Overview

overview

7

Static

static

3

imgdksetup.exe

windows7-x64

7

imgdksetup.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

MSINET.dll

windows7-x64

1

MSINET.dll

windows10-2004-x64

1

bkDLControl.dll

windows7-x64

1

bkDLControl.dll

windows10-2004-x64

1

getradio.exe

windows7-x64

1

getradio.exe

windows10-2004-x64

1

sethui.exe

windows7-x64

1

sethui.exe

windows10-2004-x64

1

softup.exe

windows7-x64

1

softup.exe

windows10-2004-x64

1

start.exe

windows7-x64

1

start.exe

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

yfDNetMenu.dll

windows7-x64

1

yfDNetMenu.dll

windows10-2004-x64

1

�...��.exe

windows7-x64

1

�...��.exe

windows10-2004-x64

1

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6286c2b0bcdd90a236af156753d13daf_JaffaCakes118

  • Size

    534KB

  • Sample

    240722-kgvvnsxgpa

  • MD5

    6286c2b0bcdd90a236af156753d13daf

  • SHA1

    2dd8bbc8a0ccab96704e1c4a528fa4ad73fe8680

  • SHA256

    d836b626e70c6e8dbe4a2f0d2e0d410cf84b343473743cc27e174220dfb9d633

  • SHA512

    f7fb7a110a8a317e884ca3aa78d805b243bde632097cd62986097484cbc27f181b8a2765819710efa9ff837bc80834ff7972bf7ccf4ba4af69ebfaa002789250

  • SSDEEP

    12288:ZlMYqf1MAWzfkVqCS10h99YLxlzFwF4jUV6o4CZXyBF3sq:fMYqf6Tz90hiZ6unBF3N

Score
7/10

Malware Config

Targets

    • Target

      imgdksetup.exe

    • Size

      613KB

    • MD5

      d5d66d8ab6139f16f7c99081d806c308

    • SHA1

      cd6d8e44c71a28540adda464900e3c17211301fb

    • SHA256

      b6ca358c614c15cbde926a128efd59b9af3b05dcf40330d5acf68d06de7c8ffa

    • SHA512

      9d862cdb377962a05ff988fe2538e4b140b11a65d4cca2dc456c3775698e77e008a6af81505652a83dfda940dd25acdd0d87a9bb49d931a24c49d010a0e7532c

    • SSDEEP

      12288:cf5szE8jO36RhiQ70UlAZhn5M/8INqubvQtk28eRmUZsta0K:AszE8jPigWOtvQtk28eRm3tHK

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      107737e3282fefd85684f2fa3df6d1c3

    • SHA1

      3befbcae116a644ae28cebdc1d7dfe6be5c8ca5f

    • SHA256

      21042be362d4073053bffcc90511b3ecf77902243525b56bb159581b5ece43a0

    • SHA512

      439ac2f3066902e08d63dc3061f55063089857e765feb29fe47ba5819a9bebdff3fe2fe55fc8bfcfddb729d340f006ee95b5aa4422d712f9dcc07cc02ec410b4

    • SSDEEP

      192:FTmFxiXTQdQbg9FkGuz9lBDpO5DwbgUojcA96lK72dwF7dBG0N1:FTmriEdYQFkGUlI6vojj6l+BGE

    Score
    3/10
    behavioral3behavioral4

    • Target

      MSINET.OCX

    • Size

      129KB

    • MD5

      90a39346e9b67f132ef133725c487ff6

    • SHA1

      9cd22933f628465c863bed7895d99395acaa5d2a

    • SHA256

      e55627932120be87c7950383a75a5712b0ff2c00b8d18169195ad35bc2502fc2

    • SHA512

      0337817b9194a10b946d7381a84a2aeefd21445986afef1b9ae5a52921e598cdb0d1a576bdf8391f1ebf8be74950883a6f50ad1f61ff08678782c6b05a18adbf

    • SSDEEP

      3072:R5JTZQu4epojdkYv55RCezn/T81B+ySRdL:RLTbP85RCezbwm

    Score
    1/10
    behavioral5behavioral6

    • Target

      bkDLControl.ocx

    • Size

      60KB

    • MD5

      0ccc482169812c47eaeb832b49897f63

    • SHA1

      476532e30f90a44d5d5c2041d21ba6bedd20e81a

    • SHA256

      6db5a65668af4fdf4cb01566e414a64bb22bfc654245b16b08888213d18b468f

    • SHA512

      ed5e495d03b4fc5077dba81033d4a41bbdfa02d3c05b3028aebe7ed8cf0d5e5ac215cd5b9b2dfa57c2b199a2f1f5e63214eafedf6b192fd2ddb6ea93777bf3d8

    • SSDEEP

      768:7hBNm4PAPTGy9xwkJiX+04jVpWIpHhESXou/majRau8uEPAAN:tVzX+04jhESbjRa3

    Score
    1/10
    behavioral7behavioral8

    • Target

      getradio.exe

    • Size

      196KB

    • MD5

      89037b1ad41cc1f1685560aaed862cf3

    • SHA1

      5907e96008071028129a763b22180cbf8aec9a7c

    • SHA256

      7be37215bc889925d9e0ec94b985a78a766eecffbc5bb2ec8294fc5ef1abba7a

    • SHA512

      e3fccbffc33f53b51b09a4667d7f9a3c1e5549c907e326ad3c6a53556c7341d7eebdf5f4c4c4bf0dd006d4b240d75627d39ea7191ccc80668e9297c9823bbb5d

    • SSDEEP

      3072:jhbUwx1ROANm4LbPhHjJ5spl3Hmwx1ROANm4LbPhH3b/:jhbZLtHjJSHHnLtH3b/

    Score
    1/10
    behavioral10behavioral9

    • Target

      sethui.exe

    • Size

      188KB

    • MD5

      ebc64f0ccfe7ddb6e6b761cbb9a00a19

    • SHA1

      372f20df226b316432f35f0030dad0a13f635dbe

    • SHA256

      c06e637f8e3a0edee86ca1bc56009fa79f6bbb99768f24fff2fcdf171e968c6c

    • SHA512

      f63b1070ef8618b11b465296a36f5462bc1f8a8fbddec9f18ec883a0bbe7c7a3b31aef0c702484a8caeecc2e25927e588e0f05b2a5db72a0d55cd1f38d67ee3a

    • SSDEEP

      3072:k3g/JPizedq0Ajp3CPbcQPCspM/JPizedq0AZw:k3g/J6jkPq/J6Zw

    Score
    1/10
    behavioral11behavioral12

    • Target

      softup.exe

    • Size

      36KB

    • MD5

      f8fe5994a901993b9915cfd19eff174f

    • SHA1

      2ae87c3d055c5ada8dcb8d13a2f915c654490c39

    • SHA256

      393b20e6531555e8f4f7e32a8e770c44708ab1472478f5edae1efa6685413457

    • SHA512

      949d3142d4032d1ba00e3334e2321a37e30a350ec5b4c8daffcb112f8bc01f25e525bca33927ba4ed13bcaa4d84ce6ef3f23dbaed576eb2221019a81be6dd5d0

    • SSDEEP

      384:zjj8fL5eZzd1nPSVVpD9uNMZDOraFwYwswMDZBLW77BdbKLTGzaOaz+ktzIDsSMj:zP8f9Qq7mapGqXGLMA8f

    Score
    1/10
    behavioral13behavioral14

    • Target

      start.exe

    • Size

      188KB

    • MD5

      a04a2c885103d33d57750fdaa4ceb27a

    • SHA1

      a046391b80e86fd7beef2e500abeaf72f85ca1b3

    • SHA256

      eb1da9e6ac43e2d938143e0775f799a218db5f3818dec7e02cce551cc8b67147

    • SHA512

      25efd66d996c9a64e6f14d61d2d5e4093c87f97fc42dcd60ee69c4a29b7f6ee35460cf0035e9bdf046dc691453cee88e205d6f1879c22d9697c6f7738ac3d0d0

    • SSDEEP

      3072:fP3g/JPizedq0Ajp3Ch5CspM/JPizedq0AZw:X3g/J6jGq/J6Zw

    Score
    1/10
    behavioral15behavioral16

    • Target

      uninst.exe

    • Size

      121KB

    • MD5

      df23c033803085591282ccede2a629f9

    • SHA1

      3ba7f4607d03f311b4fb43991165b1639f39ff10

    • SHA256

      84b256dd6c48171e5f5b0ade266d9114c69ad820503589450a8131efd609c492

    • SHA512

      7913cbf7f58a502b745c5365c88cec3073df00665c66db94885e9f8dbb8cf8dd48d07e0cf8d8bf42cbb0bbc92ce5742e30a42b1e87a12a18d900091f0c861c50

    • SSDEEP

      3072:cppv5CNEhf8FH4KJJ6xy/JPizedq0ANdpeAy+:cXv5sEN8f0y/J6DBp

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral17behavioral18

    • Target

      yfDNetMenu.ocx

    • Size

      272KB

    • MD5

      791323960b5d784c75725afc7db2c2a0

    • SHA1

      b7458e04348d783bd9a8b538c9c7cfc53cab55d9

    • SHA256

      6f709c0ee6cca66193805eea8dcb9552124f1b25d99fb9c18833b1432a025b72

    • SHA512

      6f2d9d5d80a933676a621c1e60e9ba58e1a43439a6135936afe4487ea0f82f108c629898f45b0da980541efe80989664b981189353969a4c9bcc69d14a02f944

    • SSDEEP

      3072:Eg45tAqX+3QhpviHm2hhooM0Cs+xnUFQO/6mhg/5XfoT/Lbn8aCFm:Eg49+38xiG2hho0CHO/6mhOVfobLnC8

    Score
    1/10
    behavioral19behavioral20

    • Target

      ֽԶ.exe

    • Size

      964KB

    • MD5

      98e21af34c9d376647e2c71c7cf2dd29

    • SHA1

      805f668eadd94c9b7f9b7c4d9485df7670a1fbc6

    • SHA256

      26ee0517971745b62f1f4a828e111f4222befd15f9aeb5faad4d65671f1e7acc

    • SHA512

      10d0597dde94bf12265c6a39728fd2382566b5d1e5bff7e23adbe2dd6485351833dd68b25220f6cc64513b934aecb645f10ae34a8bd3d8717a545f0af92a629d

    • SSDEEP

      12288:4AUQY70B3g8j3m5LZUBO35sTtp6M0TPdf3g8j03Xu8ygSPxptaq8Zw:oQY70O8j3mE/6M0TPS8jwwcq8

    Score
    1/10
    behavioral21behavioral22

    • Target

      新云软件.url

    • Size

      133B

    • MD5

      4f0017b3b346bd0626f0c3b915e6e734

    • SHA1

      823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92

    • SHA256

      df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678

    • SHA512

      0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6

    Score
    1/10
    behavioral23behavioral24

MITRE ATT&CK Enterprise v15

Tasks