Overview

overview

7

Static

static

7

AutoGuarde...er.exe

windows7-x64

7

AutoGuarde...er.exe

windows10-2004-x64

7

AutoGuarde...te.exe

windows7-x64

7

AutoGuarde...te.exe

windows10-2004-x64

7

AutoGuarde...te.exe

windows7-x64

7

AutoGuarde...te.exe

windows10-2004-x64

7

AutoGuarde...ta.dll

windows7-x64

7

AutoGuarde...ta.dll

windows10-2004-x64

7

AutoGuarde...on.exe

windows7-x64

7

AutoGuarde...on.exe

windows10-2004-x64

7

AutoGuarde...to.exe

windows7-x64

7

AutoGuarde...to.exe

windows10-2004-x64

7

AutoGuarde...er.exe

windows7-x64

7

AutoGuarde...er.exe

windows10-2004-x64

7

AutoGuarde...ex.exe

windows7-x64

7

AutoGuarde...ex.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    326dbd1ac5705cb0f5ca8586d70a41c2_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240709-3hjg5sthnb

  • MD5

    326dbd1ac5705cb0f5ca8586d70a41c2

  • SHA1

    2a41c20f79f97ca2f2b78a171cd1b545b4108216

  • SHA256

    aa6e3a3f06fbf1a9b6fd3c03afd97abb83adcaa63e68bf41e83fe0ff2aff02e1

  • SHA512

    c6c70cba3272743da9ce1d89e4144e1372fa1e3e2951366ab8d4cc709bcd5fe24b3ec7bca065b1b1d500a3e5d7b04ede67bac8372d6a751360e9ada921496e98

  • SSDEEP

    49152:ViqGYlHD68IVpVA4te740wiXMJ/eC+9G5wJ:ViwHDEd4BwiXg+t

Score
7/10
upx

Malware Config

Targets

    • Target

      AutoGuarder2.3.7.350/AutoGuarder.exe

    • Size

      446KB

    • MD5

      5ebf7231a6e62fb2181d3c83afaedc56

    • SHA1

      7f6cd1032aeb3de58185061f321d389e8f2f219e

    • SHA256

      8a2534c990e316dc1cc1c0ab020cd14f605b2a0686e338c059d20f6c0d516e73

    • SHA512

      2a1e68c9da45b9b4de0c88963bdb950cd6f5e6d275256a1c2de265b38edaaef189b799b706bbc68f798136bddbd732690d3ffc6efa9d61c9f233448957434f31

    • SSDEEP

      12288:hUVMNEMtZLyhsApkPyUDMtF6PCKl1mJkJzYMVWU:hVNEMtNyhsApS0F6xeJmVWU

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      AutoGuarder2.3.7.350/LiveUpdate.exe

    • Size

      332KB

    • MD5

      cc53fb935f7aaf7c460eb59541ccecf2

    • SHA1

      875a439b1e6b21286e5ac5e9f27c1ef5c64937d8

    • SHA256

      9c5eae9b66a81cf96e1fd767084cc52299ae409ce17c47df72bafef94928d9f5

    • SHA512

      3e1900b538b69992fd0489eba532bab310b127fd6e2cefced9bc671eb2c12eae73af295bc725d63c61034ebc35510d24ff4b897d7763ccfd120ed1da9c03bef3

    • SSDEEP

      6144:aUbuTF1gV0XmvUKFpcYJTyWGh4lKQf5Bf35O1UAmHYucgjLZqEyaZUF7c:aIasV0XYUKFOx2jfpIu6gjLZuaZI7c

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      AutoGuarder2.3.7.350/Update.exe

    • Size

      221KB

    • MD5

      bdaf0c317ad6f6f400606362f861facf

    • SHA1

      3a0eaa437bdaab33339c499ff0c47b2c208e1f13

    • SHA256

      0b1224943fb2050150b0ae86efe70a04c5fda11affd2427689afc38d1767cd85

    • SHA512

      bf610b811e411a435f5a762b14818de85bc35ff4cfd622377d32c22195df25f96173d041ee8198a92258d0daff9dad8c2bec4024b5f9458a363e1181ef438e40

    • SSDEEP

      3072:f4tN8qO9wZmwczAZLOboktVwCDCDXRf++oekVg/3XjkgiIp2433rlz+0NYLlJWZ:Az8q/dcz6+oAwoCXoekm/QHIpllzKJWZ

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

    • Target

      AutoGuarder2.3.7.350/Vdata.dll

    • Size

      292KB

    • MD5

      de79e4c838a1dcf3f3d54eab5fc63681

    • SHA1

      ac447f0655f4554813b749cf897ac295880696f1

    • SHA256

      32a642a8da1dc91a23da73034667450cf93027c9d97e21a598d818cc04fb925c

    • SHA512

      83c73f8cd8910f130cea396ad273c429f6fd8ed55b39cd6e72d67ee6ecf439d53b1591591cb0481141afe1daa4fe544a209b06c568c5903b5a7f34fcbb8a58af

    • SSDEEP

      3072:txWd0it/JuCt7HBI0EVSdQq4gc9TgkCAzrK1FwWmLPiKMe0RzTK0cpH2aNDyhYmP:uSitPBnZdQqtcgurAou1edHC+rrXRw/

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral7behavioral8

    • Target

      AutoGuarder2.3.7.350/arvmon.exe

    • Size

      255KB

    • MD5

      be6f07ff537c988137fce8e591cb098b

    • SHA1

      0c020027b755c86b1dd34e181ffabe1c7987b915

    • SHA256

      81a77cf31eb4a8c6eb348e91fba5ce6e7c5da0a9e3fd289f9a409baaf21de854

    • SHA512

      ca4d1be475c3a09f15c4e80ca03757fcb662b5ebb9b752c3eea62230b4fdde0b98f8524f4ee60d5081a612fc5eaedfa5539d48e62f600f173ace64b04ded0636

    • SSDEEP

      6144:2ETp0E92LYsfP6kv7fGRMzfOIlE0kmq61OiDpNHHKvb0NeG:j0E4YsH6eGRO2GEFiDebrG

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10behavioral9

    • Target

      AutoGuarder2.3.7.350/kill_auto.exe

    • Size

      131KB

    • MD5

      955238f7c6a83bc04945428fedc52f55

    • SHA1

      34706be19feef3978cedb7145d871fbb8bcd1f18

    • SHA256

      7a347deae613b10519e6e776b4fe191b61a7bf85f8e5af03b8f652756e5c9056

    • SHA512

      c645ee0e61ccd9863f564aa417e5f126ac1f75e0885851fa6f273ba6775d2b9ea0c841b3f0f764349d4f272c14c4646a831f439a0dc0a8908fba9a575383bb7f

    • SSDEEP

      3072:VcHOE2+5Sck2Pp/ZQyW/RCuriAIb11Dlhzt6:iS+0CPp/GRCoiAI5Zll

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral11behavioral12

    • Target

      AutoGuarder2.3.7.350/kill_folder.exe

    • Size

      595KB

    • MD5

      93bc7bded27e2ec4351cdf28c59901d8

    • SHA1

      fb9fbd5c299380b1164e1cda29c835623b36a14b

    • SHA256

      c057653bd1bf4dbc9ebcae98a022a4a3e15de793a36553b22dbebc5d2d5f5d85

    • SHA512

      670c22f0ed6471fc4e959081775c459ee87e288ad87288ffb87c32640b12e000661dadd283abd1fc147089a9249af3a2005bfccfdc5e1623b846a99d57fa5b1d

    • SSDEEP

      12288:mwMsa8FON/Xj/r3wSShjhLpRqHMMU5ublhuGGY:/k/z/rmNRUw5uTl

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral13behavioral14

    • Target

      AutoGuarder2.3.7.350/kill_meex.exe

    • Size

      221KB

    • MD5

      92c60822422b69ef1768df00a717b182

    • SHA1

      a5ef6d12c2bbff7bc158bc7e453e284b5afde693

    • SHA256

      c6e7a4cd21060a9be006db4c48845db8323099c1994ab68b12653595b224344b

    • SHA512

      5f25d6c198e24f6c6abaa3192ad592795eafcc67ee9948c66bf56333e374f07405127015cd9aecbe0fce1198020f4191549cfcfaa99b483b82461841cbefc0da

    • SSDEEP

      6144:ASRA69G3SCSNMtYsuiDRq17uGGYcw9WbLKBNd:a69GCCnuGWuGGY

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks