b5a7df1bce14af47db87f45e2ee5c2f53408d181da89d3490298e49714902a03

Sharing

Copy URL

Twitter E-mail

General

Target

5b3e5a4a762bd6146956662fcccff514_JaffaCakes118
Size

15.3MB
Sample

240719-ks7cvawbpc
MD5

5b3e5a4a762bd6146956662fcccff514
SHA1

7997623f1389c51f1ceee1d770d0798dbe68b4a1
SHA256

b5a7df1bce14af47db87f45e2ee5c2f53408d181da89d3490298e49714902a03
SHA512

2ba9a2e77a02826c2596b44c6592d1b2021acecdcca279a7eed789c85025830449e17fc96bb37a00491d868aeef3506fdedb3765f3446122ddd4761eb1945a97
SSDEEP

393216:hsoBVadFvFHs3y27WLCGcfREM6i8PLOrznGez:BgdFvW3y2kCG+njTz

Score

7^/10

Malware Config

Targets

- Target
  
  5b3e5a4a762bd6146956662fcccff514_JaffaCakes118
- Size
  
  15.3MB
- MD5
  
  5b3e5a4a762bd6146956662fcccff514
- SHA1
  
  7997623f1389c51f1ceee1d770d0798dbe68b4a1
- SHA256
  
  b5a7df1bce14af47db87f45e2ee5c2f53408d181da89d3490298e49714902a03
- SHA512
  
  2ba9a2e77a02826c2596b44c6592d1b2021acecdcca279a7eed789c85025830449e17fc96bb37a00491d868aeef3506fdedb3765f3446122ddd4761eb1945a97
- SSDEEP
  
  393216:hsoBVadFvFHs3y27WLCGcfREM6i8PLOrznGez:BgdFvW3y2kCG+njTz
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/LangDLL.dll
- Size
  
  5KB
- MD5
  
  9384f4007c492d4fa040924f31c00166
- SHA1
  
  aba37faef30d7c445584c688a0b5638f5db31c7b
- SHA256
  
  60a964095af1be79f6a99b22212fefe2d16f5a0afd7e707d14394e4143e3f4f5
- SHA512
  
  68f158887e24302673227adffc688fd3edabf097d7f5410f983e06c6b9c7344ca1d8a45c7fa05553adcc5987993df3a298763477168d4842e554c4eb93b9aaaf
- SSDEEP
  
  48:iV6pAvmNC6iMPUptxEZK65x/AmvycNSmwVsOYJyvrpXptp/JvR0Jlof5d2:2811GED5ZTvycNSmwVsTJuftpZR0Sd2
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/LogEx.dll
- Size
  
  44KB
- MD5
  
  b81d861d63b6cfcd4c973976d52b46c9
- SHA1
  
  4ba82a45fcd6e1f38ff4f0d72cc776c7fb18b52f
- SHA256
  
  0bc75e5a0b96628a27b3de56711ac4230897f84e09ab20a21bc64f5087d9b09c
- SHA512
  
  5b0010b76160ec7a3e11466bafe8bdbff3e5375d60efe0d46e5e0dcee96f6ac99ee7075d94f74161f19f721c10fb7749e8d43d7fcb58cc5ad2e8db353f4d2877
- SSDEEP
  
  768:tmhDUB3KUuTLkeg0KAxNwz+SY9bWZDom8:YDOLuTLq0KN+lhMoL
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/MReport.dll
- Size
  
  89KB
- MD5
  
  22c91de8e4517c4e8af2cf3ad50a7464
- SHA1
  
  e045d5158e108dac4de4365190dbd17ce5b65064
- SHA256
  
  5d06bca579f9a7c37d8e319d77db3781f081e11d977ba4689b2765d8ec631a8a
- SHA512
  
  8e465d74e95dd4fea905bb622a30a67608bbd0328234b9d03829c043463396aa0c53222e8fc5983d7824590345c377dc766e1dbd10a8a5cb848f396781f89d46
- SSDEEP
  
  1536:5tJ+f0gtQ9axFG04j/2XrRBvjD2svI1QUwn4Pk8IqGCAHhRER56mNp:56FG0FzvfvmC43GCAHhOR56A
Score

3^/10
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral10 behavioral9
- Target
  
  $TEMP/IcqInstallerData/Setup.exe
- Size
  
  4.3MB
- MD5
  
  81999315f4fb6e6944ecd0caed8df5e0
- SHA1
  
  461b7aeed4f52c1af768bfe8255bc55dc3b92f9a
- SHA256
  
  33cfcc4b00a9b0177a0730ab2066479c73b2982fb2eb586d4566869ef16f3488
- SHA512
  
  ada361833fbe2a1ed5ead26656b3a12fcc9277428e3cdfdbf03520f1c135d22d95fac3c3d511962f9f471b7eb8bd4e47ac3b0a80ce19d8467f265f132ad6b3cf
- SSDEEP
  
  98304:niJe/WQyKA108QS8hMc2OWnel4ryIkeGOilaIhYLyBKeTwN:ni7Su4bh8veAFEQSBzTwN
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  Flash10c.ocx
- Size
  
  3.8MB
- MD5
  
  43c6acdfb92a18c3e516e6bd5f1acd51
- SHA1
  
  da52ab3e629720adf6c6a3a8f4d47d777a2425a7
- SHA256
  
  e87aec8f4fd23c6e2be44b504804e011154b80dcde5cbf9888d4660b0436a889
- SHA512
  
  58b86d2609b81fee47bfe956b1e62d9a5b959736af41a8ad568121d9b60926fc142c79190a8e234fa3c8724e61e04147d6b9ca4fdee57ef6f4579f15b2951722
- SSDEEP
  
  98304:IyIUmsPUeeczoxUGm+cKAeIpFkKTpTmaFbh4kF:tIUPUpUGm+cJmGbhT
Score

1^/10
behavioral13 behavioral14
- Target
  
  FlashPlayerControl.dll
- Size
  
  317KB
- MD5
  
  bbb06303cdc44cb30a4aa6f75cdbb3c4
- SHA1
  
  2e04e0748bcb3879819f7da7e9879a3762e768f8
- SHA256
  
  c294a60155614ad81bf749f3be8734a66ed4286aaca943f5c490269bbca066b9
- SHA512
  
  797307e5bec363621a9ebe750c846fca145ae4b297e0a320fbc2911bf0087a570777c491d3fc6e223ffe711145c6cddaa52459401216109a55b85e0e1a7e6497
- SSDEEP
  
  6144:Zkc4lY1zJ7nnJ9W5G6ZzRUM+lgG8q4nu7nIH+z:+HlMzJnW5G6dRUM+l1pou7n
Score

1^/10
behavioral15 behavioral16
- Target
  
  ICQ.exe
- Size
  
  124KB
- MD5
  
  c232a615d3deb776e7cf211a63a74ca4
- SHA1
  
  285b0d5f95ad5b4a981ae1d726ed964c4658dffc
- SHA256
  
  7488883beec32874a13a34d64dad6b192fca587335976defd7da9fd985db3a32
- SHA512
  
  642ec5cd8b01071f4a96e8dc8e81dcd874559157bb7e81a9fc77c8538865aaefd027cfb74173eca058af77026d674f23d451519932bbeeb8816db59a4dbd102b
- SSDEEP
  
  3072:z3bg6JlqZyb+l1y6O/ouglSCPTU15Y2Gh3hCP:z3b7e4Cl1y6O/ouu6GV4
Score

3^/10
behavioral17 behavioral18
- Target
  
  IcqUpdater.exe
- Size
  
  78KB
- MD5
  
  45a7dc82d6914024e6bc0b9f35a7ff47
- SHA1
  
  91ef4ce6bf687a56fd01fff34fcc0a2c94e0574c
- SHA256
  
  a27dc336190955445785b1611a20b42492bef29573e67b36a15df3917f967337
- SHA512
  
  0e88d78e683fe1b96aad44d7c3029ed54a1866b8c727cbfb2e88e354894847f378b8c297b4d7f7b8f71a1fadc8852a1ce7c373e8065f6f15dd33d8e046a70da4
- SSDEEP
  
  1536:8tqy/tCwz6WKHRwmUIoY7XPTKFxgeoz8VVET68:XYtj0bmF2eoz8bETl
Score

3^/10
behavioral19 behavioral20
- Target
  
  MBContainer.dll
- Size
  
  204KB
- MD5
  
  025dad5638a76d852cf500b24656af2d
- SHA1
  
  4ff70d318d09d146b2ecca119a0ce755fe86827a
- SHA256
  
  da1571304d19788efad715c40820b0eb22de4076a0357f81cf17f3e596596c75
- SHA512
  
  e07ba5120d3e248b0861e9d1be3545a5a6499bb16f5eecf15b98c03da180381bca2718e73bb2769d807a07a6ed2c7b85012526665dd6b33384f50a121c61431e
- SSDEEP
  
  6144:jr9I1KoNMtEtCaQ8kUTMKkcqwqxg0O1+O:v9oKoCOtpfkSqxg
Score

1^/10
behavioral21 behavioral22
- Target
  
  MCompressLib.dll
- Size
  
  146KB
- MD5
  
  c6f5dd9de2daec3a069b07936636ca5b
- SHA1
  
  33ee125f686c2a8d346121d761954b79adf31896
- SHA256
  
  88d288cc77434a7466f97fd70bc3f92507ded32edfa51355bd50d2609da8ea53
- SHA512
  
  d706ace66a7429f7451ea6b73f1d33a121b6429f7e9f68612446b431112aa77f1fba92ae2ff967dd40656d798e29ea05b0267e6f00c11e2dfd0ef3decba1a770
- SSDEEP
  
  1536:FTC0QnuAXNpZQ2dwoBJ2JI2EXdTqYmoBLbBnmTOtBBaO:FTCbH9cBI/tLmoBLtneOtBBaO
Score

3^/10
behavioral23 behavioral24
- Target
  
  MCore.dll
- Size
  
  1.4MB
- MD5
  
  dd9b2f849bc8210dfb9bed67aa433edd
- SHA1
  
  eda719f5411636125c4796809862ee89e0aace11
- SHA256
  
  be85fe280236828186a7f3dbe4f8cdd1bbd8e3fa4c78f3dbea01fe8c14660b33
- SHA512
  
  70cc2da89a86eb8287f407bfd689df450b3478881519a17e04d016be197588b1c43fabd0de45f48d7f0a8dca87cc90a4930771a32d8054ff950c06e0a112fa05
- SSDEEP
  
  24576:4SYQgoGW6aW7/7Whc/9feo0YCwPqoic3you:RoLW6aW7P/9Go7Csnvyou
Score

1^/10
behavioral25 behavioral26
- Target
  
  MCoreLib.dll
- Size
  
  105KB
- MD5
  
  4bfe78733c40e09cc443262127c4ff6b
- SHA1
  
  2a872f216ca9f370d480894dadc7c99d555ab612
- SHA256
  
  3b42409060e78d35b0a4f832001e292483c5e8b28be58c7641682757b0af28d0
- SHA512
  
  152779fd1002a5de6970af21f27f589031fe7f3bfc4d5d295c4bbb5dd7526159e01ca67717afaf5a80af4142082c159d8cb4ad1d37e6f0b447b4635de5956f0f
- SSDEEP
  
  3072:HmDtTc70hIJAqgCLlgdkEZhxBOt/Dl1cwHjCp++:GpkYAgCLlkki7BOt/Dl1cwHjCp+
Score

3^/10
behavioral27 behavioral28
- Target
  
  MDb.dll
- Size
  
  745KB
- MD5
  
  12f2ce0e044b4012354ec2915c129099
- SHA1
  
  fc3ffc211e9463b2cb43867acae74681c89b0ed6
- SHA256
  
  d6a3bc7caa8b4e17ac36f70d502405d8c0455104f16737dbfc362c07fca2a54a
- SHA512
  
  2bb511bd6d8929ddf4a24de9c8b3c850e8fd27075e25dee15da2df86f87beee8479d76c36f4bb559fd7848065261bbc915024b7ee0b579211e0e7a31fbaffc2c
- SSDEEP
  
  12288:w/gzYQRSv2NYn1Zuo8oNLF18p6dDHyNi3ZMM/fVbQ7RdwQZ:wIM3vl1ko8iK6pHt/fVbQ
Score

1^/10
behavioral29 behavioral30
- Target
  
  MFacebook.dll
- Size
  
  136KB
- MD5
  
  24ceac2594b57aa8ada6374acdcc5b15
- SHA1
  
  02de9ef1f751f0c8c117b3265733e77873ce4486
- SHA256
  
  0c87a2eb0a1ec0c8703a6fceff1b6fbf72b0a97d5f7ce3d6341aef5370143723
- SHA512
  
  3891714b5af53fc999915ca24563e667d30ac2e5f90c6b607ad0bd10b4826e2b647e0fd4877c5df8eba92b130780fdd1639725f087c9a6e40a6f58b1ce507706
- SSDEEP
  
  3072:StRZ4gO7K3Bzs4utES7EC4HO1/MU0dsOOZDLD:8R1OaVuuS7nmO1UU0sOu
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Executes dropped EXE

Loads dropped DLL

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32