General
-
Target
c986293b6856e0aa40ac61e7bf435689_JaffaCakes118
-
Size
562KB
-
Sample
240829-ynec6azfrr
-
MD5
c986293b6856e0aa40ac61e7bf435689
-
SHA1
64480a751cafec4617526885f2e567fe2a4bff64
-
SHA256
213631c392e3e213eb617fb891cf87531bbca107370df1070b4a51ac2f6b50ac
-
SHA512
5f2461abbdb0aedac103dac57883d116cce93b65caa60dc439353947a7e9c1f52b73d189684afc779fbb1f13d5b139a9e049e4f80157624e1bf10ce0fdb41ccd
-
SSDEEP
12288:NlmtMo0Bz9iY8VWRCeZuvW+x9oLuf1J+5QMRblpD5ohXu:zo0BKWRCyL+x9oKf1JqQMJlpD2u
Malware Config
Targets
-
-
Target
c986293b6856e0aa40ac61e7bf435689_JaffaCakes118
-
Size
562KB
-
MD5
c986293b6856e0aa40ac61e7bf435689
-
SHA1
64480a751cafec4617526885f2e567fe2a4bff64
-
SHA256
213631c392e3e213eb617fb891cf87531bbca107370df1070b4a51ac2f6b50ac
-
SHA512
5f2461abbdb0aedac103dac57883d116cce93b65caa60dc439353947a7e9c1f52b73d189684afc779fbb1f13d5b139a9e049e4f80157624e1bf10ce0fdb41ccd
-
SSDEEP
12288:NlmtMo0Bz9iY8VWRCeZuvW+x9oLuf1J+5QMRblpD5ohXu:zo0BKWRCyL+x9oKf1JqQMJlpD2u
Score3/10 -
-
-
Target
$PLUGINSDIR/Install.dll
-
Size
237KB
-
MD5
b193971d6d8885e05418c0730a0e21f8
-
SHA1
7f3333c30cd2ea7a4223525776e1d74f74640d9d
-
SHA256
2c4b83ba9afb7ee68de7c25fbf6627d312c4128f3078d09a67a5ce2981c3bc41
-
SHA512
99fcba6a4d0503a5018a6d7adaa138a741063365d2dab4b240448d6d759f4264f0453f405fb691bbd7248eae4ff4a3b3b6e0672dabe429e4a00570af22d66dcf
-
SSDEEP
3072:Udx1dB2+CCJJKRDi/bUnJXWZr0ge1GbPelZlXs6QmtiPZVF5l06UzIPe:Udx9JJFbeWLPelpdUZViI2
Score3/10 -
-
-
Target
$PLUGINSDIR/LaunchHelp.dll
-
Size
61KB
-
MD5
2877e64cb1e195b36ac398b14b673b66
-
SHA1
418cd5728e01554f4f3def01c50f0e63347b45b4
-
SHA256
8240c3f0e43695f32a6ad969dc0dbd12721c697e66056d104bd4a265284bf85b
-
SHA512
7fe87828f011229271c774cddd2bc9b3814a53451a5a2440ef9369032792c5b1a66578ad5547c5ec43c56d06049ff8455770d2a8957f0a3ceecdff59f9757dc2
-
SSDEEP
768:TnBXbBAirLK4lnwD8R/t2Ymim5Tx54uhLibcy/Y:DZPdwDIVr05Vh+cyQ
Score3/10 -
-
-
Target
$PLUGINSDIR/Resource.dll
-
Size
197KB
-
MD5
e651de347cd20c882a8c026151f70786
-
SHA1
96a64c71ff035ba541197879e1e2a6582391035b
-
SHA256
92e7927def8e11331e67a3ee2d951cfbfab341db4b31b4bc486270aa96762c0a
-
SHA512
f8e6ef00e510292438e1ae7510849a542453e749337d29a22c497b5fcb3252a28e09ac721f4e38969151ca259e4bcec1ca996f9549408e4ec69b3f533b1649ee
-
SSDEEP
3072:1lH6No1BHfNQThVy5mUZVG5JkVIM9OKrUC7R2:1laNLlVIlyM9OKQI2
Score3/10 -
-
-
Target
$PLUGINSDIR/Setup.dll
-
Size
97KB
-
MD5
d3d75ec4578085c3c9d1abcfad692b4c
-
SHA1
56f9903cc6e103b136635b62081207626fe1b9e3
-
SHA256
996c276cc47c0361ebcd9d560e677c7b9cef7085c983de09aeed5199240254c6
-
SHA512
afd6a493b766a233d55ea48710c1819786fbd410f0e791502be1f38c8c77e6efeedd497f58e89af8dd92ad1fca58586ec55f74f0fd812cd45799d6b3755d5e6c
-
SSDEEP
1536:z8F1jkZ6MGOH8dJi367wDt0YCWylSvN3MIlXbzkMev5WB/E4+ch:YmN36xKZbG5WBv
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
10KB
-
MD5
05e52213cfa17dee760186462a9645ed
-
SHA1
f6d5e82080bbba65db7d54e89250c95af833aae3
-
SHA256
d9d3ffa4c7d7a152f435f4777e72aa1b6a6c0555f277e59eedebc587c3b66ba5
-
SHA512
586eea0bec6345b437667ce528bc2396427dd444a396456e38046a8962e92a52e7ee62b9f6c97f41bc1fb4a1b3905a302d6f7055e26b84e60709ba3b416ad172
-
SSDEEP
192:GOShJI/rmOAIPkWpUybQ9WhP4t5Rwc89XbubZav5:X6OAOkWWycGP4XRwc2qFav5
Score3/10 -
-
-
Target
$PLUGINSDIR/inetc.dll
-
Size
72KB
-
MD5
db6fa5497746c30f657d4f5273d4cf9d
-
SHA1
097b939914f2f12f5cfb7648359d0c6d95deb0ae
-
SHA256
c7d9989d927b4e0622983bb1fabe26d0c8a45c217b93f837e1855af76edb040a
-
SHA512
75d19d6161ac4648855b197ff02e326bd4b751e00e3ebbbb054124af50f89827c0f7676ed7ef6f8613f0027e999720229e2ebac28f156e57993d83bc7f318558
-
SSDEEP
768:wMWMshg75NF64QY04Xod0YmS4uYjHIyUg5luHT3W/Ipz6BTpeRpl/i5kUykfIq:washg44k44mnjHIigHTW/Ip0TpMy5/
Score3/10 -
-
-
Target
bin/11.0.264.0/HBLiteSA.exe
-
Size
751KB
-
MD5
0c1dfcd68614aeaacb8c873e7f1a4553
-
SHA1
d48e3b35f757ec954fc47e28dcdfb5f27a625771
-
SHA256
47a3a5ff3188250f893ea70a9bc8922cead134519112b1ce618b2bdbd7bcb0d7
-
SHA512
ebf9180fbf659b6999d89ba6469d7f0458acde811d9d095d4dacb3b31f7ad2d92db1a0916a2953daf4e7c8fb3f34adae5726dc3cb08a960a5118272ed8fe0449
-
SSDEEP
12288:Cf9MQa5PJzYsFZH3M2neeHpziD5ZByjQXiG58T/JxZ:C+Q4PJ5FZH5neeHpzi3ByQiusxj
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
-
-
Target
bin/11.0.264.0/HBLiteSAAX.dll
-
Size
309KB
-
MD5
43530c2e30be20a560db358c5e6d2e29
-
SHA1
48ec5c16fc5fbf4f50cb23dd6830bb7a78d3681b
-
SHA256
21d984e9f8acdd6f51bccd464efe2c956ca406fc751ae0ff776cf11702d9ef92
-
SHA512
515758e6445a257c576d53281e960415b46c0ebf66cb81998b927e270a5a296b3dae52ef57ff98204fc55b6c41dba6d12d2e5e9b61030a447479b647fe59bcbf
-
SSDEEP
3072:YhwUll8wD9DPh8wfQCFFWQLNg8WqcrDXB2pAGxC4KKgFUizTjmI/+K63xiRSC5PW:YlBN9Wq2XkpASC7vOxipNWj
Score3/10 -
-
-
Target
bin/11.0.264.0/HBLiteSAHook.dll
-
Size
161KB
-
MD5
55de9a2f549e8623e6d3a50d6b5fcad5
-
SHA1
e76da4711c9f1645ff6c693d4223be59583bd6ee
-
SHA256
f41b01a4af3752300db2464fc7809c6d07aa33eaf4d35aa6a4107e080a69cca8
-
SHA512
89a05426816217eaf331ff9d2bc71a76716772b5f786ba10d487612370504e6735d9ef314adfdedf2bb8873d2f5fd5c0505f88aed1284c764af54d76c046337b
-
SSDEEP
3072:Yxqe+1qMaH458Y22yBdtUiIBKSk05J5X/P48:YDtrPiNV/3
Score3/10 -
-
-
Target
bin/11.0.264.0/HBLiteUninstaller.exe
-
Size
26KB
-
MD5
c637d83d642be1bae4d5df11fbf55d10
-
SHA1
e9e9d70f2b53079d83415ee3272fea5e4452b0c3
-
SHA256
129c8b96e7b71d0a9b4ca452b50e80dfc301f1da3b75af4df841303a2008208c
-
SHA512
722b77f688512546c9ae09e8f9a537e563c1870c482187a2422e6ff1fdcadad91f41314b8c676dbb85d682042634733e09433f2c07910da4c946276a8e75d5db
-
SSDEEP
384:e0jHhPYxYaeNdDR8xvAxgT7RIVm163XtsR9RAVrvR1GrwFoZVhc4IVGyipbDQSXg:eQSYaefDRwYxmDTR9RAdJF4cZqF86g
Score1/10 -
-
-
Target
bin/11.0.264.0/LaunchHelp.dll
-
Size
61KB
-
MD5
2877e64cb1e195b36ac398b14b673b66
-
SHA1
418cd5728e01554f4f3def01c50f0e63347b45b4
-
SHA256
8240c3f0e43695f32a6ad969dc0dbd12721c697e66056d104bd4a265284bf85b
-
SHA512
7fe87828f011229271c774cddd2bc9b3814a53451a5a2440ef9369032792c5b1a66578ad5547c5ec43c56d06049ff8455770d2a8957f0a3ceecdff59f9757dc2
-
SSDEEP
768:TnBXbBAirLK4lnwD8R/t2Ymim5Tx54uhLibcy/Y:DZPdwDIVr05Vh+cyQ
Score3/10 -