Overview

overview

7

Static

static

7

tool/NT启...��.exe

windows7-x64

7

tool/NT启...��.exe

windows10-2004-x64

7

卸载程序.exe

windows7-x64

7

卸载程序.exe

windows10-2004-x64

7

安装程序.exe

windows7-x64

7

安装程序.exe

windows10-2004-x64

7

�...MU.com

windows7-x64

�...MU.com

windows10-2004-x64

�...LP.com

windows7-x64

�...LP.com

windows10-2004-x64

安装前�...��.htm

windows7-x64

3

安装前�...��.htm

windows10-2004-x64

3

帮助说明.chm

windows7-x64

1

帮助说明.chm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d58cc5062c347767e32bcf1edf666476_JaffaCakes118

  • Size

    5.7MB

  • Sample

    240909-dgh3js1cre

  • MD5

    d58cc5062c347767e32bcf1edf666476

  • SHA1

    23dc891a491efa954ff623326412ef1e85dcd698

  • SHA256

    e0ec0e217527542e8a88b49d333866d88b09547836476510b557c332353bdd24

  • SHA512

    50b6bfe50d6dde3c50197f6df9bc36899dfa32326ba9d16a67677f245bed310a860a63c1f00b0b98ade536ef66049bf778e7f432c2b7532129511ea6115fbfe1

  • SSDEEP

    98304:Cz2HtNSmP608OsUc2wXBBZ3ybhFNv/vC6O/MBvc0LCRg1ajYevKgED6SBIP4Qoiq:XtNK0m2wKFN/q61NceWgOYidED6Smwoq

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      tool/NT启动菜单增加&删除程序.exe

    • Size

      138KB

    • MD5

      bc370e132301f5b49e4e6a89d69ee0cf

    • SHA1

      0c6122e02cb7757ad657825ea79fa1b0541d9ec2

    • SHA256

      77c7e2c9f9ad91aa8b764d871190c2e345412fa9fb03aef37e6a25e7ed48f12a

    • SHA512

      5c7986d1a9a91242e5686da40ef8ba9dc56cf7141526f0a095d9d71d43a453ab8b82ed455756778def35458bf72ef8f3f3c1c94362b01b664759692bf2f003ea

    • SSDEEP

      3072:YTws+ddbY26eTKcd4rXCZUZuZwtIUW2uP/VZnHuqio:Vs+ddbYMKWaCZUZY1UW2uP/THuqn

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      卸载程序.EXE

    • Size

      87KB

    • MD5

      33a10f822677a8ed05f6e9a966f3a496

    • SHA1

      2110f787bc8005254862b6e08ffa502e91723803

    • SHA256

      a18663f7e02b24c18d83e355569490065900a031b83971488bdc8e0159ec2d5c

    • SHA512

      55f0a6c4674fd446af6799ea4f62e13c75b42bc0664eb601fd2982918e7756613ce5c60ccbc2b93bbe7eb1e9ad08539a500dc43ff0ba84aa4a85607605a60f6e

    • SSDEEP

      1536:BqXR8Awu0MD6dd4kY2Gsz6QH6GRD+qF0n1jaaYBEGfQC6e8pS7m5+Q4:YTws+ddbY26eTK0EVe/y5q

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      安装程序.exe

    • Size

      86KB

    • MD5

      e8a8d609356ae5bda69856cc318e46f6

    • SHA1

      3bdcf96b453145afc32f1ced8df4f744061c7f5f

    • SHA256

      99f85e95b47be08f814827d59e7ef263bff0f2510c3fcdaf35f9146816a1ab13

    • SHA512

      d5d329100498d2efe485d907a542bfe3067ef394b924902ea0947b219ac56c2d3860d52f273791f89cd05703a8ca104b5c6187c08697cdcee99ec9b4be06bfd2

    • SSDEEP

      1536:BqXR8Awu0MD6dd4kY2Gsz6QH6GRD+qF0UjaaYBEGfQC6e8pS7m5+QakV:YTws+ddbY26eTK9EVe/y5kkV

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

    • Target

      ̰/USEEMU.COM

    • Size

      9B

    • MD5

      d1639a92830bce53c08503e735d6e83e

    • SHA1

      e9389e0ab3d19c3b735de9a71272cac49a3d3171

    • SHA256

      7ed1bc9a9eb037da9de39a9cf9d974c939db8296b940dfabd68f3e66050c6003

    • SHA512

      130ea933ac8b18ed2af08eda442e23912cc2732f354614a7fdffe69ca2ee568cfd8b03f42eccb6825983f01015a52fb529089973b6eed9c4b919622b5266bf10

    Score
    1/10
    behavioral7behavioral8

    • Target

      ̰/USEFLP.COM

    • Size

      9B

    • MD5

      7fa95280aa53b4c381e909023da3201b

    • SHA1

      7ba31d70070f1ba1a7e068f4b260642eff965cbc

    • SHA256

      60e2395d777f88bd6f5d7c04641e1d2f9636761e8b52711c23056a24aa9a46a2

    • SHA512

      cbe530c1d26654a917b1a3f9314e944609b337ef31a48af8658b40fde2b2972193610144596f3ba3f15f4bce810143a23bb05be26e421f2c72c41c74b9746ac0

    Score
    1/10
    behavioral10behavioral9

    • Target

      安装前一定要看!.htm

    • Size

      2KB

    • MD5

      d4f60fdd5144fc67b4eb71da30bda1fd

    • SHA1

      7b744db5bee27138d8c5b1d01755918a96c0136b

    • SHA256

      071c6be7c1959924cd3cbd955cdda31960077575adc975ec11e18bb184200cac

    • SHA512

      da339b1735aa22ea3e0a4c87f7aba6db945e2222368fb797a4fb6f8bc585dbc2cf1b71091a472cedaee36a55ebe23438b478d64564119715f90dcd61e14712e3

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      帮助说明.chm

    • Size

      374KB

    • MD5

      f95570334a8f7122196f30edf7f00493

    • SHA1

      52fecb6b89a1af9303ed0dc7b7e36a1db10da1d1

    • SHA256

      595608955ea6c2751455579d8aa6baade0652e1cc3184c06690f15e33ad77b38

    • SHA512

      15084299e5f9a540331d5b30724698472c5b264b45ebe8df4f8f0ddbaed9d468b817ad1618518e8457bcfa2e1cb8ece77b66c57b98152ac1cdfd949b13abe173

    • SSDEEP

      6144:WONfW3O+BGQxIoFgp2XgdXOz/thWeXNGM4z2Rg7FsBa0GiT3NVmTvi0rH+5wCGXH:nNe3O+BkG08gODXgMLm7FsJT3NVyiiN3

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks