Overview

overview

7

Static

static

3

5b7340c0b9...18.exe

windows7-x64

7

5b7340c0b9...18.exe

windows10-2004-x64

7

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$SMPROGRAM...��.lnk

windows7-x64

3

$SMPROGRAM...��.lnk

windows10-2004-x64

3

Help_ch.chm

windows7-x64

1

Help_ch.chm

windows10-2004-x64

1

ZoGo.exe

windows7-x64

1

ZoGo.exe

windows10-2004-x64

3

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

�...��.lnk

windows7-x64

3

�...��.lnk

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b7340c0b94f912c17ce574232608495_JaffaCakes118

  • Size

    5.3MB

  • Sample

    240719-ly6tyaycre

  • MD5

    5b7340c0b94f912c17ce574232608495

  • SHA1

    df4b6ebb0c4ec946a454af9edcb3a912f1b6d231

  • SHA256

    468dc2e413944b1fd4c998e54eddcc769abe3a130c05498915632e851fd240e2

  • SHA512

    03d9aabfc802992b861bfb9fe202a6801dcae1327b7732d91259cb1b8f12d19ce72223c43a6fab393b9350e38af8465b29adb54f8cb1cb66c0684abbdad379c2

  • SSDEEP

    98304:bUnipKZ9ni7huHF1c3J9MjeUWYNwokio21BSpSK1Q3y0vL7ETMK04c5:bUnipgR0huEweUJpo2Gv0z7Eop

Score
7/10

Malware Config

Targets

    • Target

      5b7340c0b94f912c17ce574232608495_JaffaCakes118

    • Size

      5.3MB

    • MD5

      5b7340c0b94f912c17ce574232608495

    • SHA1

      df4b6ebb0c4ec946a454af9edcb3a912f1b6d231

    • SHA256

      468dc2e413944b1fd4c998e54eddcc769abe3a130c05498915632e851fd240e2

    • SHA512

      03d9aabfc802992b861bfb9fe202a6801dcae1327b7732d91259cb1b8f12d19ce72223c43a6fab393b9350e38af8465b29adb54f8cb1cb66c0684abbdad379c2

    • SSDEEP

      98304:bUnipKZ9ni7huHF1c3J9MjeUWYNwokio21BSpSK1Q3y0vL7ETMK04c5:bUnipgR0huEweUJpo2Gv0z7Eop

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/BrandingURL.dll

    • Size

      4KB

    • MD5

      71c46b663baa92ad941388d082af97e7

    • SHA1

      5a9fcce065366a526d75cc5ded9aade7cadd6421

    • SHA256

      bb2b9c272b8b66bc1b414675c2acba7afad03fff66a63babee3ee57ed163d19e

    • SHA512

      5965bd3f5369b9a1ed641c479f7b8a14af27700d0c27d482aa8eb62acc42f7b702b5947d82f9791b29bcba4d46e1409244f0a8ddce4ec75022b5e27f6d671bce

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    behavioral5behavioral6

    • Target

      $SMPROGRAMS/Χ/.lnk

    • Size

      344B

    • MD5

      4c2a7c403e0c28333f645a363f606da8

    • SHA1

      fe61f5e318e323fab9af329245e4bba6128aa5c6

    • SHA256

      c755fd0b870f2367e644f899afd720c4aee7b019b5584a14421c407e7910de14

    • SHA512

      8516481f41413d3ec958a07af39aad889840f964d7cb1f8027142f9c65abea9821e3bf2fcfdd9fb2b1c676031d3096d478bf06586deaaac05a7d451b0c2146e5

    Score
    3/10
    behavioral7behavioral8

    • Target

      Help_ch.chm

    • Size

      3.2MB

    • MD5

      07193f62d12a310e059eda7c2398ef7c

    • SHA1

      4b3546c24be0bf00f620bb85e7b7f1fa36708d56

    • SHA256

      1587d90779480e0569de091991a9b7a4eb6596d5a11707b1fc76677b93474b4a

    • SHA512

      55cd4070610b38c0cb8742e9774ca83496464066f9ee22834bcfab4f776175a5adb8b3f8f3ff8689ef70c1d87ca1afa82a93e97d64f60b3c481778dea9a679a8

    • SSDEEP

      98304:O4Pj7i6e7qbbLPO2yNLKETTaJQdYbYXldLs:FviVGG24RaPEXldLs

    Score
    1/10
    behavioral10behavioral9

    • Target

      ZoGo.exe

    • Size

      2.2MB

    • MD5

      3670bc8a550aff07297fe23c7a1d76f1

    • SHA1

      e5827d9d0bb7459678baf8175aca3823b5a148c0

    • SHA256

      92973806a3c49ee721ae08467576bcdbd214bbac74f4275f9312047446cfd6e6

    • SHA512

      3f710b845ea4d31f761ced86ce9eafc88d4bbfd3fab3ed469317acfea1655af00ff67d50c62dc383adde309429d9b2bbd0a52f1658eab15161b5e5f914bf55a7

    • SSDEEP

      49152:ZUni3rhKws/HRPdUrdN+joxkxk1a0GzhHWAZ:ZUnibXmU2NHN

    Score
    3/10
    behavioral11behavioral12

    • Target

      uninst.exe

    • Size

      341KB

    • MD5

      83ecebaddd1d88741e5bcad69b7ad8ee

    • SHA1

      68dd50d97c528792d9f3508ce4e1517127f3c7cd

    • SHA256

      a2cba20096928420abcffcc231449c2d3e385fee42e9f4d6d09e6278ecfff310

    • SHA512

      9ee90ae6e667e0b2f6c289b2e8dfcc553d52572623eb628c7f983640e49052dd01c109ca8fbf39b2be32bfac2de9ab838e6e43144cd149d904a25c053f6497b8

    • SSDEEP

      3072:8stajHKBvYXJLsqUjzNIKTXkjWJJQHcvyDLMvQJwEHfJ4CCrDhsamcf3X:8Tq+5SSYTIw0fJSXhs9cfX

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral13behavioral14

    • Target

      .lnk

    • Size

      344B

    • MD5

      4c2a7c403e0c28333f645a363f606da8

    • SHA1

      fe61f5e318e323fab9af329245e4bba6128aa5c6

    • SHA256

      c755fd0b870f2367e644f899afd720c4aee7b019b5584a14421c407e7910de14

    • SHA512

      8516481f41413d3ec958a07af39aad889840f964d7cb1f8027142f9c65abea9821e3bf2fcfdd9fb2b1c676031d3096d478bf06586deaaac05a7d451b0c2146e5

    Score
    3/10
    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks