6ade76478fe8b9e3fe2f9ad6c2e9c82e8a43acd4aa0220b06e31ab2ae53cfc68

Sharing

Copy URL

Twitter E-mail

General

Target

670cb581e9fbf09b361cb061a36def4a_JaffaCakes118
Size

551KB
Sample

240723-ll5fcazdnp
MD5

670cb581e9fbf09b361cb061a36def4a
SHA1

2a1354a66c5865bbb6c3289541b75188fa36be0f
SHA256

6ade76478fe8b9e3fe2f9ad6c2e9c82e8a43acd4aa0220b06e31ab2ae53cfc68
SHA512

124943382a6b4c7e57d1919e16b9ad733306803282635e2870a6ce380e8a448adf2f63245d638a6e46f4505dcf236091767a2f5ee98bc8bfc1c377990e1578d1
SSDEEP

12288:JSJZkSTtYdWbcW90Ksg6H0zTwyAhGApgwQeBtysMFch:kidnWqaT7WGPerMFch

Score

7^/10

aspackv2

Malware Config

Targets

- Target
  
  fangdai_setup.exe
- Size
  
  571KB
- MD5
  
  91f3eea157def41a3846adf1937040d0
- SHA1
  
  fb8f173e291f16a75afe5d58cdb9e84a63c05f80
- SHA256
  
  4d417377a1bb72869c9eea0b24e841fe12f47dc80d2cae2f74729b599b8388a1
- SHA512
  
  55d48a31fc6f74e380e8cf9dbd8bfdba8a7617137b416f7c27748735926cf29268c183855f1a1a7c62df0407c1b21facf42a8e48163e3e0a375b66edb0d1dbeb
- SSDEEP
  
  12288:mMIVVDSflDVQ+h7uKPbuxlxAOUA6Xu9C3tiAVz:mMIXDSh+o7uKTuxvA9riAd
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  3KB
- MD5
  
  8614c450637267afacad1645e23ba24a
- SHA1
  
  e7b7b09b5bbc13e910aa36316d9cc5fc5d4dcdc2
- SHA256
  
  0fa04f06a6de18d316832086891e9c23ae606d7784d5d5676385839b21ca2758
- SHA512
  
  af46cd679097584ff9a1d894a729b6397f4b3af17dff3e6f07bef257bc7e48ffa341d82daf298616cd5df1450fc5ab7435cacb70f27302b6db193f01a9f8391b
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10
behavioral7 behavioral8
- Target
  
  FangDai.exe
- Size
  
  216KB
- MD5
  
  b8cd8f3982f2307908a99ac9366f8acb
- SHA1
  
  7359344d0db7ae49e641f1042d4d4e0cebd5f3e1
- SHA256
  
  672195e2567e856ddb23821ca4ad988273a8543d591f43e456d7bb60962321da
- SHA512
  
  cb46899b735b559f2e41cf1286872f3d7bd10af2ea9d551fe74c8236cfa78066e0017f3fbf92ae11f49f7a6b0052d4b9a4700f1c54a864bb956d7880c22f7716
- SSDEEP
  
  3072:1PceBI8gka0ZnyqOtmnXje7MOSmHGf6Pn0ZtXvl/SDW1UO11J1iaPd8YWa:1PQ+/ySnXj6sX6fQFNdU21FPd8YN
Score

3^/10
behavioral10 behavioral9
- Target
  
  Update.dll
- Size
  
  225KB
- MD5
  
  714985a7307335e8befd7b30e6eb9c13
- SHA1
  
  2f9c09761d11955eec0203c7404eb947ea44b498
- SHA256
  
  b7420163097c6a74d6254de154e492b19fc081021f5cbe6c557fe549428bf1e1
- SHA512
  
  b3c976cdc3ccb46b2bca325fdb35301ac56ab1510cfe240de3f68befcd90de9cb1d90995200ed6082d8be49693f36693d8a0581b249e5d8f87bcbe8e38b2d674
- SSDEEP
  
  6144:5HC1FHYpBFSdekCK0Q/O0Qfdvbh5jyXFujT4Yyq:ZCF4pBFJHRQFCbh5jyX16
Score

3^/10
behavioral11 behavioral12
- Target
  
  uninst.exe
- Size
  
  42KB
- MD5
  
  bcdabdb9e3e363a93b079fd4a198d1d8
- SHA1
  
  4b0c74673e26bcf1731f2f020f1f96d107e686d0
- SHA256
  
  16e6bd0a68d0c6a1974fb05488dccf3546c482cc1703c0f6dfdab4082fccdb2c
- SHA512
  
  d01a264c9d4539276a9bb7828df7ad46df02ff5f39fca0f6f8307d23ec303a08a101e09f309b7e293a0eb18720c320d9002ce1c6347c7c5197ae35a579675fba
- SSDEEP
  
  768:7hMZ0dF4ZFvQbn+eePu3cIQGCGbiC4k42M3wJJDfED+5Y6:7yZMSZFvknTePMZd4k4kJJDH5L
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  3KB
- MD5
  
  8614c450637267afacad1645e23ba24a
- SHA1
  
  e7b7b09b5bbc13e910aa36316d9cc5fc5d4dcdc2
- SHA256
  
  0fa04f06a6de18d316832086891e9c23ae606d7784d5d5676385839b21ca2758
- SHA512
  
  af46cd679097584ff9a1d894a729b6397f4b3af17dff3e6f07bef257bc7e48ffa341d82daf298616cd5df1450fc5ab7435cacb70f27302b6db193f01a9f8391b
Score

3^/10
behavioral15 behavioral16
- Target
  
  新云软件.url
- Size
  
  133B
- MD5
  
  4f0017b3b346bd0626f0c3b915e6e734
- SHA1
  
  823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92
- SHA256
  
  df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678
- SHA512
  
  0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6
Score

1^/10
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Deletes itself

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18