General
-
Target
8aba00e6e5962e107b4e16e43becfc34_JaffaCakes118
-
Size
1.7MB
-
Sample
240811-rtzgystcqn
-
MD5
8aba00e6e5962e107b4e16e43becfc34
-
SHA1
f9855a5a7b248f4c11cadd915bfade1d0fe96757
-
SHA256
989626f963bb6fa46f44a05e55a4af7168675299afcee49fb9f06d685908fed7
-
SHA512
07ae948f8a51281719db05795f8918a63764861ab34e0e858f096cb0f6eda31a34043a0ce68104fa3752ecead7b5c4cb32e4b41ba7e8ff6fc7060c775c951a08
-
SSDEEP
24576:lwnhfco3mDLGFxKvhmRBqX+jgu1lx76imDPw6a9inxQR4VlfV2Zq/RZxn2UBeP:UV3mDLGPKCgAf776RPw9inVldaqtndm
Malware Config
Targets
-
-
Target
8aba00e6e5962e107b4e16e43becfc34_JaffaCakes118
-
Size
1.7MB
-
MD5
8aba00e6e5962e107b4e16e43becfc34
-
SHA1
f9855a5a7b248f4c11cadd915bfade1d0fe96757
-
SHA256
989626f963bb6fa46f44a05e55a4af7168675299afcee49fb9f06d685908fed7
-
SHA512
07ae948f8a51281719db05795f8918a63764861ab34e0e858f096cb0f6eda31a34043a0ce68104fa3752ecead7b5c4cb32e4b41ba7e8ff6fc7060c775c951a08
-
SSDEEP
24576:lwnhfco3mDLGFxKvhmRBqX+jgu1lx76imDPw6a9inxQR4VlfV2Zq/RZxn2UBeP:UV3mDLGPKCgAf776RPw9inVldaqtndm
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/CustomLicense.dll
-
Size
4KB
-
MD5
ae97fd89eec5000b400e6bc7e8db0e56
-
SHA1
7ec1073f712ff5bd68deec894c36c0385bacdd68
-
SHA256
bdf2d5ac95808ffe5b29aac71fcc2eb64bdca5b272a9c4082a74e20d0b1f20da
-
SHA512
2e0d0182d7fda547bfd3f25c56d0c20ba75809ac8d4c96c2b40aad3db9a61c730a650c7e02c6050ab37abdf8ce66ea1e4479921d72e21f55b6fd42a3dc033ec3
Score3/10 -
-
-
Target
$PLUGINSDIR/Firstlook_EULA.rtf
-
Size
92KB
-
MD5
7bdb34466392f623ae36f0eadf63e515
-
SHA1
4056d693b04f99bbf654cf7b5d3a90c3cdb7024e
-
SHA256
97dd5233cd1a60d2f5f07dddac6f9fd9edef811ce2300f67500112162284f3df
-
SHA512
57b276387654c171744e9048e4b614160b684d4ffbd948d285f5691dd59ade305ed406cb64227190ab24c8b2daa843059708e3124b310d26e948686d233fcda6
-
SSDEEP
768:3lA64dNaXAoDeu8bgSDYAa92TwS1MPSXolD+cQMlyfDa3X7LjShAZqCm:3lSabS1a92TqSXo0co0XVjm
Score4/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
c17103ae9072a06da581dec998343fc1
-
SHA1
b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
-
SHA256
dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
-
SHA512
d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
-
SSDEEP
192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score3/10 -
-
-
Target
$PLUGINSDIR/TXP_EULA.rtf
-
Size
61KB
-
MD5
78a6e403f8ae9faed0bb57e2299751c7
-
SHA1
57b6555887a5c94b9efd50767e979ca58e721488
-
SHA256
105cae7b46e4852e848aba1af13fee2f941578ea504508f5a1597ee7cf9347ff
-
SHA512
590d1dc00fda25d74d68bd2bcc383a5c4a7f705a123ac8a1077fcc28d9fd6c0b64104fafd93a9d5bde3655398ee2c0df9680253b2dcf8064d78c7a7ff77b3ad0
-
SSDEEP
384:Antwgqb7PzybdKkuh5EBmF4bnVVN4DJCfE3eroHvnr6c/ZoD80YrYjIi6rGsNAYs:Anqh5EBDnVVNBoT6ZD80hghAZqCn
Score4/10 -
-
-
Target
$PLUGINSDIR/facemoods_terms.rtf
-
Size
80KB
-
MD5
021f978d062bdf04b58327f3b67c8aeb
-
SHA1
704ddc83f32a5ce6c95a1ce9af74f8f7b60c2a95
-
SHA256
7faf940cf5a2abc900639ade3262db9a9b0f623047a67e6b165c73aa33b90d35
-
SHA512
f69264f3aff95d0fde5a582fa75a8d8bd74eeac255e6e7beb7723ae5260a5e1fc05e25e446a786b0003b40f3e75610ccf82013e6a86c73dd3c9a32ce20d7b97b
-
SSDEEP
768:l813p3VdAkF8bmrF5oa5Fscm0GEsGugGcQ/yK74fsWc24hAZqC3:l8TN8bqbGZytsWcwj3
Score4/10 -
-
-
Target
$PLUGINSDIR/facemoods_w7th2.exe
-
Size
1.2MB
-
MD5
4b844e8cd78a5dae585f21c9930b5c03
-
SHA1
169abfce05c62fc67856ae5fbd70c3546ae68be8
-
SHA256
202916875d5cb278dabe5e5aa280fd7c296819534cf94c42ba01e6009c6aee99
-
SHA512
983da1b31907c1acfa63b2cb82ce9106a833994edb95ddc3237018aa93823d86c44f12759c785d780a85f8171735720447a1e75945054eeb39018c4970a13c6c
-
SSDEEP
24576:33Wdk4yO1bzppgJLo01dvXjyoLTkyXN3VOBj7mEsLy:2tNCLbdzLTpXDOR7ELy
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/ExtractDLLEx.dll
-
Size
7KB
-
MD5
ba4063f437abb349aa9120e9c320c467
-
SHA1
b045d785f6041e25d6be031ae2af4d4504e87b12
-
SHA256
73acba7dd477dfd6cf4249911f4e3c781196c7cf6b28425761dcb2d4f90c36c5
-
SHA512
48a813f55834069f8c6b90740de3df01564a136b0fe637f9f85cc1a19d7f32b1f70205ff2462526508fe3c1962d7c1e8e384c40463e328538aeba28e8d0fb92a
-
SSDEEP
96:lyEPmi/06iLbX8SIP59L1MmqPbgkk/eWKCHGojGYYIF/ggiomsTeZUzI:lyEPmymbMbPZOz+/eWJmoUItiopTeZ
Score3/10 -
-
-
Target
$PLUGINSDIR/InetLoad.dll
-
Size
18KB
-
MD5
994669c5737b25c26642c94180e92fa2
-
SHA1
d8a1836914a446b0e06881ce1be8631554adafde
-
SHA256
bf01a1f272e0daf82df3407690b646e0ff6b2c562e36e47cf177eda71ccb6f6c
-
SHA512
d0ab7ca7f890ef9e59015c33e6b400a0a4d1ce0d24599537e09e845f4b953e3ecd44bf3e3cbe584f57c2948743e689ed67d2d40e6caf923bd630886e89c38563
-
SSDEEP
384:nUOPTbiJmdztwwKq8W1cyMjPzV0Ac9k+LMkIX1+Gn+XHdjf:nTikliwKq8W1rMjPzz+f
Score3/10 -
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$PLUGINSDIR/Processes.dll
-
Size
56KB
-
MD5
cc0bd4f5a79107633084471dbd4af796
-
SHA1
09dfcf182b1493161dec8044a5234c35ee24c43a
-
SHA256
3b5388e13dab53d53e08791f492ed7d3094a0cee51e9841af83ce02534e0621c
-
SHA512
67ba90ec04366e07d0922ffb4dbbb4f12f90b6785b87700adaae29327db9ec2a03d750b229f858db0594f439499d6346fbf1ebc17c77162bf8da027515219ee3
-
SSDEEP
768:WmswCIbuzwEmd7Fp4KpDAKngV9tV3rJy63JgaVwoz7si4uYqUYWu1gYwmj552RFB:WmswCIbuzwEy7n3YD3Jgw7shKrp55io
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
c17103ae9072a06da581dec998343fc1
-
SHA1
b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
-
SHA256
dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
-
SHA512
d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
-
SSDEEP
192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score3/10 -
-
-
Target
$PLUGINSDIR/UserInfo.dll
-
Size
4KB
-
MD5
7579ade7ae1747a31960a228ce02e666
-
SHA1
8ec8571a296737e819dcf86353a43fcf8ec63351
-
SHA256
564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5
-
SHA512
a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b
Score3/10 -
-
-
Target
$PLUGINSDIR/chrmPref.dll
-
Size
160KB
-
MD5
e02590b95a6be07cea5c5f3daf66e775
-
SHA1
28b6350c43d3804f69faa5f48cab70e229dd182a
-
SHA256
a87ec5894c667c5eb22201172792027a525a375a9e6468aa4612ccf6875b1112
-
SHA512
30e3abdeb2fa3c2e1bdc94e1e2b9f7fa9c85ff3d10198166e99e66a92a0ae4d62871a621eab069b1dfe2a99a7a4d457a494d91c811f1bd93c51f120f5ff692b5
-
SSDEEP
3072:0DNlF2bX2rBTxNwIjCRMOwt+kG2Dkq150yurKNN535xzFHcu:0DNlF24BmXH2f50L4ji
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
c10e04dd4ad4277d5adc951bb331c777
-
SHA1
b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
-
SHA256
e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
-
SHA512
853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
-
SSDEEP
96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score3/10 -
-
-
Target
$_34_/extensions/[email protected]/components/FFHst.dll
-
Size
363KB
-
MD5
4d858f32da07588f97a992cd083334ca
-
SHA1
75572a0793acb41e977c8ae0adc290f5b23da946
-
SHA256
73f1c3bed7c14088ad837cf6468aecbdf37f8e9ca86faeb4fc7e5d79af071e09
-
SHA512
37bb7b0ce98c2e345ce5508af2d7dbb30a85a2ce90d55887318105d71a88965445c2d1e7d7c129c400fd38435ea01bc72fac93e75770f01a8a114ad35e279fb4
-
SSDEEP
6144:XyWoZ5OaHK/HHWAV4/yZj8sNkWS4P7voGfk:if5zHK/NVpwsNkWSAoGs
Score3/10 -