77763018072adb9e864f06deac9ae588a7ec4ea1a112f9f82c6201d5b7973e84

Sharing

Copy URL

Twitter E-mail

General

Target

2548f911a49d1bd3377a2f88b14223de_JaffaCakes118
Size

12.7MB
Sample

240704-kebzsavcmb
MD5

2548f911a49d1bd3377a2f88b14223de
SHA1

f72e15739e6072fec35374affd3e50b30691335e
SHA256

77763018072adb9e864f06deac9ae588a7ec4ea1a112f9f82c6201d5b7973e84
SHA512

1fe098fed0f154c40fa4da48d5e23404b03ed69620a7f36ab5baf264b64d165fb1c7d82c2c3213873a50c0f675f821a2cda2bde58bc2995c5268cb9c34b40aa5
SSDEEP

393216:vh2t2xMQGq4lrG1jEo2X5ApiE8NzmBUcJd:vhn0q40oo2X5A0E8UB9

Score

7^/10

upx

Malware Config

Targets

- Target
  
  2548f911a49d1bd3377a2f88b14223de_JaffaCakes118
- Size
  
  12.7MB
- MD5
  
  2548f911a49d1bd3377a2f88b14223de
- SHA1
  
  f72e15739e6072fec35374affd3e50b30691335e
- SHA256
  
  77763018072adb9e864f06deac9ae588a7ec4ea1a112f9f82c6201d5b7973e84
- SHA512
  
  1fe098fed0f154c40fa4da48d5e23404b03ed69620a7f36ab5baf264b64d165fb1c7d82c2c3213873a50c0f675f821a2cda2bde58bc2995c5268cb9c34b40aa5
- SSDEEP
  
  393216:vh2t2xMQGq4lrG1jEo2X5ApiE8NzmBUcJd:vhn0q40oo2X5A0E8UB9
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StartMenu.dll
- Size
  
  7KB
- MD5
  
  4e96f412a8cc653053d5d918df6b0836
- SHA1
  
  a3c7d59043feecb1603874b27c23d4166b341f2d
- SHA256
  
  e4a54bfc327986a89165bdef361069810aaa985c3abecd442c786725fabaf977
- SHA512
  
  2fec61b4ad31250bdbdbbfd551d831801790b96902c67200661e8f4f2753378bbf6c0c88b12e1be9173a29597827c1c4809511b6d52666dc3324bd7031c8229d
- SSDEEP
  
  96:IiqA7bDe2xHkR1C41EhvSE+6nNtMn0iGd8CqRLqtJ1trRhElfL:IiqA7/ZH0uQMtcfCqo/tdgf
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  1e8e11f465afdabe97f529705786b368
- SHA1
  
  ea42bed65df6618c5f5648567d81f3935e70a2a0
- SHA256
  
  7d099352c82612ab27ddfd7310c1aa049b58128fb04ea6ea55816a40a6f6487b
- SHA512
  
  16566a8c1738e26962139aae893629098dc759e4ac87df3e8eb9819df4e0e422421836bb1e4240377e00fb2f4408ce40f40eee413d0f6dd2f3a4e27a52d49a0b
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  ab73c0c2a23f913eabdc4cb24b75cbad
- SHA1
  
  6569d2863d54c88dcf57c843fc310f6d9571a41e
- SHA256
  
  3d0060c5c9400a487dbefe4ac132dd96b07d3a4ba3badab46a7410a667c93457
- SHA512
  
  99d287b5152944f64edc7ce8f3ebcd294699e54a5b42ac7a88e27dff8a68278a5429f4d299802ee7ddbe290f1e3b6a372a5f3bb4ecb1a3c32e384bca3ccdb2b8
- SSDEEP
  
  96:EBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4MndY7ndS27gA:E6n+0SAfRE+/8ZYxldqn420
Score

3^/10
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/vcredist_x86.exe
- Size
  
  4.0MB
- MD5
  
  5689d43c3b201dd3810fa3bba4a6476a
- SHA1
  
  6939100e397cef26ec22e95e53fcd9fc979b7bc9
- SHA256
  
  41f45a46ee56626ff2699d525bb56a3bb4718c5ca5f4fb5b3b38add64584026b
- SHA512
  
  4875134c664503242ec60717232f2917edca20286fc4b675223edbbe5dc0239ebfaf8f67edd76fedcaa2be5419490dc6f47930ca260e6c9988ccf242416c204b
- SSDEEP
  
  49152:DQC7p7i0AY9PE1UJEfcnKiJ/K7+RIaCSi3haenvUvwwZDfimxQ02BhoZGxaJq8QQ:DLp7ilY9CQEcKz+kSixJvzwZeK2ggYK4
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  QtCore4.dll
- Size
  
  2.0MB
- MD5
  
  40caf8cc4881b1e92c47fe88404810c9
- SHA1
  
  92693695bb44485fd0174c038e7e4bb550e47741
- SHA256
  
  0a4b6e53e2c81295ac232bf584c90c25d30bab63811c788e1c6c775f6fe3611e
- SHA512
  
  ec6b42fe029aec9aae82914e4960f031b9db7236ada542a92761cfd74964473df64eb2dea50ac9a64f5ad6d7ed4bf1033415cf4cd854efc2b6bcb354daadd97d
- SSDEEP
  
  49152:4ZdBfZSYzZ4BjGNkZWhv5IfaKFdu9dTA6BDxk:4ZdPSfjaxv5IyKFdu9rDx
Score

3^/10
behavioral13 behavioral14
- Target
  
  QtGui4.dll
- Size
  
  7.3MB
- MD5
  
  967cd02ef26dbbbfe6d66911046fde2e
- SHA1
  
  423fedcb2343cc4fab6b737a6b5f913274bd9b0a
- SHA256
  
  c52fc0c63f4604a55d24d3fac5830a7783d87e02863105d87fcd2d3073412fd0
- SHA512
  
  2af674b96588649988e130ef7a3e63e66817259b6cb8ab232991f66582ad4d44cb52e669e7d6fb515ab8206ce1668ca5ed28e0eb8e955f6834522f65ad12283f
- SSDEEP
  
  98304:kxOO6ZZnSvl2nbj+LK/NHqCJmWfqPQadm6QhKI:kx0ZnEAHqWzfaQ1
Score

3^/10
behavioral15 behavioral16
- Target
  
  QtNetwork4.dll
- Size
  
  651KB
- MD5
  
  b91ab2d92027947dcc85bf5563433780
- SHA1
  
  8cdb199ad9aa49cf03d01b32070d30a706cd9f07
- SHA256
  
  2e9bf6a27bcfa809caac1eef94fb815faa35f3e51cdf97fe35a95517ea6b4783
- SHA512
  
  73dd51f891763eb7a45f908906946f90aa629bbebe84c0b3df89f1668f926a5e88d4a9b19b9780211948ff673d4ef8abcb869a4ebceb75ed01b2abe6a43ba2a2
- SSDEEP
  
  12288:uS41O8YIQnN02EJPnNCH47CeF09n2y8cxxaCwqaymT3D/QYzAgMq0dSgGqMisL2D:u6N02EkSD/TMq0dSgGqM3U
Score

3^/10
behavioral17 behavioral18
- Target
  
  accessible/qtaccessiblewidgets4.dll
- Size
  
  164KB
- MD5
  
  3a2748c8bb322b29fffe13690d744098
- SHA1
  
  e65d7c1e9e94f7fbc97b2110248203fbedb30b93
- SHA256
  
  56606d4749712a27c033eb506d6eccaf8e886d38dabf5f96205073ec292275a2
- SHA512
  
  61a4595b59856265f76a3675dc663b2cb3f5ecd505abe7a1ea893c0486d399abf94813722a70ce18765b5f01a5ba41c0a7c617c89b43569ddf25e214c72af526
- SSDEEP
  
  3072:bM1z7Lg+sACt9KOWi/TL17pij2E7H6kbMRY1/mnqLGSvt6QSDGStNyvWOyeLlcb3:b4LHOltQzQQS57oWOyeZqZFCgT
Score

1^/10
behavioral19 behavioral20
- Target
  
  fmodex.dll
- Size
  
  388KB
- MD5
  
  7e3626430bc89a640ef11dddda1e18d0
- SHA1
  
  f869332645925cb943965395a73c270d08569848
- SHA256
  
  625879df871b5dfa672f806368d83998d942605098b9b0dcad6d3b4e5ad6f5a8
- SHA512
  
  270b05144df013a74c1a08594df8388695df3632005bc6890e6aedc412d2a3aafd061283cce724985cc05b463a1ac4ee2dfcef9474a34f616fa9182b342dc65f
- SSDEEP
  
  6144:7oaFJ/wuw9JuXGPHFoZD4h75N16xrOlXu+v2nB2ZsSMgqSni1rlwlETpG6gXh0l3:sar/RwaWPeZo9/orCX9mXuvRlI9gXh
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral21 behavioral22
- Target
  
  imageformats/qgif4.dll
- Size
  
  24KB
- MD5
  
  8888ac64b14be01cf9a3c57d85c2f654
- SHA1
  
  445d7b9d78b68b96fb61c2df8582d175a7f9bcc2
- SHA256
  
  2972ab6f8d716fe05383d60f50508effdcd918cdb2b1f714fff84bd88888a10c
- SHA512
  
  81c1f6a075097cb6c8fa9675c15994cffe3aa90a82b1bbe873e6897ca417644734a1d254714e828814174ad459b7d246339fe86f42b14b21d70b191e40ab67f4
- SSDEEP
  
  768:mtx5hoOyG83CUOwkq+71WJSgSnqaOyUsgr:yovtCUPkq+7A8RnqaOy9g
Score

1^/10
behavioral23 behavioral24
- Target
  
  imageformats/qjpeg4.dll
- Size
  
  116KB
- MD5
  
  493be601ec2731df54cd773a80932e0d
- SHA1
  
  d3a52a9a11f6624354ee75b88a8f6cae3c846001
- SHA256
  
  da4d6208953a488d47cf0e24006f8d4fbc1c00f795bdf1e610f8468ae0adc64f
- SHA512
  
  dad31dc156c9f141793f0586215c2e21d278b6c88526fa7513f302b9bf39d595c6bbb5cad81424cf6e89ed3f9fdc4c279da4b480227915ea69bd52e1fc4f3acc
- SSDEEP
  
  3072:JJWYwEA/mAuJUXWSKUKNSRsFUEJEF/9pVNM92vC3mOK1t:iCvJUXWSqNHcFbVs2vC3mOK1
Score

1^/10
behavioral25 behavioral26
- Target
  
  plugins/clientquery_plugin.dll
- Size
  
  683KB
- MD5
  
  71d73d852e7748a51eafe7f0d7222a23
- SHA1
  
  82ff0a13cff08027e9791362e67e0153b753f484
- SHA256
  
  a5e9de4f3091d223eb42e25b7df18052b4353f44864092e94e20046391e00d09
- SHA512
  
  f12db1b39ffb6e851ad90910a13be9167c909ade890d63563b350b1895f9f38e0e3ee84781351326fe2c77b5d3359ff1d8790455fdf40801beb8297c0aabc161
- SSDEEP
  
  12288:Y+G/cG/ZD3PNLXGPVBtDf3q/iJtc/XSSzSrqYIBDc9wwslXXX7sbc:xG/8L0iuCSYIBDcRqXXX7sg
Score

1^/10
behavioral27 behavioral28
- Target
  
  plugins/lua_plugin.dll
- Size
  
  365KB
- MD5
  
  da811b0828d7c06856d54b37676eedfe
- SHA1
  
  6c16b32615e8a7687431db3156166ad07aa41054
- SHA256
  
  c8639ac3bd81f8115ea5b2659a89b536745a2e9521f7e605df0848d0427f5094
- SHA512
  
  d6f91d5beda593060e72da4a806c0c43516ac2a44cef51640ccba0f727d5e2845253039cadf0e55ed3e6d97481419a72c0e2b092aafd52b38a1ec3a25eb99162
- SSDEEP
  
  6144:x65bwfM76Tqeo8FnMLFF/wvemmtQTT/dMkYAOo+JzxyKu:/HrFnM5F/5mTmkYNtju
Score

1^/10
behavioral29 behavioral30
- Target
  
  plugins/test_plugin.dll
- Size
  
  69KB
- MD5
  
  870b80853839b674d6dc9c7f886ec1ec
- SHA1
  
  bb67999403c63d7c40ef9d2e493a27ced17881d5
- SHA256
  
  019adaf3ae57deb3bef5cb2353c2727d76020c97ea8bb8e3a7d01676d8066fae
- SHA512
  
  60569ee7cda4a8ff859bb984a7870a0ee6058f261cd7dea0c7b7d9f7e5dc4d86219e04f038e235b0dbe6370cb9ca2e24687359068826fe74ae5a09bc77afffbd
- SSDEEP
  
  768:n3zfOnXzX7pfL3N3wZuLzPW3G3QZ8QXg5mgFF7xPYgZhxcPoFMWbU+liCIWLqDFN:n3zWnztjSkeJXg4iPm9J+sCIWLeFnN
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32