Overview

overview

7

Static

static

3

d640e9e8ec...18.exe

windows7-x64

7

d640e9e8ec...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...jm.dll

windows7-x64

3

$PLUGINSDI...jm.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    d640e9e8ec87cdda2671c08512ed3cd5_JaffaCakes118

  • Size

    713KB

  • Sample

    240909-nz6axawemm

  • MD5

    d640e9e8ec87cdda2671c08512ed3cd5

  • SHA1

    2bb8d8c4e87265de899b84b0d2a36b1531bb18b3

  • SHA256

    23baebd0a8aca88977a53569a94e975538a381b58b742c4383e95185d894ba22

  • SHA512

    99c4e84c2e907a7ece32041abe7f3db6d6735bd31f6c1d09db176a3851fac6924c68be42cb3da35c18bd3500ac6e179bb85e5010dce2dca2ace043aa7f6d70b3

  • SSDEEP

    12288:ftEfmiR+RPkJ0Nx5TFLT/mCj4zwMfskVK6VKvU+4zZhoRfKlKs7I5UsMafc8vy4S:f/JNxdFLL9jufJR1HTeKlKaiVk864G

Score
7/10
discovery

Malware Config

Targets

    • Target

      d640e9e8ec87cdda2671c08512ed3cd5_JaffaCakes118

    • Size

      713KB

    • MD5

      d640e9e8ec87cdda2671c08512ed3cd5

    • SHA1

      2bb8d8c4e87265de899b84b0d2a36b1531bb18b3

    • SHA256

      23baebd0a8aca88977a53569a94e975538a381b58b742c4383e95185d894ba22

    • SHA512

      99c4e84c2e907a7ece32041abe7f3db6d6735bd31f6c1d09db176a3851fac6924c68be42cb3da35c18bd3500ac6e179bb85e5010dce2dca2ace043aa7f6d70b3

    • SSDEEP

      12288:ftEfmiR+RPkJ0Nx5TFLT/mCj4zwMfskVK6VKvU+4zZhoRfKlKs7I5UsMafc8vy4S:f/JNxdFLL9jufJR1HTeKlKaiVk864G

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/fpeoxjm.dll

    • Size

      153KB

    • MD5

      5c8a5d3ca61485520928cb7df9e73463

    • SHA1

      1e5acf1f31cd341b33e9e93f39cacee6f563069d

    • SHA256

      cc583983cec180065555a1122bffc8fdfd56f449c09a33295202616af497c436

    • SHA512

      7102453fdb9aee55d07a0535b9e3eec59450a959cf7f4f120d27410502a062699ea58e2d933cc072790467aee3c9eeeea14453ae826751a29117722bec458371

    • SSDEEP

      1536:G+1n9M9GRwN24gkykW/EEZsu0IXYKFhijQZ1Dyfs7/K0Xg8XmiXSPRzh8CAdrJ+c:GO1m+ycrd/bXg83XETAFm+AG/Xsro63

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks