990c72378a5ad30adc76cf8142997bcae5b7c698ba1cb80ac73f9a54bce593db

Sharing

Copy URL

Twitter E-mail

General

Target

470b2615d4ce0e1c140f99fbb8137a9b_JaffaCakes118
Size

11.8MB
Sample

240714-2cqtlaxemg
MD5

470b2615d4ce0e1c140f99fbb8137a9b
SHA1

ad096332ed88494f627d794615456ac877f38e17
SHA256

990c72378a5ad30adc76cf8142997bcae5b7c698ba1cb80ac73f9a54bce593db
SHA512

2da929f4f7dabc0033f729436dbb5b64b454c2a03ecb967615d598105daef3cdcd5d61d948e0c2f295b33114bdc1c6fcd98ca86aed4a7886d75ab0b908af748b
SSDEEP

196608:mT5BDOuU2NS+bLK/cEU/H9Mdvx3pm1h7amsKSLETG6qbmklM+++NxLsBiTt9oZJy:onO2NS+bLRE294kK4fXkWx4YlXT2

Score

3^/10

Malware Config

Targets

- Target
  
  res/mods/xfw_packages/xfw_actionscript/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10
behavioral1 behavioral2
- Target
  
  res/mods/xfw_packages/xfw_actionscript/__init__.pyc
- Size
  
  237B
- MD5
  
  c8a3c292dabe2b833f30c04b920b79e0
- SHA1
  
  51e930fc41d5451129b0a55f3a0b99ac5889a156
- SHA256
  
  58c8d63084c25f7cfc528cbedbaa3d8a7e9f43ea8953e0603462825a7f854897
- SHA512
  
  61f599d880527bc2d7de2349da6068758fa4f0b9d0fea2b645d37755d8b41fe2fcbb2caeff5751dd7576aa7dc20fd7c63a5bfc8bf8051014f6369b9680757c1c
Score

3^/10
behavioral3 behavioral4
- Target
  
  res/mods/xfw_packages/xfw_actionscript/python/__init__.pyc
- Size
  
  974B
- MD5
  
  db61ec3eeabefe2d09e9051ba9caa58e
- SHA1
  
  8ee6d631635e0a65395c0aa5103867a36567ee5c
- SHA256
  
  feffe30bba11daf8918e7cbfa635ef82dd3a9e8cfec50ccf9b00acf90d6014d9
- SHA512
  
  97fa8990b197087e6b2d418c18f51a26e793bd442ba15c0afbea3703a4bd86c9d03d1e2de0e22993ecb339ba8a50761bb4fca8437c9e88ef2d2b54d55b96b3f2
Score

3^/10
behavioral5 behavioral6
- Target
  
  res/mods/xfw_packages/xfw_actionscript/python/swf.pyc
- Size
  
  4KB
- MD5
  
  b720200092a173f0e0b103f369c4f3ba
- SHA1
  
  30b5dcd7435eae9da110647f67070fa1ce60166b
- SHA256
  
  36075efbf0420bd9fb81896431e24696000624798e3d54836474a8e084c8eb05
- SHA512
  
  a5ccdd89f9f1840815054185c61172440d4c27d80f9ff43a273f4104fdd3d083d1a24c3a5ab416fe2fd787f2e80635d55ad57e3b0c32e4d431e9ddb6137a4ffc
- SSDEEP
  
  96:p02F1KR3IUh6664YqIFjd5kZgH6E8yqM30RX+x:/1KdIvZTFx5+E7EF+x
Score

3^/10
behavioral7 behavioral8
- Target
  
  res/mods/xfw_packages/xfw_actionscript/python/swfloadedinfo.pyc
- Size
  
  2KB
- MD5
  
  899fb79067de82b753104fd4c41e106c
- SHA1
  
  ec1eb3fdfa5ced21aca50dc2231ff3fc5fdd220c
- SHA256
  
  2940afd9e2f7c9672ff3d03cc39038d1438356dddaa4c2884f5e87f2f3bc7acc
- SHA512
  
  e5a6b51a14259d0b710f15412d81cecd33e40601ed2aa1e90e808c429fb0fa8436e6e942aa6bd2ae82e77ab4327d3e3149648456a48462e7e410b0eb2fe2019b
Score

3^/10
behavioral10 behavioral9
- Target
  
  res/mods/xfw_packages/xfw_actionscript/python/xfwview.pyc
- Size
  
  7KB
- MD5
  
  866a6d2483eacf63aa19e9eb6188d9ee
- SHA1
  
  55734378005a61b6b6618540b07972f9d59a25b8
- SHA256
  
  7fc1ecf2e2d960f7a53e7e0a77678b10b5b3f4b30c90e6a470c793c77f2ae0bc
- SHA512
  
  9e7ed815cfaf0e7233c66c01c592ceb8216d960e99b2b4b66ca77b803cadbf6dab487e38ef727d069c9c412e300c3c7b7dfd5cae4f9d77ab0151c568a260ded9
- SSDEEP
  
  96:wzoyrHIjRSG4m+qnKJXItdRUVf9+T6SQBveeRs1FMfE08a+dr+YaLg8j:roHismLKXaCf9LS2rRoFU8aQ/aLg8j
Score

3^/10
behavioral11 behavioral12
- Target
  
  res/mods/xfw_packages/xfw_crashreport/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10
behavioral13 behavioral14
- Target
  
  res/mods/xfw_packages/xfw_crashreport/__init__.pyc
- Size
  
  235B
- MD5
  
  9dc43f67fd8363e03fe2f7c3b738ba9a
- SHA1
  
  3f834fc1c0ef5230ffcfff0d6782a2de68d77a4c
- SHA256
  
  842f65da3730cef55a299af001e4c44e2425772f369f93fce63771944f6844cc
- SHA512
  
  bd26eac38adffc183517ee67b299fbeb6507e15037f839ecb4cbdaa362e6e81ee6bbb9385f66b04fbc34b151f016ff8aed175a1b9afefa729fda52cc41dd99b1
Score

3^/10
behavioral15 behavioral16
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_32bit/crashpad_handler.exe
- Size
  
  509KB
- MD5
  
  5c4891f0a6336852dac53ec446e482ea
- SHA1
  
  8b93f405e5dfa513e0a814475e55ac1c28c42462
- SHA256
  
  c456b664e7cd9e6299440df014a35776fcf269a87d22a2377c891162bbe4e1ac
- SHA512
  
  374ea59b4d9f2928ee0292747717930461a78057a61f42515043441f966ca96ab8a9047d637719dffc552aa03f35c924307b066fc4e69d2d122dcab992c8eb51
- SSDEEP
  
  12288:lcCHo8lcDm7mAMmxOHsqbXmw9jWkF3iccdIpNYt3uUCVLgTf0MjTaPldoBuGTthy:lc2SyfesHuUCVLgTf0MjTaPldoBuGT3
Score

1^/10
behavioral17 behavioral18
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_32bit/sentry_crashpad.dll
- Size
  
  243KB
- MD5
  
  f2225f8361446559c702a17d3b2145eb
- SHA1
  
  1294c54a25338c9637721c932e44fa73686057c5
- SHA256
  
  1781d30d9efa52040f1bb7055a143f173726c385a37eb8e565f063fef890df8e
- SHA512
  
  b1cd6c63012762c44720fdbc680b2a5584d756158fe4168d95560d07b65a4d41f5fb198ca570331549d0a9ad5527a1b44e2b5dad295743b6e1170927b37b7d1e
- SSDEEP
  
  6144:luVvyJ9GIs6+iE7vEP+TSyqXBKpJLdOfSNjXavVU5F6WKZzkdlBhiORq/hxsM:luVvyJ9GJ6+iE7dTSZ888WO5shz2Bhix
Score

1^/10
behavioral19 behavioral20
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_32bit/xfw_crashreport.pyd
- Size
  
  61KB
- MD5
  
  7c52f06a7e58e8fdcf19e78bdf60f5bb
- SHA1
  
  edbc7a00e17f51f88e8ee98244495bb3b617e6b3
- SHA256
  
  b8fb349a04c290b00e3fd3a4ec0533d06de132852fc1058c0d22ec42015eeb5d
- SHA512
  
  72fd130b65b233c6291988d7b35d6145e7f40691cfff806e577dec74034f2225e5b2e77cd31b82a45d49fcc9e10da778aa40a009311189a0f9518d54bf8c42ac
- SSDEEP
  
  768:VDdIlThYtcKVQZuTBM+lTBdEj91oiujOyk:Vp4YW0Bvl16/o9OP
Score

1^/10
behavioral21 behavioral22
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_64bit/crashpad_handler.exe
- Size
  
  566KB
- MD5
  
  8c99281b109f777bd12d5226aae0f51b
- SHA1
  
  265a4f40db762ebae3c66328fc5a6111896ab955
- SHA256
  
  229ae9804d07d672c8bc82e8c03b3e2a3ae7a2aa2612ef4871c261e2e7ad4165
- SHA512
  
  69761dca7d84d9b7dc3bf3f8a989fd9b4b5c1f5654faec95b9033313cd56baa4bed4a303d209c9531a8727b099dbdd102581242c21cc40535f74a8ff15ed376a
- SSDEEP
  
  12288:0E1m10kiJv+gPovsc8c8gOs89KbgSWTNkO0GxcTquSda7sKTb6:51U0kbvsQ8gOs8MgSWTNkO0GxcTquSdn
Score

1^/10
behavioral23 behavioral24
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_64bit/sentry_crashpad.dll
- Size
  
  275KB
- MD5
  
  b2646bbc09bca3818eb9e6e662782ddb
- SHA1
  
  b2d91a82b6628e5428cfe79fe0e9b1a1140d776e
- SHA256
  
  8b321ef80bc5aaa15d2be322af942cdada5af4868e87e39809a088c04a67062b
- SHA512
  
  5e5ffbf18c430521823b2f5efbc64d2208ea6ed297cc5970bdbd0a19c6fd297a1a34cd9a15e3b1b1deedc15a0e1f31feeca5821fe502121cf993f3941bda0f4f
- SSDEEP
  
  3072:j3ObIe7oxSFaDfPVxztrdEDflo3G/5kPA++tSbDFGTGUD5OCXe8e1b7jhM8Im3:ibfKkajjzo+Wqt++GTlD5OX1jhM
Score

1^/10
behavioral25 behavioral26
- Target
  
  res/mods/xfw_packages/xfw_crashreport/native_64bit/xfw_crashreport.pyd
- Size
  
  78KB
- MD5
  
  7d4d8d860cc23a60afff63876a033816
- SHA1
  
  06f77e97f3b467d373398d68cacc041e041787b0
- SHA256
  
  d1e7fb25f186058d4f8e1dd51a35099244cacff5c6934de61f4e1cf9546bad6c
- SHA512
  
  6c19de0edff904c693ab0b5eeb651beaadfe86ff232a1915820c8aa14b19a6681ae5c410534855fdbc61d2a34bbf0c19fde84f148a4b61e6e880192451e169f6
- SSDEEP
  
  768:3IbhNiu9YHrLAcuP5Gcvw22eNDlNfU/QwKuPZkJypu:4n39KrEHP5S8fcoxgWA
Score

1^/10
behavioral27 behavioral28
- Target
  
  res/mods/xfw_packages/xfw_crashreport/python/__init__.pyc
- Size
  
  6KB
- MD5
  
  77eff115e682246dd5501f20b7ade1ca
- SHA1
  
  0dff58eb6eca4df5e74ef3934b5a756500746628
- SHA256
  
  757c85b2bf3b7c8645910bbffc7ef3f7943e159d1b862babc66a9ac25c93ad2c
- SHA512
  
  90da47fb075882379938aef3ade06feeec3aca81e940379e3d1e716f7a7eb5894fa435ac7757a96cbc108221b4e3f8a2ae7b1703b7313e2b110b2c35c9bf0c20
- SSDEEP
  
  96:gB+0HlnZpL1iYaLshD8gUt4JFrKEyNs+SgrdaiqbQih:gg0FDoskt4JFrKEyNKg4jH
Score

3^/10
behavioral29 behavioral30
- Target
  
  res/mods/xfw_packages/xfw_filewatcher/__init__.py
- Size
  
  1B
- MD5
  
  68b329da9893e34099c7d8ad5cb9c940
- SHA1
  
  adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
- SHA256
  
  01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
- SHA512
  
  be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32