Overview

overview

7

Static

static

3

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

Setup.exe

windows7-x64

7

Setup.exe

windows10-2004-x64

7

keygen.exe

windows7-x64

7

keygen.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3c5d1dbe5cbe3bf36a5f20952a8aa5f7_JaffaCakes118

  • Size

    15.4MB

  • Sample

    240712-hlblgssflm

  • MD5

    3c5d1dbe5cbe3bf36a5f20952a8aa5f7

  • SHA1

    468a0ac558ebb10a00df12f17e05b78352826e0a

  • SHA256

    29e3cf9af0adb3784188769da123c29918dc29bf79f37c521d421b127a3b62b5

  • SHA512

    b175dd4b3495bb462353737739a64ed87bfae0f401aa464196b537e992b99a95cf9e3e86359af110161032e28826e2c7c6dde4eee65c3bfd9014c4b164a8070e

  • SSDEEP

    393216:VZz9odcROShibrUSPv8O84gB0cDehsP72L/dB:ZVp4vUSPv8FbB0iAsP7G

Score
7/10
upx

Malware Config

Targets

    • Target

      155绿色软件站.url

    • Size

      219B

    • MD5

      3a1f2a8a3ef08ae269517a69ea918b2c

    • SHA1

      7d2e6719702bc8472e045e010efa6ed3f7df4b5b

    • SHA256

      66eafefa8bb0155e60828476bde6068573fe64a4fd0aa052eba074dbe85d46cd

    • SHA512

      22203a78192cadc02d0f887247675925273a69e3be82ec1a331197f892216a282cc8f37c3ffbfb578a708244181037277b8cc6a40d8ec70cdf0feac5d80f8576

    Score
    1/10
    behavioral1behavioral2

    • Target

      Setup.exe

    • Size

      16.7MB

    • MD5

      53a8852c6a3ac2f37ebd1200e3d2809e

    • SHA1

      6b9ca8c2da1e167940fbd7b3dc6ac5184964b876

    • SHA256

      4dd9ad71731626774ff2b379b6266874d695ba7e1d9f6a7f7328b10dcef2db4d

    • SHA512

      03eaff000d055a48486658ee195890d4b2a9036c709555481cb792fcbb1936077afc2b95fc5c5137932fa5a72b5d8dcdda6554139435f40f66a105c2a2019067

    • SSDEEP

      393216:57AVneMHIYqGeMHIYwMFcBva0DFJysqhVBg86nEWuGSNE96olW3/7:BgneMjpeM0ZBva0DfU/TgO

    Score
    7/10

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral3behavioral4

    • Target

      keygen.exe

    • Size

      48KB

    • MD5

      d3be4ac211276300742f856cd4547777

    • SHA1

      4bfc58f268151009fde73156d95d0cfc37c1a4e4

    • SHA256

      f551fab1e40be1354ab11655225ab89b656e7d9e5858aa747d708384684b5376

    • SHA512

      c6365a43bded1bb217fe01156a05a3c3759d6d62043572260c903f5ff7bbb48a1fb966abb354f4e21b6af8f3aa76049e77e9a762b4a973de9337fae0e56ece05

    • SSDEEP

      768:27kMDRtNQabdyYdMEfwmf4/4YDEFKymegI+6aWBvAoSf15kyx2CGTh9euIOwN:2HD/Cabr+EfZCNyMjZaAirt/Q

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks