3f8ec3ac729285705bbeff69bad1edada368ef5241d91d3eee878e4b0856bf52

Sharing

Copy URL

Twitter E-mail

General

Target

1791f6f3d5bd74f1c4431ade206e1020_JaffaCakes118
Size

887KB
Sample

240627-z7c5watflp
MD5

1791f6f3d5bd74f1c4431ade206e1020
SHA1

4c08b68d6fa215f88568489c092eff8826a762b7
SHA256

3f8ec3ac729285705bbeff69bad1edada368ef5241d91d3eee878e4b0856bf52
SHA512

d1d05c54916f5fced8e545f387281ecd6635ef6d0a5f36d64e82bec94185c607be0138228d767ffd04f6642012a712e3c878e34ad76e4d9ea1c882a5245a70db
SSDEEP

24576:jbRNDrdDk7uBV26Rk7b0P4sxo1z6wNGDL:jbRNDrouX2uyb0P4ZLu

Score

7^/10

Malware Config

Targets

- Target
  
  泽华音乐/COMDLG32.OCX
- Size
  
  137KB
- MD5
  
  d76f0eab36f83a31d411aeaf70da7396
- SHA1
  
  9bc145b54500fb6fbea9be61fbdd90f65fd1bc14
- SHA256
  
  46f4fdb12c30742ff4607876d2f36cf432cdc7ec3d2c99097011448fc57e997c
- SHA512
  
  9c22bc6b2e7dbcd344809085894b768cfa76e8512062c5bbf3caeaa2771c6b7ce128bd5a0b6e385a5da777d0d822a5b2191773cc0ddb05abe1fa935fa853d79d
- SSDEEP
  
  3072:VESIiWD8uq4hCqUt6mqD1gRshBgH/voqJrwo2CocrJbQN6N2TRqEydzXS0:VETz566VgRyOJ0oDxQRHf
Score

1^/10
behavioral1 behavioral2
- Target
  
  泽华音乐/Diag.dll
- Size
  
  137KB
- MD5
  
  b73809a916e6d7c1ae56f182a2e8f7e2
- SHA1
  
  34e4213d8bf0e150d3f50ae0bd3f5b328e1105f5
- SHA256
  
  64c6ee999562961d11af130254ad3ffd24bb725d3c18e7877f9fd362f4936195
- SHA512
  
  26c28cb6c7e1b47425403ab8850a765ac420dd6474327ce8469376219c830ab46218383d15a73c9ea3a23fc6b5f392ee6e2a1632a1bf644b1bd1a05a4729e333
- SSDEEP
  
  3072:3ESIiWD8uq4hCqUt6mqD1gRshBgH/voqJrwo2CocrJbQN6N2TRqEydzdHv2:3ETz566VgRyOJ0oDxQRHH
Score

1^/10
behavioral3 behavioral4
- Target
  
  泽华音乐/LiveUpdata.exe
- Size
  
  180KB
- MD5
  
  161bc96d7e45b935d9641ab0126962b3
- SHA1
  
  9ee7dd05355be2ac0d148bffa97752ee58dcff47
- SHA256
  
  3d68451daa3bf0218f760b0d112c6f675b7b9d04e163b1c52b35198c84d8a498
- SHA512
  
  68da5ff061de6b23b90ff6de9a14606d9315adc02b88ea2c7706ffd005fe6ac0130f6812498c26a8aeafe78b2cc7a236cb354e17853d239c54d8dc10d6f00ae5
- SSDEEP
  
  768:XUocYbMgwQpRK3rV2HUuXW38xV23xBE4wSjqkr4ocYb:7ggwuK3rV2HUmlZ4Lbr3
Score

1^/10
behavioral5 behavioral6
- Target
  
  泽华音乐/RMListView.dll
- Size
  
  316KB
- MD5
  
  842b3d7091aab7ae1c28e3a85bb3fa8e
- SHA1
  
  c4fa2a9f28daeabd8a9e7db9c7873da0e6a7e4e8
- SHA256
  
  babd698ae6f99c31b75e0c9c9fd6a2fd6b6f04cfd85602a4563fff682fd5ba8d
- SHA512
  
  6e7c3a36218fe1138b96d6571770349134c1682e159ae56f757bc9b800c61c73d484c8f5bc9a322c6f27a3ff3e41161df114fd123a2fe168ff277542c23c8550
- SSDEEP
  
  3072:1Ex0/pTvoBJwGrCwEtkUhk1BKr1YkaeOFDVNAC+Z4N2Mprn8/5aPKmBjEqfuWZdd:+MDOJEwEkPkae6QCgY7CIPE4Zdnd
Score

1^/10
behavioral7 behavioral8
- Target
  
  泽华音乐/Radio.exe
- Size
  
  2.0MB
- MD5
  
  a39fa67dc751f6795eac59119c16c783
- SHA1
  
  9884a40700b0df38dc69de0320624fca58efd68a
- SHA256
  
  44012273c78b5f75b62ae0e5ac999abe9403c3773228298f8a6f6b29626c105e
- SHA512
  
  41e965d77a642c5076f8766097e14b1f7ef6d86d1c1be3ff29bdbc5acc639c73f9695b4145b5c0d6291edf0b6b80ff1eb45d4fd9f0ff070404380a0594f6a3fc
- SSDEEP
  
  12288:d3A2b3ztg7QGNY6Cr8stBmJ3jUfOl1YWGFSqjsm4Foazsk:BAyGNY6Cr8stBC3jfEWGFSqjsm4F
Score

3^/10
behavioral10 behavioral9
- Target
  
  泽华音乐/SysTray.ocx
- Size
  
  40KB
- MD5
  
  b7d9fd13383422cde37c58e1f4816a6a
- SHA1
  
  98591490a342685b82dac21def58bb50de8552a4
- SHA256
  
  337d63f0d2bb3d3d5ce1e231bfc0f353806c5271bbba1b74f163c8ec589ba648
- SHA512
  
  9442c50eacc45a0351281473488bb8bd5065e3433cc7968860f3df314633ce68779b1ec4861e9c0292e3861a51a23ce4b89a40cc57f3dffec8b9baf2cab36047
- SSDEEP
  
  384:nqNy4KesNv5pgKPLCt/80lMo70Dd8t4hz27lc/DAP4FHxEz1tgk:nqNEZTpBPg/HMo7+h67lcLAAFHxhk
Score

1^/10
behavioral11 behavioral12
- Target
  
  泽华音乐/TrayInfo.dll
- Size
  
  40KB
- MD5
  
  3a2347459c6122c3a0fda54f5c0f01e3
- SHA1
  
  2da8d828ddc4780f8e703b3d1e009e58789cf9e2
- SHA256
  
  5558433c2eff9a42ad9027df14e7bb9899b036e4766f7ed039c6fed18bef1521
- SHA512
  
  fd4c632b13a127a365a6d78eaa747b12dd69ede3f3714cdc6e75ede62211741799eaee11f36a952d3c8361c0bf5310e84a809a27cabd63a3842e744ccb84bf0b
- SSDEEP
  
  384:/x+z8ysIv5pgKPLCt/80cwsc86R8dAN3y7lcXDAPbFHxET1d5:5+g9MpBPg/uwsXqNC7lczATFHx8
Score

1^/10
behavioral13 behavioral14
- Target
  
  泽华音乐/UpdateDownload.dll
- Size
  
  536KB
- MD5
  
  5b8ce3afe029616f9b913d9c01692f40
- SHA1
  
  d7f1e6aef62411d7835c5c4bfdbaa291434eba6d
- SHA256
  
  9be9ff23e0ef787fc65d4775d20e00fb235cde38de45c5b418386d0ace76d101
- SHA512
  
  b7a1ac5ab35072c689ce36263531547e320a91b20b77ae362ae88dbc31d74360c3f286c2bf74661dd473d01530ad9cf1a764dab964202eba85d27b118135d4cf
- SSDEEP
  
  12288:55aqmc0e9ZlT7Jcorq53Sn0rSmM/h3R2cmPJqRWb4G6yd/+jfRGyhmH:2qmc0eHZ7NRWUGnd/+9GOY
Score

1^/10
behavioral15 behavioral16
- Target
  
  泽华音乐/XpMenu.dll
- Size
  
  232KB
- MD5
  
  4c70a59a1588e1394adb9e703bc9d291
- SHA1
  
  907034dc1dbdeaeac0153d3b28fbb1ef6c7371ab
- SHA256
  
  ed5f2358d2449bf1eabcc04a63d314d7496b2bc4f1e466974b87d8a0c2eff8db
- SHA512
  
  57d8d6f38013a622feb16692b1c3dc4fc5980ad9a18d22ac11e5d46324602937fc7a8abebad13f82cd42681a63de7a768a67f8badbd84e05e65e359367977e28
- SSDEEP
  
  3072:Cg/nYvS5OA/pEZ+l+Un6hAfg9QRbznhdO3hMXwHpxYIMM+IP:VnYvUSAlfLf0Q5zhdO3hVxYfM
Score

1^/10
behavioral17 behavioral18
- Target
  
  泽华音乐/data/User/RealPlugin.exe
- Size
  
  24KB
- MD5
  
  e4804e04958b43a565ab12c221d0ae18
- SHA1
  
  1a6f0c1ee64a6011cd02e99ce94e0793cff96c8a
- SHA256
  
  b04e407c1d7a2a64a2ce602f68d3e9e5f740bc70d1fbd1ec462407af3e0972b1
- SHA512
  
  c9c2ff38b73aadf8457b70cbb5fbb570641de1df5ca1514fa1ce09013120492a23d48ba13fe53c574e214d966a4473e9149c20d0461df89a1cba497fe5cacab0
- SSDEEP
  
  192:gwA9yMrrayvyf6JKiUuPQ26Za3cD2JL5K:9Mrrvvyf60GD6+cD2b
Score

1^/10
behavioral19 behavioral20
- Target
  
  泽华音乐/data/User/system32/BsradioVisualEffect.exe
- Size
  
  252KB
- MD5
  
  eee1fb5de6a13a0239882905a295640f
- SHA1
  
  ebe26bea86794e60a8e6f4b716e2f51454fde0af
- SHA256
  
  19c38d5776be6314a8a2cd3ce8f04c24d0efb918ca4e1d516943f2b87801af2e
- SHA512
  
  fd1e8346f80d4f5455bedc55b8f2bec1643debd5e809156e139b1b669d97ff4beb4ece116291bf698f429d47d9fccde7bd87110dd37c3711b9cf7f554b55fa90
- SSDEEP
  
  3072:P9iUoxnqKHgG6v0Jx52b3ueK5ciepMjbsF6FXqxSZGOpqnhdebZkSY64xHs5irhO:Kx+/vJb3ztieKjAmXqi5qGkyEHs5iY
Score

7^/10
- Loads dropped DLL
behavioral21 behavioral22
- Target
  
  泽华音乐/data/User/web/Loading.htm
- Size
  
  974B
- MD5
  
  3f57efe621e6500a8631028dba07c7bb
- SHA1
  
  3534d5efd61e838253f3c15723c337330192aa80
- SHA256
  
  9e543dd6ec6a1c62a0bac616f56ce7985ea5b6d9071f10c3165a0c074fbb7c17
- SHA512
  
  1b94162daa6fe00b1820108ea413dd3a6e333ad4c5605b900da5ba0f013a667a30f41f526c918649af91718b373edacc150a74fea6c25ddc029e97acc9316e7b
Score

1^/10
behavioral23 behavioral24
- Target
  
  泽华音乐/liveu.exe
- Size
  
  40KB
- MD5
  
  4555785e171540edaaf40f55c6ee33e2
- SHA1
  
  0d7edd308fd3a253945d14f2e56a7c39a37c1e9e
- SHA256
  
  1fe7d18d1ae2a2b0cdd77a422c7e3adfbe42224d428326cc959e04d3cc0fe496
- SHA512
  
  03dd580b4f983dc77a0666d03a5519a32c36001a040b02ba4cd0223a2b24ef5cb08ca0743ee385b42ac2e395a07ff8e9a8d33b4bfded4aaad50ef99d341d2c78
- SSDEEP
  
  768:M8DmTn8cbjsMhTH3SOWQDBDz7ew3qlPn/OhzS4:PDmTnnbjsOTH3SOWQDFz6w3qlv/OdS4
Score

1^/10
behavioral25 behavioral26
- Target
  
  泽华音乐/reg.cmd
- Size
  
  492B
- MD5
  
  6ffe53e8cebb373d109a5d81b8da1c3f
- SHA1
  
  2219347b32baf3f6aff9b75482b2c5520d129c76
- SHA256
  
  4781fccb007580ddcd88f73c4e1f644caa74440f66377f69d4cc522e9df47e70
- SHA512
  
  1e11fe2211cd15c9ee72212ff1a24ca019bfac6ae5c51ea3066b0483167c0967afc90c75e89f0c03fe94ed656726261af18f9ff52a19771dd9e4acd259ff252e
Score

5^/10
- Drops file in System32 directory
behavioral27 behavioral28
- Target
  
  泽华音乐/新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral29 behavioral30
- Target
  
  泽华音乐/泽华音乐安装.exe
- Size
  
  24KB
- MD5
  
  ffa6abbbb33b0150f4f97a66547ebb00
- SHA1
  
  02733638df52a6b8a46af045131886bf4830fd21
- SHA256
  
  bde572f5cc3bd7f6dc2ff017650b36163b41de4e8f58dc9680229a48ead03ddd
- SHA512
  
  17d81aec56b33a27a9f721393b8cf12b3863225aad9b2eb7dfefbad2083c637fa17971155cff7b8d237ffdf4154f3d10adb23c4a920a6459bf99b21773099a29
- SSDEEP
  
  192:k6toc/Rdobh05RRm5GfaYBsJtvg6dtfIVpdD9sjueo1oc/Rdob:k6tocXobh0BsJtvl54D9sSeo1ocXob
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32