Overview

overview

7

Static

static

3

PremiumBoo...ll.exe

windows7-x64

7

PremiumBoo...ll.exe

windows10-2004-x64

7

$(LSTR_82).exe

windows7-x64

7

$(LSTR_82).exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Elcor Soft...ge.url

windows7-x64

1

Elcor Soft...ge.url

windows10-2004-x64

1

GPremiumBooster.pdf

windows7-x64

3

GPremiumBooster.pdf

windows10-2004-x64

3

Premium Bo...ge.url

windows7-x64

1

Premium Bo...ge.url

windows10-2004-x64

1

PremiumBooster.chm

windows7-x64

1

PremiumBooster.chm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a30087ac0a2a4142b996ee41e15a4b15_JaffaCakes118

  • Size

    4.5MB

  • Sample

    240817-sc9f9svbnm

  • MD5

    a30087ac0a2a4142b996ee41e15a4b15

  • SHA1

    3605187df6b07a7cc32eb4612c784c5bd5b93012

  • SHA256

    6102f816e8e40f281f8665155d06cd9b9d4ca0216eba627b6a31bad76db8a62d

  • SHA512

    913b4335d75b8a50a68ab9c46d6ad7e4fa122cfc127b9ce5899d45cab1b0cfb452e88ed96f1c3a2db3e51b9a24479e26ae640caae3432b7ec2c7b9a8da950421

  • SSDEEP

    49152:dRW92eFDfOqk6PN3S22UP/nCv9x/CIaFjVScAu3LONOTdUI420FJSZOfrA:dUAvP6l3SA3ny/CfxVlAeLONOhb42IJ0

Score
7/10
discoverylinkpdf

Malware Config

Targets

    • Target

      PremiumBoosterInstall.exe

    • Size

      4.8MB

    • MD5

      0d46d831e46bdf83593e88e7068ce7fd

    • SHA1

      4af9c523316fc367c9cd303d9598f9ae4789ba47

    • SHA256

      73534ccf487ed7cd17eb2f36bec70a39d3fed2942c29c7c5df71f3f596d851b7

    • SHA512

      c176c8434ee981a8cc8b0f248902e3791a5b7ad9430f7b446c81ee2f9e08041830c28327422b84e1974257360dee5bef27419bce8978e7f65dde01e659647040

    • SSDEEP

      98304:RYQQOUrkZcI84/4rpyL2OLA1C0cHa8uSFtuY0v3G2YIPS0+eOV:RYQQOUrk2IPL2O8C6DCIky1+e6

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $(LSTR_82).exe

    • Size

      462KB

    • MD5

      afb9fc159d0d1d13f58401a8fc86215d

    • SHA1

      f79498859b450a36007b6e3ffa05bf6a12fbad0c

    • SHA256

      2a5860795ae19f2b3f4027d1e1fcf70ac4fca07169c4ba014f9ded2c132db4d2

    • SHA512

      1e4939f719dcf154993d6143ee87ca1bd8a9550c683ea3e6b3180695ec3ae5e1e9a3308cbd75191417dbbd9eb57504db1c838d57e260215df2d65623bc31b2cb

    • SSDEEP

      3072:RNyah0mJYIyUlgE5UQ3MHJL10j68+zFgE7s6u15LUPFg0z23k3De/IjnSbuPeI16:Rwyl7eQ3C5xPFgPa/wTxWW

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      5KB

    • MD5

      efc45bb93d44b05c9b4ab8f7ba367f34

    • SHA1

      22aea2c2236532ecbe66f54d439e161eba2ca2ae

    • SHA256

      d4192b8ed924e4a7706f36a411242392e5292e522698122ebb396dcc94e29750

    • SHA512

      04ff1141e9d0114658d237657b988f800d254f15e5c7158d194c015b848d6b1997d5d2d0bebe366c33b772d2abe80678510f8d7f2aa76ebe06f49bc5011642db

    • SSDEEP

      96:WJ7ZDGEQ9LJX6weN2TuXQ2lBiwag/npv:adULvEpJBiw

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      82f7926fd7d12e3eb8ed7b5232bcf956

    • SHA1

      6065fc921b742cc86c77ce2533fc1d17359eb45e

    • SHA256

      604b5e75f43ffae8f172018cdd8f136392d9c52ae0c100d27ef537bb2dfb3984

    • SHA512

      b31a63ebbda8f147c32d8336c5ecde8c5261ad5526b01926d7cd74b7a9a1348da56e180e53d20e1e300daca76f9511f24d6e695550b705b7650c239e5b6e76c7

    • SSDEEP

      192:BGO6dJA/ruAFEiUdWWE6hsD4YUdJfbub1a8SgMO:pKAFERdlxhTYUzqZaV

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      36dbb97a743c24dc43b66316ec37ebd7

    • SHA1

      73ce1bef9cf6eeb35d12d1096d307a0b2a48883f

    • SHA256

      1cea296475b7cd08f94a5f3d015f4a147675188680ee2075d8c2f5cdc5969a5c

    • SHA512

      e56065cc5ee0558611c549ce619c18638b2647f85ad0cfdeb172da10748b3bcc31aed41729af2674fe0f009e925c82d79325baa81db13a82c955e921c74b2e0d

    • SSDEEP

      96:3OOQH+QLHgcjYzpKwV5SSDxN8ZFhI/seeF3trCUTMxVXA32E:3xQLHgcjYzplcZH1drCUTMxVXL

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      271b5d1043c4402f08ddeae383f6979c

    • SHA1

      2b88c58aa27bfb4979239579cd65d4c6c67a5295

    • SHA256

      90485cb175686c3e97b32ebf99daa939c1a6f46e7031f71b72b81cd114fd5b51

    • SHA512

      f8bd4b316726f05647162bb52a2aeb4a6cf5ee976fdb7817a3d25b868b83fb482c38d078f01d3a629afb0d6fa6ce409b2b3404398563137e22010074f529c11b

    • SSDEEP

      192:i6JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxT3K72dwF7dBdcQOz:i6JaVh4I5rpPbT3+BdhO

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      5KB

    • MD5

      efc45bb93d44b05c9b4ab8f7ba367f34

    • SHA1

      22aea2c2236532ecbe66f54d439e161eba2ca2ae

    • SHA256

      d4192b8ed924e4a7706f36a411242392e5292e522698122ebb396dcc94e29750

    • SHA512

      04ff1141e9d0114658d237657b988f800d254f15e5c7158d194c015b848d6b1997d5d2d0bebe366c33b772d2abe80678510f8d7f2aa76ebe06f49bc5011642db

    • SSDEEP

      96:WJ7ZDGEQ9LJX6weN2TuXQ2lBiwag/npv:adULvEpJBiw

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      e98edd029f7f9f62ebb75992841817b8

    • SHA1

      8a7054283e4386689a29c63f4e65f3ef1ea7c43f

    • SHA256

      abf56fe9b605c8cd716a2cc59b6ef052428753d5c716aaf857c3349d74fae66c

    • SHA512

      d6f3b151715a843a795f5a79931867031b2cc0c6406050f6af665fd07ba9d3b69557a09c720f88328b277fde0f47fffbb36a895196b7eb28d3c15ad0becc063a

    • SSDEEP

      96:Z+dBC0x22epxPEvC4FkWE+in1/FMvsCGRfRFqCB5tlGhEl5VN:Z+/epxPE1r8/FtmCDtUg5v

    Score
    3/10
    discovery
    behavioral17behavioral18

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      82f7926fd7d12e3eb8ed7b5232bcf956

    • SHA1

      6065fc921b742cc86c77ce2533fc1d17359eb45e

    • SHA256

      604b5e75f43ffae8f172018cdd8f136392d9c52ae0c100d27ef537bb2dfb3984

    • SHA512

      b31a63ebbda8f147c32d8336c5ecde8c5261ad5526b01926d7cd74b7a9a1348da56e180e53d20e1e300daca76f9511f24d6e695550b705b7650c239e5b6e76c7

    • SSDEEP

      192:BGO6dJA/ruAFEiUdWWE6hsD4YUdJfbub1a8SgMO:pKAFERdlxhTYUzqZaV

    Score
    3/10
    discovery
    behavioral19behavioral20

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      36dbb97a743c24dc43b66316ec37ebd7

    • SHA1

      73ce1bef9cf6eeb35d12d1096d307a0b2a48883f

    • SHA256

      1cea296475b7cd08f94a5f3d015f4a147675188680ee2075d8c2f5cdc5969a5c

    • SHA512

      e56065cc5ee0558611c549ce619c18638b2647f85ad0cfdeb172da10748b3bcc31aed41729af2674fe0f009e925c82d79325baa81db13a82c955e921c74b2e0d

    • SSDEEP

      96:3OOQH+QLHgcjYzpKwV5SSDxN8ZFhI/seeF3trCUTMxVXA32E:3xQLHgcjYzplcZH1drCUTMxVXL

    Score
    3/10
    discovery
    behavioral21behavioral22

    • Target

      $PLUGINSDIR/nsProcess.dll

    • Size

      4KB

    • MD5

      05450face243b3a7472407b999b03a72

    • SHA1

      ffd88af2e338ae606c444390f7eaaf5f4aef2cd9

    • SHA256

      95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89

    • SHA512

      f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b

    Score
    3/10
    discovery
    behavioral23behavioral24

    • Target

      Elcor Software Home Page.url

    • Size

      103B

    • MD5

      663fd08ba63f1361c1dcfabfc55c4677

    • SHA1

      66df8bc56f94823c5bbc5e7c504f1b73c58a2612

    • SHA256

      68a4da703df4fbfb4ece4f64343e12c64fd2c5d1420ebf0be4970a59292259e5

    • SHA512

      3e3bcbd06d347420fca0529a586c5d44f37aced0a9e823afbf6c10f9947c030f6ba86e91f3892ee126b35508bdc5fa47bced8989f2f7ddb704409def8f2345a9

    Score
    1/10
    behavioral25behavioral26

    • Target

      GPremiumBooster.pdf

    • Size

      218KB

    • MD5

      48c50d9d4b4a3436a4a0b751794958a5

    • SHA1

      695c171fd4af0b40d1b96a8ca62cfc085c42c428

    • SHA256

      a4ab5b9a112ba5be5d184e8912fe8f43a2a4cf1a542ccd605bd932123120e11e

    • SHA512

      23ef14e4803faf6e19b165e31d41f193f8b3cca5df39892c1266cfa7237833aa8f1921cc993f8f6f91000685fb3eff4b9482e6cfef43fcc650a37b16985c4eb5

    • SSDEEP

      6144:0EmA+hKOXd2Jc/Qcw+TgBJWm64IOcktoDdbGo:0ES1t2O6364ja

    Score
    3/10
    discovery
    behavioral27behavioral28

    • Target

      Premium Booster Home Page.url

    • Size

      199B

    • MD5

      36fd886f8d6115aae550f75d096c88be

    • SHA1

      816fa63f5141435f272ce7e4475def18a05c99fc

    • SHA256

      606efa28028b0d1b0d2d180306b22de2d6cfedbf76c47459111bdcba8ed93930

    • SHA512

      e0d20e321df5245a9eec718a2528b913bccddc763841747cc620cde213ae5a909a1282bb4b1136bb9188271c050052a1f7112d706b878cee72583880381c64aa

    Score
    1/10
    behavioral29behavioral30

    • Target

      PremiumBooster.chm

    • Size

      71KB

    • MD5

      b5a40b8972c687d20324a24717906309

    • SHA1

      dd75f376caed27af33da1fa1762b3faba3cd043c

    • SHA256

      591750f85037f78a803820ced0cd5892b15c4f0f160c189c1f24a1ee045a4acd

    • SHA512

      2a8cc751926255ade06e38a12bab8cccbe81a5f2b42b92f8a4a7e1ad820eb8e322de0e83b928581ebd7e506611e6a2b7d49cd5f7d0a823b0475c3be0656c599b

    • SSDEEP

      1536:1BFYf4lombBAey72n8u12ELmxVP59TkOEsCBuxYxlj:PWfgbBAe42D1b/N6Yzj

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

pdflink
Score
3/10

behavioral1

discovery
Score
7/10

behavioral2

discovery
Score
7/10

behavioral3

discovery
Score
7/10

behavioral4

discovery
Score
7/10

behavioral5

discovery
Score
3/10

behavioral6

discovery
Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

discovery
Score
3/10

behavioral20

discovery
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

discovery
Score
3/10

behavioral28

discovery
Score
3/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10