Overview

overview

7

Static

static

3

GiAlbum_1...._1.msi

windows7-x64

6

GiAlbum_1...._1.msi

windows10-2004-x64

6

GiAlbum_1.2/setup.exe

windows7-x64

3

GiAlbum_1.2/setup.exe

windows10-2004-x64

3

GiAlbum_1....86.exe

windows7-x64

7

GiAlbum_1....86.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8a1e03355e08c2619cbeb15c74958aec_JaffaCakes118

  • Size

    8.8MB

  • Sample

    240811-m545cswgql

  • MD5

    8a1e03355e08c2619cbeb15c74958aec

  • SHA1

    990ac29498f0efa61b61fa4792ea036d03af3f81

  • SHA256

    6dc7d7b67b3fd1a1c71c776420d4d96102653f4e26bd2fb2821f836b58444350

  • SHA512

    f01ddc6b580899ac006e02c616bd615ab50227c2f2499c35df378d9aea70a39f4a6998a45462c1d3638889bf13bac824132e82f8db9fda316fe27558c8cc0eb5

  • SSDEEP

    196608:GcjxWsnaD6VmcTkp+lHQppwbiJdSbUq2M1sli9wYPD53k+7:G0WOaD6VgpgHVi+Uq2TlijPD53k+7

Score
7/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      GiAlbum_1.2/Gialbum_1.msi

    • Size

      4.7MB

    • MD5

      c92cf4d24f1faed2c45bf620911df6b5

    • SHA1

      548c08627a37ee8cfdf9d964e86c36deda409c5f

    • SHA256

      049d25b941205022aaab1a69959932f002790896c21c298eff2bc5dd4a4ad32f

    • SHA512

      f7be4115b4fe65af49009a71c4e10dee36a2c41001a1ca5bd47eab5e2fd0d165f2097bcf5b5c97baaac82d118873cfde02b980c022f981704dd34860c998c8c3

    • SSDEEP

      98304:xspq3wymR5iGKtzjZArPjOVbKoOcjkwhylYqpWr75iPnTvjMe:xsp2wydtPZAr8bfOIdhyK6PTrJ

    Score
    6/10
    persistenceprivilege_escalation

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

    • Target

      GiAlbum_1.2/setup.exe

    • Size

      360KB

    • MD5

      7fea6c720b254f72ae3cd1b9aae510f7

    • SHA1

      39d5c236f97d77a8b4bcd6857d097178f782d46b

    • SHA256

      165dfb72b89bb3cc30bf18ca868a6942b3ca6ba4d91c245a7da5e4856f326e5e

    • SHA512

      fa9e271f4617539633167606f6148f04995bf68f26baacfb2b5f87f6f285121fdf96e42817966c0bbdc649ef9f7324a3fe2ab3f00fae4f18cf59ebf7c591c295

    • SSDEEP

      6144:IVNj1AVqn4mrKuiTZ+ucNh60TT2wJwaLFOixEHzNQq36lojDuUlG4iSD:In4q8ZkNhTTywJ5FOizeDuUln

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      GiAlbum_1.2/vcredist_x86/vcredist_x86.exe

    • Size

      4.0MB

    • MD5

      c0622ed3b105ac0e4c99e45db43f9589

    • SHA1

      da383992ef6be194bc59384182ec2f8ba2948dc2

    • SHA256

      1d1086f9867856594eb2f55ef6f0ad61818f5d7304cde7ddbb9f998d5c24a194

    • SHA512

      a7d727a3b02655e0522fd351390775c6221dbf4955c00731d916dd798ce3a0e8817a90872baabccdf943f2c53802c513e937d6a56668a9a7ee1c40c7ba4b186d

    • SSDEEP

      98304:gXEhwLmBFfL0BuPGttL5zekO76RwMixrhym5UuXrbcOtit:gXWwLmBFatnzekOpMixrh15UuXvkt

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks