Overview

overview

7

Static

static

3

b8a0d06ebc...18.exe

windows7-x64

7

b8a0d06ebc...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$TEMP/CMControl.exe

windows7-x64

3

$TEMP/CMControl.exe

windows10-2004-x64

3

$TEMP/dncis.exe

windows7-x64

7

$TEMP/dncis.exe

windows10-2004-x64

7

$PLUGINSDI...ri.dll

windows7-x64

3

$PLUGINSDI...ri.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b8a0d06ebc4b44080c134acf6b76651d_JaffaCakes118

  • Size

    187KB

  • Sample

    240822-wv3m8atbrn

  • MD5

    b8a0d06ebc4b44080c134acf6b76651d

  • SHA1

    706876e70ebac27f1ee8c9302af759f15ae127be

  • SHA256

    417dd56f7c289bb17b6810f7f816ace742cc1ad002178dfd0f52200f8d89b676

  • SHA512

    85a86165d5ba334948b976a98d43b610275899b04033e7bc1fb1a2df3afcf0ca7dafd050646fac5dc5ba90b71517f35390347a942317b772d887b2c74102055a

  • SSDEEP

    3072:bwjmK0lZmJ8wXrQGXAZYtfu8XKh5/bzIeT5LKqTDNqZmsfEHX5L4V3sUAB:bbNS5Wpz/RRTDcEdY3sX

Score
7/10
discovery

Malware Config

Targets

    • Target

      b8a0d06ebc4b44080c134acf6b76651d_JaffaCakes118

    • Size

      187KB

    • MD5

      b8a0d06ebc4b44080c134acf6b76651d

    • SHA1

      706876e70ebac27f1ee8c9302af759f15ae127be

    • SHA256

      417dd56f7c289bb17b6810f7f816ace742cc1ad002178dfd0f52200f8d89b676

    • SHA512

      85a86165d5ba334948b976a98d43b610275899b04033e7bc1fb1a2df3afcf0ca7dafd050646fac5dc5ba90b71517f35390347a942317b772d887b2c74102055a

    • SSDEEP

      3072:bwjmK0lZmJ8wXrQGXAZYtfu8XKh5/bzIeT5LKqTDNqZmsfEHX5L4V3sUAB:bbNS5Wpz/RRTDcEdY3sX

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      eef9e469e8a30717974499f277d97e2a

    • SHA1

      2d33c25984ebd9116beeb55cdde4c5c86c023e5d

    • SHA256

      1f35bb6728237483c779005fc227e69fef51b0bafd32d15855d483948a337078

    • SHA512

      d860132106a1c03dfa23f983b3c503f1216ac02f3d47833b96dfb333fb30bc8ab4d4fecd1f1f0a89f0c7f3586405461e2d53c26f282bb48970e549659b364b48

    • SSDEEP

      192:8np6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+MTjK72dwF7dBEnbok:8p6UdHXcIiY535zBtMTj+BEnbo

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      cdff6b8f9523b6ef9f20fb5f9e90f1a5

    • SHA1

      b25f6e0a19b41ff0a12de8e98e3005bc119d34fa

    • SHA256

      80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8

    • SHA512

      62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e

    • SSDEEP

      96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $TEMP/CMControl.exe

    • Size

      188KB

    • MD5

      48a5e23cd5f377395e4931d45716186c

    • SHA1

      4f273ae59025b5a25172fbce9c099412663e1a64

    • SHA256

      779806aa906243b82770e2f47d0124c784238be94e6d115bf57307a92322b486

    • SHA512

      c0affb81503fc05979fe6d1f5ce07a3c5c3f8ae12aab12ef2c4d23ff31a37435a90bee28fce75ff61d17e4c9f15d9865d625eec81588ecedebdd9de5fd70dba5

    • SSDEEP

      3072:lIjPxRux+dpGziIFgdOUosZX4L/jiz2iquY:CIx6dOUo4o/b

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $TEMP/dncis.exe

    • Size

      60KB

    • MD5

      978c37e4a14a9cf80f369ae58a03037c

    • SHA1

      618151be6d76239d8de9aabeef4d77b95187b559

    • SHA256

      2b9febd02a53b462ba46832ca79f94f6ff2ea916524c2d9140376d8665b082f1

    • SHA512

      1135c5ccdf885834ea7fed82baf9d740f1d59fb3e24cce0966e8d6482c0efe347fee553912ae647bfd649433084a69c1bb15fa3b1f484e30de6de8865452eac4

    • SSDEEP

      1536:opgpHzb9dZVX9fHMvG0D3XJER99mU6NO1uWFB:egXdZt9P6D3XJEaOZFB

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral10behavioral9

    • Target

      $PLUGINSDIR/ExecPri.dll

    • Size

      4KB

    • MD5

      f88e8c2997e111e1ec8a78e55b2f81c6

    • SHA1

      f3bb2d2a9a07bfbf7bd871a4546852f5eb8b7f06

    • SHA256

      e46a8996b79cdffb1b42400b460f2e68883c656ca7e5345185f2dd7c33de0718

    • SHA512

      a46376a2fecebb6a8c8f55904db1f428622bbde513b228cfd5da9a19d69a64d0f79db47e958563ca44d76627652f5db9cc7d08fa70f6a0d73edf21fa34cc7f77

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      20KB

    • MD5

      50fdadda3e993688401f6f1108fabdb4

    • SHA1

      04a9ae55d0fb726be49809582cea41d75bf22a9a

    • SHA256

      6d6ddc0d2b7d59eb91be44939457858ced5eb23cf4aa93ef33bb600eb28de6f6

    • SHA512

      e9628870feea8c3aaefe22a2af41cf34b1c1778c4a0e81d069f50553ce1a23f68a0ba74b296420b2be92425d4995a43e51c018c2e8197ec2ec39305e87c56be8

    • SSDEEP

      384:jQB2ZUVHUxgoJX0eBA6PcH85db+ya9cC0Ac9khYLMkIX0+G5xgZmT+m//a:j/UFeJ5S6PHLNa9cFam/

    Score
    3/10
    discovery
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks