Overview

overview

7

Static

static

3

c2a4d9b2ef...18.exe

windows7-x64

7

c2a4d9b2ef...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...km.dll

windows7-x64

3

$PLUGINSDI...km.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2a4d9b2efc6bb2a139f4a1040b2aeca_JaffaCakes118

  • Size

    645KB

  • Sample

    240826-klghvawgln

  • MD5

    c2a4d9b2efc6bb2a139f4a1040b2aeca

  • SHA1

    9b7b4859029596dda1023c2c34fc7e6a64ed03db

  • SHA256

    04ee21eb8a0bd44b83f307ba0c8da3d4711e9399837f60f7d2615d800f1b1dc0

  • SHA512

    dd66d3111c7466f1615bab4dea5c26ec1ae231f677c6228de1dbed3a4032d2eab2c85d6898c5f5a0f3b392953de9196c370589a31c312d7d24fdf5eeb0b7f25d

  • SSDEEP

    12288:4o84HwbjHD8wE8nZ/JsjzIQciOu5uoAesNBZbnbjfc8vy4hf:4bswb0wdnxJsX5u0sNBZbs86U

Score
7/10
discovery

Malware Config

Targets

    • Target

      c2a4d9b2efc6bb2a139f4a1040b2aeca_JaffaCakes118

    • Size

      645KB

    • MD5

      c2a4d9b2efc6bb2a139f4a1040b2aeca

    • SHA1

      9b7b4859029596dda1023c2c34fc7e6a64ed03db

    • SHA256

      04ee21eb8a0bd44b83f307ba0c8da3d4711e9399837f60f7d2615d800f1b1dc0

    • SHA512

      dd66d3111c7466f1615bab4dea5c26ec1ae231f677c6228de1dbed3a4032d2eab2c85d6898c5f5a0f3b392953de9196c370589a31c312d7d24fdf5eeb0b7f25d

    • SSDEEP

      12288:4o84HwbjHD8wE8nZ/JsjzIQciOu5uoAesNBZbnbjfc8vy4hf:4bswb0wdnxJsX5u0sNBZbs86U

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/rqhmrkm.dll

    • Size

      166KB

    • MD5

      a47f60a06797160922a0ed41b3c1fdf4

    • SHA1

      e275de7c9edcd30aa837ad44198a6ddffc2b5849

    • SHA256

      e5328c3cdabcc69dace5be3f1cbc93c31a8c0a540fbddf354b8d0d69aa3fcf15

    • SHA512

      2d0858375b04201f0df1a12f67089c896ea89107a9785785302bae35b1fbe4abf55a4a04ab8afc1cff33c95ddd5b258d56c3109d9e973d8b18c535726dab1ac3

    • SSDEEP

      3072:GMe48pQMrqad5/+muCdsNMgdLXA+2U9sexax6:Le48GMPu/CsdLwwQk

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks