efedcc937d815ab3d2630eb3ba48d6611eaf280314017cd07433b012aefa8108

Sharing

Copy URL

Twitter E-mail

General

Target

645cbb9c9195adaa2bc799bad43a9e96_JaffaCakes118
Size

613KB
Sample

240722-xfm5nasalb
MD5

645cbb9c9195adaa2bc799bad43a9e96
SHA1

f4ee768a6d694c71b84ac28caa2ae95507259f12
SHA256

efedcc937d815ab3d2630eb3ba48d6611eaf280314017cd07433b012aefa8108
SHA512

04fa9b585ea1f6d63b39e59ca9181cce0fd6ecd9611b500ab0ac1c585292258fd7180adf69dccbaa7a71760868ed40543cf20e3ee8d0c5b0bc108dbd0111b36d
SSDEEP

12288:l/ppYgsSyi7MildgOUbYV1ILmaPQTYe1Dgn8WBlxENA:VCS4XOUEZagx1DJWdENA

Score

3^/10

Malware Config

Targets

- Target
  
  645cbb9c9195adaa2bc799bad43a9e96_JaffaCakes118
- Size
  
  613KB
- MD5
  
  645cbb9c9195adaa2bc799bad43a9e96
- SHA1
  
  f4ee768a6d694c71b84ac28caa2ae95507259f12
- SHA256
  
  efedcc937d815ab3d2630eb3ba48d6611eaf280314017cd07433b012aefa8108
- SHA512
  
  04fa9b585ea1f6d63b39e59ca9181cce0fd6ecd9611b500ab0ac1c585292258fd7180adf69dccbaa7a71760868ed40543cf20e3ee8d0c5b0bc108dbd0111b36d
- SSDEEP
  
  12288:l/ppYgsSyi7MildgOUbYV1ILmaPQTYe1Dgn8WBlxENA:VCS4XOUEZagx1DJWdENA
Score

3^/10
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0285eac59530ff5cc91fe2634b4ed78e
- SHA1
  
  241c12aefca0740e776362f30aa1edffd66d6bdc
- SHA256
  
  44c822afaa4cc7cb95390eaa0ada076d280d3455870569f0cde03637257d9899
- SHA512
  
  1007fbfb82d4e6c04bd5fefb32cd81f4406022ceef4d409eda0f0ddeb8b1f124a2baec86498bc119778e0c241fc41b0c2440d8a8f6731a63ede936be94f81297
- SSDEEP
  
  192:8nK6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+MTgK72dwF7dBEnbok:8K6UdHXcIiY535zBtMTg+BEnbo
Score

3^/10
behavioral3 behavioral4
- Target
  
  RealYQLyrics.rpv
- Size
  
  64KB
- MD5
  
  fc5713e7060f1a275c4d7193a957d569
- SHA1
  
  16c9e39c0e14a2450fa566198dec68905a3e027b
- SHA256
  
  aed412d71e4ec2534eb498d87b14c365b17934e75c30d3883d769a245ac496eb
- SHA512
  
  be3a117085b13a93a14f8eb5490bf49861a55cfcaf5d96785efa4254e6e525e2d50bb573c0844f2adb686b8e324a14c11aee75f2ccfa6a30acd7551e1815f214
- SSDEEP
  
  768:70IkWGH6hiE8T9R8Q8WmbmD7U2iTYaFrr6F8smk0lqoTkb/:3mT9F8Wmb0Q288VoTkr
Score

3^/10
behavioral5 behavioral6
- Target
  
  YQL_Lyrics_Common.dll
- Size
  
  505KB
- MD5
  
  72dbbf502f310b3820ff4589cf4e9ae7
- SHA1
  
  710871a5957a7e3932b7ef2a8990cc133afa8058
- SHA256
  
  4549c30b9bf613d757e139b8f0f55294b04b6297aa358ef85dbe71bd6b4235c8
- SHA512
  
  a9ebc84313ec4dd876c2f6b274297c4d2d244a5dfcfa05f6b2d23145107c39278e7679c0eb230463f72e2da817ed8b62b3b6b4621da3e0ef13e438c4726b689d
- SSDEEP
  
  6144:SH3PvjePZck+afKQpn0qYUwhpRfh2pT41VrRBE1JOsgXf08/OlA:S3SPlPFd0qYVplheT8rnE1/W/r
Score

1^/10
behavioral7 behavioral8
- Target
  
  YiqilaiLyrics.dll
- Size
  
  136KB
- MD5
  
  66bd35c77e80654b1ef1956d1843cbdd
- SHA1
  
  851e8dae6a4e0df8a6d8d3dfb08f7d8944d39567
- SHA256
  
  e64e38ec3b496c6e65c1dd68e2f499824ed1b1269f0240900dd1d567bb80ecae
- SHA512
  
  ffddcb28ae2235c68ae6b0fbabf746e5d28311ea1d5d2a8f19bdcd7df6300383fb5bfa384a270f99eab0fd4247d936425f44c2fae9ba1c4d70aa886ca480284a
- SSDEEP
  
  3072:PcroPnyMEfcv3V4/m22ZzgN4tQGXn+Mra:MoPQfYWOVZMNZe
Score

1^/10
behavioral10 behavioral9
- Target
  
  YiqilaiLyrics.exe
- Size
  
  223KB
- MD5
  
  ae7f297b319bce3538bb1e4bf1e6e086
- SHA1
  
  8b9e66e2826bf406502d92b2d7e903390fe0b1d9
- SHA256
  
  f29666b7696eb4623b7c1c4e0065c436d1ec50c8c46fd97aa3fd063f1ccc313e
- SHA512
  
  e397cef50a6451428fb725ae19aa20e648c9de094bca682bb2ff5e414fe24070929aaa3412af113c99892c34766ea788a5263236ffdf9cc3e6d911e2bd2c38e1
- SSDEEP
  
  3072:++rDkp6ooNIzKMeUzHLqETXLTdE9nqODJgtQQwEH9tty2duoq+4ljoQ:7ooOLqKXLxE/RQVtnAoq+4p
Score

1^/10
behavioral11 behavioral12
- Target
  
  foo_ui_columns.dll
- Size
  
  578KB
- MD5
  
  d6a04b9a48c21ace47d50a4681238ee2
- SHA1
  
  ffb07177077b5be4258adfbff8d7972f589036f4
- SHA256
  
  e2ef3556450075840768fa44e71070246cca670348e4b379d10c4bba1152b4be
- SHA512
  
  3049e950996587c64a1ad89d23e0018065cb38c5bc44ae0e38297e6120c148f3a3c01a09829af3c5d95e062148c2c55e8adf31dd7e89723732e2ddeef8f733bc
- SSDEEP
  
  6144:spKof+r1nt9hpFV95JUVtQ/DoD7RTL8QihGj/pbvAO/M5mvBES2C:sit9j9c9D7RTIQihGLpbvW5s2C
Score

1^/10
behavioral13 behavioral14
- Target
  
  foo_ui_yqllyrics.dll
- Size
  
  139KB
- MD5
  
  3d55027e9cc165b31995f0223cc9cd88
- SHA1
  
  a5f5708348d7bf2d939a8185b498918e9a7aedf5
- SHA256
  
  9002009ef1a039f773705ecfcfe95f5ffa3b38f5b2a792685e0b22e42d06af25
- SHA512
  
  95470e0db65a7f09032d54907f54fbe47db4211f0e4df1996eeb8a26a6ccbda500a8f4c7cb62567f709be928bcaa3543308c54cca33f6be54f415a69d0597f26
- SSDEEP
  
  1536:SFhS4dKE+/sl/q8dqq3GqcUGI8yv/Xx3M6eNn2ohQV0vtmgMbFu5PtZaU2O7D:QhtX1/q8Z3rpSt2VeAg0Fu5PtZaU2O7
Score

1^/10
behavioral15 behavioral16
- Target
  
  gen_yqllyrics.dll
- Size
  
  52KB
- MD5
  
  f811ae048d4c047327ed7e595910436a
- SHA1
  
  64ca166e6c5f004811aaf1f7947cbc98eb237e1f
- SHA256
  
  5d4e90ebdf0c5bc432752d0472950da456a32f097a029b42258a2687d67f9cad
- SHA512
  
  46dc4b8faee0466c5f28359aee1665d0a76e9bda6bf2365b3100a2d89855b07f88f3014950a0f33a3e895e75a6a344991e6e969e9349105f1af181954f340f6c
- SSDEEP
  
  768:3jzanFsHu9d+PN/qgR6UA8Omzaa9JZtltVtKYUqw9:3j6FLaz287zamztKYUqw
Score

1^/10
behavioral17 behavioral18
- Target
  
  iTunesYQLyrics.dll
- Size
  
  19KB
- MD5
  
  ca6b467285a87d33afe9c8e2e2a7aa99
- SHA1
  
  96242055d913268060e6ab9c157d5c966c37cee5
- SHA256
  
  be4a75b88e6800de2a07adf29f7fe508fb07df7b3b328391683ed330bdc663c3
- SHA512
  
  55a21ce1b85aea6f997e8e6fb855be0f8178923581e14d304d415fd06a1e63fb9c7613d48895c79c0f9f64645b553dbbe58f6a84ce55220c9638aab1c0b33ada
- SSDEEP
  
  384:tJwxrVpJzTOJFPv9hvM2Hx/S1pGD7mQUx:OSF342Qo79Ux
Score

1^/10
behavioral19 behavioral20
- Target
  
  vis_yqllyrics.dll
- Size
  
  70KB
- MD5
  
  20ada9591c78ef169ea83cb14093f7dd
- SHA1
  
  a1910f5b4b18c6156cfaf9b6a31106831c64b268
- SHA256
  
  3f6ad5027a9af95d042f3e6c3c370c5b806594f88098dc3d16f38d6d8af49e96
- SHA512
  
  08893ecf8bef19b00b44c493bd8a3f61b29094c07dbfeef6d33706a26b17adc3e2c9ee8ee1856588782b7918fb90f8f81825ca6e67277635b278491a7e343f44
- SSDEEP
  
  1536:8cpTdga0ik0jKJMK5IX6IEAdBGQhw78N:rpRg/mExAdBGYNN
Score

1^/10
behavioral21 behavioral22
- Target
  
  һְ.url
- Size
  
  57B
- MD5
  
  e6151ebfbd640f4600a815e8289ac31f
- SHA1
  
  74e7ab2bea63b37c5d4814cabc74e5d5ddedf637
- SHA256
  
  d31a017641defd3f9573e86920ba77df3d41910c275e2d0ed6709dda7d8ef7ba
- SHA512
  
  196dbdd03f522940133d0359c207e5f7f951c34f11a097c8cccb68606921a19a2615719c81ba31340091241a340adba18ac06e991ca229442d7166a0a16c0532
Score

1^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24