13b01dfe788827f1fff3cc2f0ce82b68cc97d795bdc7efbe634115760bda8237

Sharing

Copy URL Twitter E-mail

General

Target

23409c9749ba395f2207b1c42f77a205_JaffaCakes118
Size

936KB
Sample

240703-wgnxxasene
MD5

23409c9749ba395f2207b1c42f77a205
SHA1

751cf2906c33e66cdef13eb546e7e7f5bb7bb0f6
SHA256

13b01dfe788827f1fff3cc2f0ce82b68cc97d795bdc7efbe634115760bda8237
SHA512

ac8a47aaefa3668ba962cdb9e3e76731a907a2391feba125c61f5a4d11ef93c097abd911d679e3982e6204ad1d210c6cb356ee241b47c65db1d49853a5dcdd06
SSDEEP

24576:KfNA4s1vWKbf0lS/CyBLLH+KsrdWh4Bqnf:K64yhYE/rBeKKK4BG

Score

7^/10

Malware Config

Targets

- Target
  
  23409c9749ba395f2207b1c42f77a205_JaffaCakes118
- Size
  
  936KB
- MD5
  
  23409c9749ba395f2207b1c42f77a205
- SHA1
  
  751cf2906c33e66cdef13eb546e7e7f5bb7bb0f6
- SHA256
  
  13b01dfe788827f1fff3cc2f0ce82b68cc97d795bdc7efbe634115760bda8237
- SHA512
  
  ac8a47aaefa3668ba962cdb9e3e76731a907a2391feba125c61f5a4d11ef93c097abd911d679e3982e6204ad1d210c6cb356ee241b47c65db1d49853a5dcdd06
- SSDEEP
  
  24576:KfNA4s1vWKbf0lS/CyBLLH+KsrdWh4Bqnf:K64yhYE/rBeKKK4BG
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  d61d6c709e7947296603059f8bedeba9
- SHA1
  
  bdcfc90c358c82be43ef85727a7bdfebbd6d1b69
- SHA256
  
  65012a46603b7e13807938e2a61f3c2a60cced3fb3187dfab3e391705e2c3f63
- SHA512
  
  ed5a6efd1dd5e2119a9c523b9f9154e13552b3538bf72f4b8b02d6a9c808c3ae2ba7613d9e2b3395237461703f2da0a1482a52727ffcf6fc967552390dab0f2b
- SSDEEP
  
  384:sKlm7i+c3QW6ckPhyDEaLnL2bbBBIXwZ:5qi8BcyhEhLibbTI
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  32KB
- MD5
  
  83142eac84475f4ca889c73f10d9c179
- SHA1
  
  dbe43c0de8ef881466bd74861b2e5b17598b5ce8
- SHA256
  
  ae2f1658656e554f37e6eac896475a3862841a18ffc6fad2754e2d3525770729
- SHA512
  
  1c66eab21f0c9e0b99ecc3844516a6978f52e0c7f489405a427532ecbe78947c37dac5b4c8b722cc8bc1edfb74ba4824519d56099e587e754e5c668701e83bd1
- SSDEEP
  
  384:3rYz6grZodORNWATt4TBmlk5ooyzFh7BukAUdJoUtSOSR:3QggDWATWNCFh7BNddJoxO+
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  8be27f3bdec2b49d0a6a674716622304
- SHA1
  
  70d17db576ed484a4c0195571118d307fd4dc1b9
- SHA256
  
  4fe0a8391574867d8bdc6fb33555d90e02796563f02d1e6536acc3294a85bd47
- SHA512
  
  add9f37dd0d7a27f19d172c82599a79d049385c12cdfb78745ce2b0685ecea8f85c718bd62ecd671bbed949529429500853534b63226809e707ad3745a8fc801
- SSDEEP
  
  48:SHdPtcWCeM7etAo1UurdGl4A0h2TpXHWFv+wewzpv1XP3GhaEJ6of2ynh1:I1cWxfzrrh2cFvWwFtS1
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/NSUtils.dll
- Size
  
  22KB
- MD5
  
  9b82792f5cb4c3f0540861ec32a1b093
- SHA1
  
  070ad16ec9c009462117069e45a2cee34fd4fc89
- SHA256
  
  74c1b58c62c897845d4eb024b1660e2232e789de89074b5e66427ea9dfb6dcfd
- SHA512
  
  3de0088fc5389ab09564a2fc6218dfc94b78d46d20127733283d8338e38b9457393d37f645147592dc15756b60ed5f4ab009252b1293436dd0492df0e05e7050
- SSDEEP
  
  384:7lSDRe6W3+PN6PR1LK6RZqCkCL5vMEAB7uNI+Er09y58VSwVh1l91:P6ZN6JbynB7uNYr0E58kah1l91
Score

3^/10
behavioral10 behavioral9
- Target
  
  MessengerSkinnerDll_new.dll
- Size
  
  388KB
- MD5
  
  fb6b75f3ad7123363d68029d5a29db44
- SHA1
  
  2dbb8801c9b4aa9d513be397b31c049f2f3b6bae
- SHA256
  
  8de6562b7682507b518e6c98dd09effa51cae4a09c70d106b4d8aa8ca89eaf82
- SHA512
  
  bf81acf838bacbe532f8eb0aa6c1e06fc8e01293e35b0a191966eedb2d4cc88844c9382a1e6cfb56c35d0a2aff8de1fa906327c8fbc11bea2e9c3c11735f9633
- SSDEEP
  
  6144:cA/zTAL1bFHJkRTLVwp5R2lKPs6jKkGBmD60XFaKKf:t7TeiRVwpKKBukFD4
Score

3^/10
behavioral11 behavioral12
- Target
  
  MessengerSkinner_new.exe
- Size
  
  403KB
- MD5
  
  01883850fa7cb7fa74f017e10719d51c
- SHA1
  
  40d8ee498193c3a8edc7fb63ad79d707fb43c7d7
- SHA256
  
  d65de2a0a0ea9f839e3c8092b137ba52389838443b910941e5225bb0bb1c645f
- SHA512
  
  512dec7ca950123f2126f653196d9df758d41a881181765cecf568c0df070398f9028162229ba17d3375de5421ded84c3670c3fce71a2132f0e5e43c7f08838b
- SSDEEP
  
  6144:29EL330Jbp6EcT7VfglTH/8t6B+TBtr262rEQP876lwvG5O+ovDz:w80xp6EqfYTH/yG+TTmEQPlwvG5OFrz
Score

1^/10
behavioral13 behavioral14
- Target
  
  uninst.exe
- Size
  
  99KB
- MD5
  
  4bd90f1b47da9a18f1bfdb5a036234ae
- SHA1
  
  b921874eb196ad10fcadf7d4e27028ce80c08a00
- SHA256
  
  e1b086df8727c435d35545a905db36bbf26b6b48dc38e832f06944a6472e629b
- SHA512
  
  5192da3f32ef8fee7b9b93d123105efac439001fbc24368b565389d1d2f75c6619166043f31290188ed29930ad3c1c245effb78c957f1f1e9fcb925d422c69d0
- SSDEEP
  
  1536:DbSqZVJdThUxmskJQdlGi8JPqinemD/BSGFjnwv7JmkAexJep6FkO:DbLpZuEskJY7yqQeUkGFjnedmkzFkO
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  d61d6c709e7947296603059f8bedeba9
- SHA1
  
  bdcfc90c358c82be43ef85727a7bdfebbd6d1b69
- SHA256
  
  65012a46603b7e13807938e2a61f3c2a60cced3fb3187dfab3e391705e2c3f63
- SHA512
  
  ed5a6efd1dd5e2119a9c523b9f9154e13552b3538bf72f4b8b02d6a9c808c3ae2ba7613d9e2b3395237461703f2da0a1482a52727ffcf6fc967552390dab0f2b
- SSDEEP
  
  384:sKlm7i+c3QW6ckPhyDEaLnL2bbBBIXwZ:5qi8BcyhEhLibbTI
Score

3^/10
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/KillProcDLL.dll
- Size
  
  32KB
- MD5
  
  83142eac84475f4ca889c73f10d9c179
- SHA1
  
  dbe43c0de8ef881466bd74861b2e5b17598b5ce8
- SHA256
  
  ae2f1658656e554f37e6eac896475a3862841a18ffc6fad2754e2d3525770729
- SHA512
  
  1c66eab21f0c9e0b99ecc3844516a6978f52e0c7f489405a427532ecbe78947c37dac5b4c8b722cc8bc1edfb74ba4824519d56099e587e754e5c668701e83bd1
- SSDEEP
  
  384:3rYz6grZodORNWATt4TBmlk5ooyzFh7BukAUdJoUtSOSR:3QggDWATWNCFh7BNddJoxO+
Score

3^/10
behavioral19 behavioral20
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  8be27f3bdec2b49d0a6a674716622304
- SHA1
  
  70d17db576ed484a4c0195571118d307fd4dc1b9
- SHA256
  
  4fe0a8391574867d8bdc6fb33555d90e02796563f02d1e6536acc3294a85bd47
- SHA512
  
  add9f37dd0d7a27f19d172c82599a79d049385c12cdfb78745ce2b0685ecea8f85c718bd62ecd671bbed949529429500853534b63226809e707ad3745a8fc801
- SSDEEP
  
  48:SHdPtcWCeM7etAo1UurdGl4A0h2TpXHWFv+wewzpv1XP3GhaEJ6of2ynh1:I1cWxfzrrh2cFvWwFtS1
Score

3^/10
behavioral21 behavioral22
- Target
  
  $PLUGINSDIR/NSUtils.dll
- Size
  
  22KB
- MD5
  
  9b82792f5cb4c3f0540861ec32a1b093
- SHA1
  
  070ad16ec9c009462117069e45a2cee34fd4fc89
- SHA256
  
  74c1b58c62c897845d4eb024b1660e2232e789de89074b5e66427ea9dfb6dcfd
- SHA512
  
  3de0088fc5389ab09564a2fc6218dfc94b78d46d20127733283d8338e38b9457393d37f645147592dc15756b60ed5f4ab009252b1293436dd0492df0e05e7050
- SSDEEP
  
  384:7lSDRe6W3+PN6PR1LK6RZqCkCL5vMEAB7uNI+Er09y58VSwVh1l91:P6ZN6JbynB7uNYr0E58kah1l91
Score

3^/10
behavioral23 behavioral24
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  8313b80c993dbf27b4b50d0a718f0913
- SHA1
  
  810972ca1b6587dbaf88192874bb9441db296429
- SHA256
  
  88829c8846c7059e499a15cb5abcddfcab63b56c19510d7a4cc418a4d9d742ba
- SHA512
  
  a53eda5f749102fa4ab1e8e916ad6fcc3e5563f28632f7b771413cdc6b3ec31d2d898ab3802ab047a8d8af5ebac445194a78ec38e7d20479e0f36cf8e81bb0df
Score

3^/10
behavioral25 behavioral26

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26