017c74f0e2671302f5fef903ba89fa77666d86ec73ad8c838d88136e394fd0e1

Sharing

Copy URL Twitter E-mail

General

Target

3e898a9d95f82dbbcd0dbe06338bd742_JaffaCakes118
Size

518KB
Sample

240712-xv35eswfnm
MD5

3e898a9d95f82dbbcd0dbe06338bd742
SHA1

19fc242a627481d16c03b4487f37786eaf8df01c
SHA256

017c74f0e2671302f5fef903ba89fa77666d86ec73ad8c838d88136e394fd0e1
SHA512

96676add4b53425e93b269cdde216af225e05baaad0e49b584d5e3ca38deb6991448bff68bcb0855e259edf698e2417459f197daa6a23a231708501eb6ce6714
SSDEEP

12288:qzOCvWApPOy0FP3+RZ6zSrKcfK9LeTS1W7:iOWO33+RZ6KPiRewu

Score

5^/10

execution

Malware Config

Targets

- Target
  
  FILES/LJ_INFO.EXE
- Size
  
  3KB
- MD5
  
  4b657849410d57826396ee5e058f868e
- SHA1
  
  d69ad61ea6568ee554b4826dbdc088eca8ee1399
- SHA256
  
  9a8652707ce20c15660629bf96234f11ca9ab3a576684dab5f3d5d4549a9b960
- SHA512
  
  f99bf5841b3b310db0b8f47c3d8f4958710597f9fa95a97290aae125274074f4f4f4a59979a901cfa9166dde523ee0b98918bac54f8a5f4bc01d30ff693f940e
Score

1^/10
behavioral1 behavioral2
- Target
  
  FILES/MISC/COPYKERN.EXE
- Size
  
  4KB
- MD5
  
  a1f2902bfb961096b2c099bbaf2289dc
- SHA1
  
  27d161ca784854b847b4dd40bf681616478efc9d
- SHA256
  
  bd1e64533a62f28f31fee1c6352fe3566b0b73465f3ebeb609f3f267eed4bb80
- SHA512
  
  bf0f2902d00a4307a5f59014cfd6c8c582676e263607cf4854eddaf9bd16876d1ec4a64c62073d9b1d7fe4b6583abf6ba41fc6cb718f7861c22bc299aff039ec
Score

5^/10
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  FILES/MISC/KILL.EXE
- Size
  
  4KB
- MD5
  
  4e6c5d9864e1447cb119765dfe04e4b1
- SHA1
  
  0597d1c431a239180fbe2f23fcb7abbad5530814
- SHA256
  
  a25c7e89d48d458929d2f0a3ee71005a14c1c9ae69d352cf45cdf66024b12d9c
- SHA512
  
  43265f77af39b41d9b9bdf3c160cd08221459a71e78fd3d98e18622ad2233715679d5c9146d80bb7654752c05a1577dd7c8f074c79d218d4d529c2cca4b6b751
Score

1^/10
behavioral5 behavioral6
- Target
  
  FILES/MISC/SPAWN.EXE
- Size
  
  8KB
- MD5
  
  b95787c08380e603ca056ae0aa8237b7
- SHA1
  
  f1e4e3f372c3ee103e7c5250683e82351acfa592
- SHA256
  
  d988a2d46f901917048245d9edece7b1e7406556489eb15ac34cdab94e94a3ed
- SHA512
  
  01c303b7a6c52266ecdf39681e13a4570da957bea655d4c4363ed59041543a05ca50aceafee78b6adda3383b5253341a375f9ebb545d63c11f01d9a1a30bd1f2
- SSDEEP
  
  96:nPvkKSHWq30ZBVO13SBVdCo2qKtKwLmKNNxUCdL:nEzHWq6VO13cP2qsK5KNNLdL
Score

1^/10
behavioral7 behavioral8
- Target
  
  FILES/SAMPLES/EX1.EXE
- Size
  
  2KB
- MD5
  
  5402f194d0429c45fd70cbb06af3585d
- SHA1
  
  912ce228f4fbd4d3e959a337619bcec9d7fd4388
- SHA256
  
  5aab4063ff1870f707678373858efc05a3241a3f6ab8cc623623d6f20005c395
- SHA512
  
  d839e0fd40aa4e9b768ad6f3f454f4b7757aeb14f3b2b1b1f1621e7184d6b4fce24fb629bdd7d508bad27e9afde00e887583eb1010cd95c2912d62f136615c7b
Score

1^/10
behavioral10 behavioral9
- Target
  
  FILES/SAMPLES/EX2.EXE
- Size
  
  3KB
- MD5
  
  06b5ab43b3b75599bac3480ff069f32a
- SHA1
  
  1695058e7480f53f6f95d98b9afe35cd27ea112a
- SHA256
  
  81a0610ae4239a0b61d4403edc87b7f174ac2c41104be0deb4d6642afb25a7b4
- SHA512
  
  120d18edfcd5e58edb89f601b4ce901d5849edd66469c96cc38811d93d223b696b4210de333980203a800f162f8f7a18a41ef62fe1514839d97590c226bcdacb
Score

1^/10
behavioral11 behavioral12
- Target
  
  FILES/SAMPLES/EX3.EXE
- Size
  
  3KB
- MD5
  
  8fb05977f2f5dea1d6c0702a764ba547
- SHA1
  
  236ee8c1cad8de7c6a70559a9280e5ab7b536f2a
- SHA256
  
  983b929e275219930309346d89ea01d886724bcde074d2fbb7d7075f7cc1ec60
- SHA512
  
  32d56bae69c9e9c9b058971ce270a7f92f8a7e91a8d689b42d9f9f43e5b03e70a3d39453977a53eaf22570792b7df2b11ba498d06cd5435ae3b8124d36ba7232
Score

1^/10
behavioral13 behavioral14
- Target
  
  FILES/SAMPLES/EX4.EXE
- Size
  
  3KB
- MD5
  
  b45c936898d643e53b964d12c2c1982c
- SHA1
  
  1046bd66e3b0a0706450bc006236c9bcdcf9f0cd
- SHA256
  
  5943d5ef155cbb00d0159221cda32557303067a17fe739acdf59396350e3743a
- SHA512
  
  2890114591f151c529f53272e86b19c79d1e53542546b8dfb12af21b96e668fdcbb65fa76f946c80087645503aedb9ef999b8601588041f373c194f96ff1ebb7
Score

1^/10
behavioral15 behavioral16
- Target
  
  FILES/UTILS/INFO-PE/INFO-PE.EXE
- Size
  
  40KB
- MD5
  
  5415178618eebe417bbfea7531531108
- SHA1
  
  8d8afce87f9d1de6a09e8688d5e33af4ebe15ba8
- SHA256
  
  331767ffa9082a7edc73ceaff4e9f0ae0c27dd0e929ae5eab794b87fbfc996c0
- SHA512
  
  b7910cced160b7d6c7158086ce3c5ad2886a1704cc980a36b5ea21b53597992f14d03d7583abe4416f8d2c4578ad68ad521d61cc5271c5a76e7f948e862a081a
- SSDEEP
  
  384:nQrsym2EGxu/6xLNCn5T9I95wjSr8aY+ZZh/3ZfJU5r0PlghfxR2B:nF2EappY5T9IoGpfFPly2
Score

1^/10
behavioral17 behavioral18
- Target
  
  FILES/UTILS/INFO-PE/INFO-PE.PAS
- Size
  
  39KB
- MD5
  
  547bd86033a1c9aa4c7984f6267effff
- SHA1
  
  088b6524add1ef540934b59955625f9e92f2d43a
- SHA256
  
  f7bcd791d605e44ebdd016a8c93873d7f70fe15888831f39a73818262f5c7f05
- SHA512
  
  292c870b2b59c27a4a07494d4978b871321ca6a9bd08f7fb23d0d81d5e6fccd5a9563bdb12125115357b0571f1ce2c8e04a9daa9f0239593dbd5087bfa331f1f
- SSDEEP
  
  384:JTDirIIE1kJP7PwhsK//J0nDWrlqjdo8yDDFCYoyPfBpX/GIQUd7jiEvY1ZsMIi9:dDirIIE1kJPK/J0yDlFCSBpX7GH
Score

3^/10

execution
behavioral19 behavioral20
- Target
  
  FILES/UTILS/PEMANGLE/PEMANGLE.EXE
- Size
  
  8KB
- MD5
  
  7a58fc7a45d05c118e00651844447d3e
- SHA1
  
  9f4e7211afccbe3aa8e43350b31618e487aaba0f
- SHA256
  
  6a8142a59fcd72e0b7fb89d574cd4e0afe3c032c8d711a65246b692e69e789c5
- SHA512
  
  604e826e102f48ff249b730c1c97fbe7ec5b15c258d93d40b3656e7d76e7ccee8efc0b8e4a456494e4e6a7b46eab5f0424301bb75ad2e30185a4ffd94c24d7a3
- SSDEEP
  
  48:OEPLsGpHwe1C1Xi7EXr9ZF5KQFoQjB4jaWU:nP1HLAFoQFoE/J
Score

1^/10
behavioral21 behavioral22
- Target
  
  FILES/UTILS/PESHRINK/PESHRINK.EXE
- Size
  
  4KB
- MD5
  
  a287bee7271c68c6a6e81b5214454e29
- SHA1
  
  bf98f87eda728dade68f88d145a481d32c3d4505
- SHA256
  
  de213efba8d112ba9d089e51be1c2e8bd262539ca3ed1f67703c239c7f8b37c0
- SHA512
  
  beb6edda869b2640edc9a126b9b5c1bd761c356b9626faf37aca43ffa9e324470ffe711e5fd0b7dd1ccd31354c90534e5cd53ccdf65ddd32aefa5c32d4649fcc
Score

1^/10
behavioral23 behavioral24
- Target
  
  FILES/UTILS/PESPILL/PESPILL.EXE
- Size
  
  16KB
- MD5
  
  9f03cda1e44abbd5e7f21fe7ff1f7873
- SHA1
  
  a1a26fb9791450dfe9a465a4a4307a86bbf00cdc
- SHA256
  
  e328ca2dd68c3cdfe6649e98fdf3d03357e160bb17abb04438f3a013d13570e9
- SHA512
  
  c86fe52e8e460b1d096d04792ec0162bf57d269ee75bbf75b0f7e23e8ff09181abaca4db8ebb151bf28565fe46566407d2866e82964ff4c75a5cbc67929a3d48
- SSDEEP
  
  192:noCXWybRBz/TR+6MXFCnbMwKOMdIDo8PjY0l2tX:oCGeDz7RfMM4aY0l2tX
Score

1^/10
behavioral25 behavioral26
- Target
  
  FILES/UTILS/PEWRITE/PEWRITE.EXE
- Size
  
  4KB
- MD5
  
  6e8270c286fdb0d27dac553592feaca4
- SHA1
  
  0eb834d83b0fc89d2d940a1b78bceb1974ad0003
- SHA256
  
  80ad9d998bd5b452a9a36652e9389b95d2600e9f03f0447b03310e0a93b975d1
- SHA512
  
  8031acac97a29f8e4d6269b3e7eb73c002c1ca3ada75b2a3235aea0b4e2316980f0c93bad573a7b47d586ae2f89e9089c9191bacadc1af96a7e4dbb59ad6eb51
Score

1^/10
behavioral27 behavioral28
- Target
  
  VXTASY#1.EXE
- Size
  
  25KB
- MD5
  
  d9e8a8b59cce14703c0f6f1541a149a8
- SHA1
  
  32b7ae492b438f143f5f2d9bc8ffd22690565791
- SHA256
  
  e6a4268bf794b859e43a6c70db8398731b413d9d93413e4716551e15feb646cc
- SHA512
  
  1eceb2b4ea6ce1b3e81c9cb0d0d0614849c15d8181bf9c98b5395b61a7ed319f6d5a755d5130de9d21fbcd78c483cf8e5d76a8a9d049e76f79b15b14bb91f48c
- SSDEEP
  
  384:4PKtvsJdq64I2+qKfwDeFhrtLYpSsPo3sKa3rb/pt7KDDDw4JCAs3znStjUmmeQj:MfsVjhxDCA6u3vAezogbeM
Score

1^/10
behavioral29 behavioral30

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30