Overview
overview
8Static
static
8MathType.exe
windows7-x64
1MathType.exe
windows10-2004-x64
1Office Sup...Me.wri
windows7-x64
3Office Sup...Me.wri
windows10-2004-x64
3cmdmsppt97.ppa
windows7-x64
1cmdmsppt97.ppa
windows10-2004-x64
1copybtn.exe
windows7-x64
1copybtn.exe
windows10-2004-x64
1inetwh32.dll
windows7-x64
3inetwh32.dll
windows10-2004-x64
3manual.pdf
windows7-x64
1manual.pdf
windows10-2004-x64
1mathpage.js
windows7-x64
3mathpage.js
windows10-2004-x64
3mathpage.dll
windows7-x64
1mathpage.dll
windows10-2004-x64
1mswdan.dll
windows7-x64
1mswdan.dll
windows10-2004-x64
1mswdeu.dll
windows7-x64
1mswdeu.dll
windows10-2004-x64
1mswell.dll
windows7-x64
1mswell.dll
windows10-2004-x64
1mswenu.dll
windows7-x64
1mswenu.dll
windows10-2004-x64
1mswesp.dll
windows7-x64
1mswesp.dll
windows10-2004-x64
1mswfra.dll
windows7-x64
1mswfra.dll
windows10-2004-x64
1mswsbn.dll
windows7-x64
1mswsbn.dll
windows10-2004-x64
1mswuienu.dll
windows7-x64
1mswuienu.dll
windows10-2004-x64
1General
-
Target
1c79db9f19a7f11704280312e0376649_JaffaCakes118
-
Size
3.7MB
-
Sample
240701-zsncasyhnh
-
MD5
1c79db9f19a7f11704280312e0376649
-
SHA1
80bc75fa07a6b303118d04503e62b7bb9dd024cf
-
SHA256
2a298e9da7ff5aa12e42ac5921038bc63e75722c89a89b066868464cce539043
-
SHA512
1921a80bd70529913af6f81d2155fc72994baaf51cf0bcc0ef4d6ebd2b3d116cbba4a199a8ba7531851aa682232067f66476dbc21f58845b7548c66f633ec176
-
SSDEEP
98304:+NaIIDO9P1sjruUWLt0CFT51n1Q9kVoNwWkkiBagbV8P3WZ:+0IID+9ArqKATHq+CDxgCPg
Behavioral task
behavioral1
Sample
MathType.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
MathType.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
Office Support ReadMe.wri
Resource
win7-20231129-en
Behavioral task
behavioral4
Sample
Office Support ReadMe.wri
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
cmdmsppt97.ppa
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
cmdmsppt97.ppa
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
copybtn.exe
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
copybtn.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral9
Sample
inetwh32.dll
Resource
win7-20240611-en
Behavioral task
behavioral10
Sample
inetwh32.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
manual.pdf
Resource
win7-20240508-en
Behavioral task
behavioral12
Sample
manual.pdf
Resource
win10v2004-20240611-en
Behavioral task
behavioral13
Sample
mathpage.js
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
mathpage.js
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
mathpage.dll
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
mathpage.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral17
Sample
mswdan.dll
Resource
win7-20231129-en
Behavioral task
behavioral18
Sample
mswdan.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral19
Sample
mswdeu.dll
Resource
win7-20240419-en
Behavioral task
behavioral20
Sample
mswdeu.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral21
Sample
mswell.dll
Resource
win7-20240508-en
Behavioral task
behavioral22
Sample
mswell.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral23
Sample
mswenu.dll
Resource
win7-20240611-en
Behavioral task
behavioral24
Sample
mswenu.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral25
Sample
mswesp.dll
Resource
win7-20240611-en
Behavioral task
behavioral26
Sample
mswesp.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral27
Sample
mswfra.dll
Resource
win7-20240508-en
Behavioral task
behavioral28
Sample
mswfra.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral29
Sample
mswsbn.dll
Resource
win7-20240221-en
Behavioral task
behavioral30
Sample
mswsbn.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral31
Sample
mswuienu.dll
Resource
win7-20240508-en
Behavioral task
behavioral32
Sample
mswuienu.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
MathType.ex_
-
Size
520KB
-
MD5
8603300f4f880b4e51b632ed09351d0e
-
SHA1
033d3bb38f0fd3873ee1908f8510e7b79c869f8c
-
SHA256
e7fbeb35ec61b52175b6840e867e657fe8d01ad838ddb73924b3bcb8b8dc27a4
-
SHA512
54e509fda1d1c9fa3c9a01839746ccb29ceab2b8ecd6c2766c0106262b83950f847b42811380486136806ba71617de0ea742cd2ba6d9beafa828cf676792ba9a
-
SSDEEP
12288:fat+KaqaQpIV4gAa824Id257vEJaV3UqtZMMM:fwFa/QpIVcSceW39ZMMM
Score1/10 -
-
-
Target
Office Support ReadMe.wri
-
Size
5KB
-
MD5
63babc41e48c59879b991e910f100b10
-
SHA1
bcc551a6fd4ffeec00a8d6beeb51e4f7814885c1
-
SHA256
c5b368f765ca1aaabca968257ebf8791739a9726de5987c2dd68983baebdeeae
-
SHA512
bb736dce3965e854bf6bd856b5850d6c9e5e26a3d42f8f364eb26521543ee279ca9ad33bce525ab58918eb7a9de5f07b0b997cb97d36fdbf0f39bdaddd462c61
-
SSDEEP
96:MOGWfzC/5cg8n16Q7+EJQ+ckhU8rTnLD33rRDSQxL2SJWNlhnR9Wqw4JzZRYpS2:hftxdVS8rDLDl+dZRYpS2
Score3/10 -
-
-
Target
cmdmsppt97.ppa
-
Size
71KB
-
MD5
78cb7eaa7fe724f52a7bd8733f2ce596
-
SHA1
7460472b981381a548487f7ab155f20af87b98bd
-
SHA256
4f57b1fb51b96a0059585da963c7e63620b6f34e54bfc7e9e7d2fce8f0586dd9
-
SHA512
0236ac4852e05c7a11e3d45a3bd56db1c8bc43f9b37111ed8468e24665a61c6bf856747b6bb696d9aab2dbcd52e19205e0c5181956a43a80daee638eab220f4a
-
SSDEEP
1536:pySSbTea8rk6Lq3jo10tpbyzGEIVkX0v3VLOKAnoDClC6:pySSbfMlq3k10tpbyzGEIW00HnQClC
Score1/10 -
-
-
Target
copybtn.exe
-
Size
40KB
-
MD5
50697d0d562f3f97486d70598817f690
-
SHA1
aa9163cecdbee236d745d7b3fbee37f02b4a641c
-
SHA256
bacf1f537ce9fd226c79a4e61ac28d17abe6b3b725d008c4355aeaf0e65ad85a
-
SHA512
d70e5c379870d2a733ecc5a6b3201650d5e67f913626777d3762621bea3e9e6276edea11397a8aff4c355d58a4ec99d4b5ddab39d9f3ac60960794ea15a3fb2f
-
SSDEEP
384:1Q6NO4d1EbkC5sgd1O2GQqL4j2yaIS9Egl1zr8Y8:1Q6NO4dWbbZsXTHuglFF
Score1/10 -
-
-
Target
inetwh32.dll
-
Size
47KB
-
MD5
c2773ddf207b8a7e5514071aacef0376
-
SHA1
5fdec4708b5fadedb349cd6d99ab93ef04446301
-
SHA256
7935f9e0563d0d66dc3014bd42cd9679efc9d9213eb8d6f05ce45dee1c963556
-
SHA512
bdf64ea9e6e2998d2ecc5eae42d2874ef69541dcddabf2354601e3ba7830ed2c792bd42059ccac24eb9b4c2f5113e1b7b106f0078be303457265b5544192db74
-
SSDEEP
768:r7uKjvL+Ev+5Dnr/igVTsryUqarc07PK+l0yM04C+yn/fhd/3:xvlarr6ATWynH+Dl0v07x93
Score3/10 -
-
-
Target
manual.pdf
-
Size
1.9MB
-
MD5
a0da2e92b5b07832fd774427d1e7af46
-
SHA1
7fc1b92059f8738f4855401135e48cd3eada0a91
-
SHA256
ed65eb5688e718bcc549c5c7fb4ad9ad220bf5982bb901211878d5318f61f045
-
SHA512
3cf1571c7c61c5f71ce5789b2bf256ea9edea8275251c8b15ba6ba65db3e3ca347d54588e4c117a7813292a61e4a1d3eb1b239ae9e65f69dd48a497a6c056159
-
SSDEEP
24576:fK0ahhbztoI1ZezxUhYS6k6rc/3TQAVijIRpeHwdn2PxqlqisFd9pxX86l7UhrLr:tk+H3ANdN3knpxXNl7U5LTCCJ
Score1/10 -
-
-
Target
mathpage.js
-
Size
14KB
-
MD5
cc246db21a89461fc12848da257805b2
-
SHA1
efc5842cde2f4d87322b26b4f89d1e98b2fa8721
-
SHA256
53bffb6c15b57dcbcc7d857255ceaf80c4fff83dd1442d2227c719b04feaaa70
-
SHA512
3c61c0de94f7357a09681acc017352a762183b66c9440b183edeceb350c6e809c6a40ca7373e9faf2b3117f114937f44fbdb13c24ed4d7d3fd87947ba432de7f
-
SSDEEP
384:DngFn19dp02XF+TsAn1VrXYFBsZL4w+a/+/:0Fn19RNAnYMB+a/8
Score3/10 -
-
-
Target
mathpage.wll
-
Size
473KB
-
MD5
a6f0dfdaeb5f1194924a1d18bc75a789
-
SHA1
4d2435996d52b67644aaf4775e6ba39cdf99771f
-
SHA256
c91c0cdff4153e4466917f2e51dd6a8770ef324254d67a245935a4ad6d17ab1a
-
SHA512
77c7316939e379484ec2ef70ac58ba38f6bc0748612e6c9be8bb3cc7dd9e98321829d2b09c6e60d4181c1a22d7d989bee9b6628c50bef5f89b62be8b7d0dc40b
-
SSDEEP
12288:RJxw5b/xT+IayEmsqr1Ml/14u9lE3nX1tdCwO:RJxuT+Iadqr1O9+O
Score1/10 -
-
-
Target
mswdan.dll
-
Size
10KB
-
MD5
1551a32c30c818b0643ad5d51129dcb3
-
SHA1
9b3d73cc24423ac6a40821c4a85b2d6e9ad560dd
-
SHA256
8aff4334890208e6278f2e080658b36387f82a6a876575c7b206dbb63da277fc
-
SHA512
8333055fdea670a031b0794a32f72573e4241d0e4aecd3d5199bd08fa5dec1386a0235cb6b2f0bebfdb4d8cebaa34093665921c8337ff9ca582c1c04e32c7992
-
SSDEEP
48:6cRnItQv2FHrTdZQAY8rTOI4v5nLbMrAltvLjrLRh25+EnO5nLbMrAltvLjrLRhK:aKKLhR38Xvm7nmXvm7
Score1/10 -
-
-
Target
mswdeu.dll
-
Size
10KB
-
MD5
3df908e55488988b6bf557a7c85e81f9
-
SHA1
f97ec8eab30787c28e451cb9ebd3d38c4a60b6c8
-
SHA256
292c00b68c9ba329eeee0b3ba21c59cec1e8515874d72baee29bb6439498f5c8
-
SHA512
42781bed81068fc9c62526925ec6e9e196a97f7b5f27cbaf522c227f5677f02ec9669fa4969d06bc7cb91dd0f5bf34c4211f68d04af46afa68834fe2cf30eb31
-
SSDEEP
48:6cHfnjYNrTkkZQAY8rTOIu5nLBebpYcltvLjrLRhP5+EnO5nLBebpYcltvLjrLRb:Ln+xR3BWcXvR7nDWcXvR7
Score1/10 -
-
-
Target
mswell.dll
-
Size
10KB
-
MD5
d99cf50349f8e625e1c7625a5fdfedd5
-
SHA1
7f546da23f71015a2503762afe1a449fe99f0655
-
SHA256
ae9d8690591028af8773bfddc76fb9e3c02a4546df59fe91f37c8476c494e701
-
SHA512
df0d43e8c1b3854b56a309b99682fa13314d623457cfd59d6ac1b371e9d3f535125741c678000203508c3c423db331b1e1fe93e037d5fcc36d083e112330fea2
-
SSDEEP
48:6C2t/Huf2rTOnZQAY8rTOin4z5nLBebpGltvLjrLOh85+ErO5nLBebpGltvLjrLl:5MOKUR35nMXcg7rDMXcg7
Score1/10 -
-
-
Target
mswenu.dll
-
Size
16KB
-
MD5
20594a161b89331b7098843062464b1e
-
SHA1
2d35d94d60712cce1790c1a23b3a2a0eb6075143
-
SHA256
ceb48d688fb9217cf2b4bbd7c7fa56d8c22e759062acf12e848879256d7a9324
-
SHA512
9f891352c18dc9d76f16ca6b2bb932d8c229eef97f6342274598b8a4369b88ab6bb30d4945ed0d09268108cd4237a390c8935f835a3dcc01fe31c59d020ec9b8
-
SSDEEP
48:KaR7wnnLBebpncltvLjrLRhi5+GaRanLBebpncltvLjrLRhi5+GQ/y2rTOnZQAYp:5WYVcXvCHaRxVcXvCH4/UR3
Score1/10 -
-
-
Target
mswesp.dll
-
Size
10KB
-
MD5
5c610df77899da07502915f2a40ff346
-
SHA1
4985bad04bc09c5ab86403db9561133baf9da52a
-
SHA256
b65163c4475dd01adef093ff3956d18a3174ae1cdde7e9b91eac02c851098829
-
SHA512
2b90276a91b20b7d5d15326ae5332e8387876c02ba113df4f806dad5296c0bd69de321b144a2023f372e971553420c439c2223f6f11511e2c635853fd70d12b2
-
SSDEEP
48:6crLl9r6l5Rz9feFvrTFZQAY8rTOI4v5nLbMrTltvLjrLRhb5+EnO5nLbMrTltvx:ffO9fiDZR3vXv97n1Xv97
Score1/10 -
-
-
Target
mswfra.dll
-
Size
10KB
-
MD5
ce3d37ca70b7783ca85527d6ea3a4e33
-
SHA1
8c3fc3ef9ded72498884a83b2bb82b124b93de01
-
SHA256
37b6ea9f94ffa3ee95abf887094158ef31d3910bd12a264fb835f516d500c1f0
-
SHA512
f8cbe0632b8f64e0e19d0d83399c449c198456fbbeb46bfc3560e87140f8f924014d15bc7e815242072de689e01ea05800b5c94190c763a8c212f07721f8e998
-
SSDEEP
48:6c6hsGrTkhZQAY8rTOok5nLbMkultvLjrLRhM5+EgO5nLbMkultvLjrLRhM5+E:olER35XvQ7g1XvQ7
Score1/10 -
-
-
Target
mswsbn.dll
-
Size
10KB
-
MD5
60410642c87dc761f617bf5fd57c0d41
-
SHA1
8c27583c64fea788bf74b1e073cdc9c37fc9a7af
-
SHA256
8e9f03c29b87e2f49faafec09395a896b8e71958e7779292157bc3a7458f6ca8
-
SHA512
53f5267749f64b93f58d6b002e2c8a9055915f486c64a0917b21fa08cef49e1fbb1ee65e70756d38b340368663d938f74030dcb24fbceaa1abdba122cb8c0e6c
-
SSDEEP
48:6cHfnjYNrTkkZQAY8rTOI4v5nLbMr8ltvLjrLRhq5+EnO5nLbMr8ltvLjrLRhq57:Ln+xR3wXv67n6Xv67
Score1/10 -
-
-
Target
mswuienu.dll
-
Size
44KB
-
MD5
459616410c265ffd35192103bc37a180
-
SHA1
c027fd19e0ae4695f4e43232af840ec24e1a758b
-
SHA256
48d854f9c97f17ae3a2185313e4a508c28a76292eca107371d9afd0f0d4b92e7
-
SHA512
893e54ebf71a00885972259b59d802ab66aed1d342bf0e0e9c4e897a7f61abcc9ac4396831bdd95af113d20cdd0cdb89481648a9aa4a658768706adfd1f389c7
-
SSDEEP
768:xu5SMSMmpu3W0S6HRASAJTJvO6oHhLwbiaxVVMtdzQqkW99nYo1:xgtZzSSANJvO69V
Score1/10 -