b1bd1a05a4729e333
- SSDEEP
  
  3072:3ESIiWD8uq4hCqUt6mqD1gRshBgH/voqJrwo2CocrJbQN6N2TRqEydzdHv2:3ETz566VgRyOJ0oDxQRHH
Score

1^/10
behavioral15 behavioral16
- Target
  
  AlphaDIB.dll
- Size
  
  740KB
- MD5
  
  08f61aa236190c5ae82ac2025312fc67
- SHA1
  
  17561c1bc8526a14e19168ac2e72000874250e40
- SHA256
  
  45d06642016f4037ae707a1ed07546cdfa679ab96b9bb2c808b8c846334a7a88
- SHA512
  
  057ab52f42c2678cd4597cbd1df39e43809c00420a0086a11d812cf7e7e0f85feb75fe818cf7ce5f70a518589200caa4e2b27b41cb9c8de3ba418e468328c85f
- SSDEEP
  
  12288:Wgkq1G4jM9zwvWIIDeV5VGRDSZvWH5O67EMI/zXy/Xwu/sro3X5AzTtTnB:Wgv1DjMJwvWIIK5VwWZviO67EMI/zXy
Score

1^/10
behavioral17 behavioral18
- Target
  
  COMDLG32.OCX
- Size
  
  137KB
- MD5
  
  b73809a916e6d7c1ae56f182a2e8f7e2
- SHA1
  
  34e4213d8bf0e150d3f50ae0bd3f5b328e1105f5
- SHA256
  
  64c6ee999562961d11af130254ad3ffd24bb725d3c18e7877f9fd362f4936195
- SHA512
  
  26c28cb6c7e1b47425403ab8850a765ac420dd6474327ce8469376219c830ab46218383d15a73c9ea3a23fc6b5f392ee6e2a1632a1bf644b1bd1a05a4729e333
- SSDEEP
  
  3072:3ESIiWD8uq4hCqUt6mqD1gRshBgH/voqJrwo2CocrJbQN6N2TRqEydzdHv2:3ETz566VgRyOJ0oDxQRHH
Score

1^/10
behavioral19 behavioral20
- Target
  
  Effect.ocx
- Size
  
  380KB
- MD5
  
  9c0a6f4cc372316c6ab284ab92317e80
- SHA1
  
  e7d760436271538421162b68bcd5a03bb3ad3efe
- SHA256
  
  f09f4aad1a87a09215f66cca5a054766b76a6a5f4f40c87f365a50151dc05270
- SHA512
  
  e7d0755500961a9c073249f8bed4d5dc07a7ab4fa08e7c923b1ca6983e8229620bcd3d8610009be6bf8869a450bc0b4bf37bd1809a1114821ad449fcee04d9be
- SSDEEP
  
  6144:xDPGdWKyK/H6+vPWVAkycWoIJrx3Rkh7q7Ce/QQJ:hYyKvFP51caJNqt9QJ
Score

1^/10
behavioral21 behavioral22
- Target
  
  Karaoke Player.exe
- Size
  
  1.4MB
- MD5
  
  67af1b28b6f88d0034fbe1d5c6174240
- SHA1
  
  10f0e5eb56c4ddd4dbbdc7bb210b619683841d38
- SHA256
  
  1d428f44d92b40ccf5d71f0ceeaa1679e10bd9dbf74b5ae7c51d292920bb543a
- SHA512
  
  792013a6f5eb67f5cd2c0a608c6897c76d24f2c203995b33bea75fa0c1d69f5abe1b803e28a42d3376de09679d11a9b85e7e4214b52da6a08db0ee992257f15e
- SSDEEP
  
  24576:M0T2vebca8z0/YQmrp0T2vebca8z0/HR2j1tIljX842GCnv9uM3kQYYjkub:92ixvYTrg2ixvHRiiX842GCnv8EkQYYx
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral23 behavioral24
- Target
  
  MSCOMCTL.OCX
- Size
  
  1.0MB
- MD5
  
  714cf24fc19a20ae0dc701b48ded2cf6
- SHA1
  
  d904d2fa7639c38ffb6e69f1ef779ca1001b8c18
- SHA256
  
  09f126e65d90026c3f659ff41b1287671b8cc1aa16240fc75dae91079a6b9712
- SHA512
  
  d375fd9b509e58c43355263753634368fa711f02a2235f31f7fa420d1ff77504d9a29bb70ae31c87671d50bd75d6b459379a1550907fbe5c37c60da835c60bc1
- SSDEEP
  
  24576:K2woQX9+gWX6b+SHQjxnRC33Oej3zR/QhF7OnVz3S7HM7BHg:5kX9+V6KTpcPhkgVSglg
Score

1^/10
behavioral25 behavioral26
- Target
  
  MSVBVM60.DLL
- Size
  
  1.3MB
- MD5
  
  351bc7471a9874acacf7d386fa8be227
- SHA1
  
  ce82d1ccf593088d09694ef90e44c4ea2761be92
- SHA256
  
  20cbf8835f6fd3878acacbb7868f7b95a7aae6c2c9d5d0a926337ed31378fa7a
- SHA512
  
  650efe6986a8e4dadd5fe8f95812052e047421c728fb61eafaa4512b12a41bab074171a9e7ab56d37c34fe284491d5cd4d60931a004d40115ced80c4cb56bbc5
- SSDEEP
  
  24576:u5gYLuvjckzS11wIJYbvsv9NZHa2kaV7UhH+CJ+oo8lsVhpRZpyi8F3qp/:uOQuvxzS11FjNkaV7UQCJ+oo8SVYFa/
Score

1^/10
behavioral27 behavioral28
- Target
  
  Mp3Enc.ocx
- Size
  
  174KB
- MD5
  
  9852059e98ee194c896febfe46c93be6
- SHA1
  
  c95aaace1352e781e70c7d1d7c663a3376e203e1
- SHA256
  
  3c5f3e499db9e2a4c52301e5d0160687b695084bc2007db4c7fe34b87e1bb85f
- SHA512
  
  9162398c2587ebf1fa53d1a0ca6647aba0dc6b336005793de34dbf06a9059c76df71f07a510eebb2a48b0780d22190fdee126c11f68fb24ab56cd5e7d57f1a2d
- SSDEEP
  
  3072:MooAjrTQrnQatIDmTEzxy2cpImwPWAmVfALaYyo2PMsj2YqBZF5c9:MsTUqDu22hwPWAmSLI2Yqn
Score

1^/10
behavioral29 behavioral30
- Target
  
  Mp3Play.ocx
- Size
  
  107KB
- MD5
  
  c05467c9c1a241c145135e19c867d2cd
- SHA1
  
  7843863580d4441eef2939bfbfa921bf2c608826
- SHA256
  
  42861272c4588f482e8cd98c8cc7cf524a373bb24a434445f00604d8d2deb202
- SHA512
  
  225597858cf6e6d48508c580f6d3a818230c6783f38dc7f4186bcae764919f8df778f87c51a34f2eb1d78bf3e52bebb6a37f1b2cfd8436e88096f02e8a2ba97c
- SSDEEP
  
  3072:4bxXkh9QgPyMfb4GuNprtmhLa8+Z1GkCzCX:kXkZyMTopmLR+Z1N
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Loads dropped DLL

Enumerates connected drives

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32