04318200fe8d3373fa36e443930adf95e03aa647cbf2462f72099365dc61d7d9

Sharing

Copy URL

Twitter E-mail

General

Target

de28ddbaf7a8f22d4ad1b12d32e18b18_JaffaCakes118
Size

4.0MB
Sample

240913-lss1wsxbqg
MD5

de28ddbaf7a8f22d4ad1b12d32e18b18
SHA1

268607063573788d36340651ef8fa371c0355f43
SHA256

04318200fe8d3373fa36e443930adf95e03aa647cbf2462f72099365dc61d7d9
SHA512

396c7f05c06127c8cf0d9ea9b23b4ac9c6281623ecd5893827b42ad3524da38693b92bdfcbecc90d528db83576f8403089e1afd00a8235f8e95ac87eb171246b
SSDEEP

98304:ufQr4M4/LwNMAc2L0e0Q0V5yg/SMSxBeAvfPWeCfz:MMCENMvi0QYYgjSxBDmeCfz

Score

9^/10

discovery upx

Malware Config

Targets

- Target
  
  de28ddbaf7a8f22d4ad1b12d32e18b18_JaffaCakes118
- Size
  
  4.0MB
- MD5
  
  de28ddbaf7a8f22d4ad1b12d32e18b18
- SHA1
  
  268607063573788d36340651ef8fa371c0355f43
- SHA256
  
  04318200fe8d3373fa36e443930adf95e03aa647cbf2462f72099365dc61d7d9
- SHA512
  
  396c7f05c06127c8cf0d9ea9b23b4ac9c6281623ecd5893827b42ad3524da38693b92bdfcbecc90d528db83576f8403089e1afd00a8235f8e95ac87eb171246b
- SSDEEP
  
  98304:ufQr4M4/LwNMAc2L0e0Q0V5yg/SMSxBeAvfPWeCfz:MMCENMvi0QYYgjSxBDmeCfz
Score

7^/10

discovery upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $0/AWF.cmd
- Size
  
  666B
- MD5
  
  0af9ff8d8313fab8e535ccef4c8db10a
- SHA1
  
  968b503a28c2b921ff79d49d2996f361b3e6a494
- SHA256
  
  150afede0368d115bb26787e98aa9148335f20053791b9953e4ba4b23ad64130
- SHA512
  
  df9ad4e3e98bcb7414a0b767b325b48379aaf5598bb4874ada22a72343b4f6503f9a4b82216ab8aaf327e524debf6c891708e175076038bc8ca9666046818339
Score

1^/10
behavioral3 behavioral4
- Target
  
  $0/AppDataFile.cfx
- Size
  
  72KB
- MD5
  
  bde1fd2afb5c97e0b5124f3585959e7c
- SHA1
  
  ff1e324f394236c6f3840019313c83b7b2d2dcca
- SHA256
  
  58e2d2c467b61d813cc501ab99dc3b1ec772ad603d0fdb5e257a2da84d17eac4
- SHA512
  
  3b8948544675dbf6189c8e81eb47309985fc43f7b3c01f781ff7067c12e80f0f3dece29da75ab4c5adfb0feaf0d1d9bba896ff258258fc7b4bb08fb8b2538bdb
- SSDEEP
  
  1536:JJWqRYWZs3S+ZOdk2Meb6dCsR5CK/uVPQRKRJxbvwM:JTiWQR1CsR7xREDbvwM
Score

1^/10
behavioral5 behavioral6
- Target
  
  $0/Assoc.cmd
- Size
  
  4KB
- MD5
  
  3364a1267717ef5108004ac7e8083e9c
- SHA1
  
  1bda258eca5783ecac14a8e43672625d5b035f8b
- SHA256
  
  7350048eec1d07923e8f79f300f693a2e38c23d1cdaf23075b09b5a0ed56503d
- SHA512
  
  d5ea6045f943f4e92a0cab1adc3fc5e95487f582e87193a6d5afd7a0fe7d69a37da62a7a6ac20f750a63cf20cea34fe7cefba2f0cbfc539829c17d0cd52df316
- SSDEEP
  
  96:lPm3InNxXEWtI+jXJKj3bz9qA3FziF36irm3HaUCGjBz9FjLqLnbl1jyu4My:BxXw+LJKXQG10rjyZ
Score

1^/10
behavioral7 behavioral8
- Target
  
  $0/Auto-RC.cmd
- Size
  
  5KB
- MD5
  
  4de357c04c6419e720eb200800bbf4ca
- SHA1
  
  0b0ac7c361f9de9a2740e4929bc5b43a3c11e22a
- SHA256
  
  16d7762055b408135f89f9911cb4cfcea7eacd9bb93b1def7e5ac04a20adc9f9
- SHA512
  
  2ff7a0b635cc9a7787ef243465472e89a99eccf4bab2fea893167282e4ee78e0e411331416240f523b8274f383f4ee56095823a00ec9a6a28f9274eca0d5353c
- SSDEEP
  
  96:ISUakRPoFOO37MMWjkIJEW93k13jS3n+3Tyh3zRA6eM:ISU/PE8F
Score

1^/10
behavioral10 behavioral9
- Target
  
  $0/Boot-Rk.cmd
- Size
  
  4KB
- MD5
  
  53931310c2d416ac3e05a63ec70ae9ac
- SHA1
  
  fa4c40888c82e0f949230ed95fab62d7343551c2
- SHA256
  
  9ea9374460e13a9b8247a0c2bf7fbf3812d4f10ea28cb1872c922689e72641ba
- SHA512
  
  aaac518a81fee8e3309a2d849c89db4589da8f2e8b042b1f061aaaf5ef54bea178a1289111659339e9541089644863931e76768b2e7eec26f0e0e04409941356
- SSDEEP
  
  96:oOJrx4mGWjbYLmxgshuNOuckCuNuguIunTBuNuI6NJ:LSAxWmPW6NJ
Score

1^/10
behavioral11 behavioral12
- Target
  
  $0/Boot.bat
- Size
  
  8KB
- MD5
  
  76cfb322dfe414bb087394b008e434e1
- SHA1
  
  8488001331efb63bab1ede75a8a7546e0194d397
- SHA256
  
  81304c4c20b842f4955dddba235020201d771727a65ba61e853e6aa3c1a45fac
- SHA512
  
  74816199dd6f252034e3abde3a75074494ae04e317af98d7c4e50e2f5a31469ef88a1cb456d640939c074b566c45ff862f46cb232854e96fbda5d86e41c52d82
- SSDEEP
  
  192:hE78sBp9qdDqgIm9gh7AqNpUklOodUivk5qZ+sTS:hcBp94qgImeh7jAklOvivllS
Score

4^/10
behavioral13 behavioral14
- Target
  
  $0/BootDrv.vbs
- Size
  
  875B
- MD5
  
  602ad0a844220d0dc431dc77c0e1a322
- SHA1
  
  8aec04633f6248c932a46ed487d998d10762434b
- SHA256
  
  9c79039a69e206167a13d20ea9ccb5bdcaf02111c000e5fb65b1ac5aca0a762d
- SHA512
  
  45267f257da2e3f9b8bdd4712d588f824fbab73e848105eb1d396f2228e51cf155694c1627fcc900e095f36cc8762569ccc90e7ab206b729270d8bab24c95d3a
Score

1^/10
behavioral15 behavioral16
- Target
  
  $0/CF-Script.cmd
- Size
  
  30KB
- MD5
  
  ac1665779e80dc5aedc922cad0f062d6
- SHA1
  
  8cdb2f75955459fc8856d0e16fb039c97caa118b
- SHA256
  
  0bbb122ffc0850ba2fd8d992f9fea5d265ab6a165a0d0c667e4631979bd568c3
- SHA512
  
  87095896f874162d3365299cf3d618e5faebb9273d8393102f6298bb33b2a9883e030f25377eefd7c0777cb2ddf0d4eb3faca1b7194a6232dc5f32240671437e
- SSDEEP
  
  384:W9CYZKLMxzl6tU8iUQSryIMxkIsBIpZLPWKNpTO4:W9CYgLMxkK8iUDybsBIpZLPWKzTH
Score

1^/10
behavioral17 behavioral18
- Target
  
  $0/CSet.cmd
- Size
  
  1KB
- MD5
  
  0b8feab462b9004e0ce1babe99775600
- SHA1
  
  49ff272a59602402d7663529200531faac0c2bad
- SHA256
  
  8841d40f500a5dfc8d693065e40de9ddc5cea16f0914892cdc14c4e37637cb3a
- SHA512
  
  d1ba3cb11edcbb2ca16548853637e8dfd98c7a80b32d06847fcdb1c2bb61559cb3e48bf6f4ab41067f0c456592a7a2b3886a933c301217f5b74fb1795f730614
Score

1^/10
behavioral19 behavioral20
- Target
  
  $0/Catch-sub.cmd
- Size
  
  1KB
- MD5
  
  bcef310908bdcf3c5029a5c22fc44e8e
- SHA1
  
  8be00a8d886a8bb241ef6ad523d06bbfa04cf336
- SHA256
  
  5f617a3daee71abfe574afff763928f0839e210bcc0be7817ecf1886e2489a66
- SHA512
  
  1ce53f87fd937168b9e4f7af32bd4b0ec46f77d2575bfb10cb6db4c1de8489367e79caa4285861981b0e9f2b13f7395c8c9e3bf23169af26863d01c4ce28bc70
Score

1^/10
behavioral21 behavioral22
- Target
  
  $0/Combo-Fix.sys
- Size
  
  1024B
- MD5
  
  9f22aac35c7d133eefea8d297a67bf92
- SHA1
  
  5e490325534e2aa2534c22d36a9f03dd7a5a8fdc
- SHA256
  
  8c2c9afc84e0180a3907a9fb42c4bf84ffc924326c7a4969e89c0fa372409f08
- SHA512
  
  785d574c4fcf6b6aea00d498d66068d6a4fa07df8af436f408a281fe734d44e1e3982fda5f433c831571170108e7da646effea142ff8f4c703005b67a20a0f23
Score

1^/10
behavioral23 behavioral24
- Target
  
  $0/ComboFix-Download.cfxxe
- Size
  
  230KB
- MD5
  
  3df9e0775a9e3fc113f4d9fd0d4a14c4
- SHA1
  
  f1f73486ca8f1eb2f179eea267f8218a2066d71e
- SHA256
  
  838c0e609e6adc1359505cf6e7427fce3e55c6efa17085627fc7e820103ce14f
- SHA512
  
  5b7d1c8d5fe0088750fa55b9f21da6ae6ef8e82a0c1cfc11b9c1fe8423fbddd051e20d3f53a5f8532252d7406d37e84cce1667371bb54635996c55824c591300
- SSDEEP
  
  6144:4/V3rs9X41vEwJYAzSqRKpYeVliFmWrXsFSyGTBVVf/fOMZ3iulsF8G+2E:ChxJnzSgGVgc6skT5/iuL
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $0/Combobatch.bat
- Size
  
  8KB
- MD5
  
  9b62bbcc4d42f61d9c7d085d37238dec
- SHA1
  
  468d001da4a1b586e7bdd4e53056c8686e858a01
- SHA256
  
  33b5cdb94d7dfa6a9e0c80c4e89b52aece0c7edb4a1ad6ead75769d44c462400
- SHA512
  
  12e70c13e404c03a6d378babf47c2ad2a023e92a98f3ff711a750e51eeac630c7011e9814502093f7aae5274976731dc5af560f7a4f182af002080743c82daa8
- SSDEEP
  
  96:N+lx6aT1yZrxUTb7W7q2DJq2D2mTQBO5XQT3Ipj1ByXe4tXm9RIOEggZUkOeNvZU:Ax6re7W7HrwqXjDwe4gEmwOs4
Score

1^/10
behavioral27 behavioral28
- Target
  
  $0/Create.cmd
- Size
  
  18KB
- MD5
  
  b821bf236cb655c407df6131be8b9ebf
- SHA1
  
  2b8b0d3e2d765dd5c0c924ae085de7083ef5b5c5
- SHA256
  
  f144b3ec8d2a07632e3ab614e0f301aabbde9aff6dbf5cb25f2a119a2743adf5
- SHA512
  
  5b53a00a93f5b78a58936f965284593a099bb8561cf81b7b53a38663fdd96e54fe7be01990732d55435866dd0da154f45c4d9f48ba0bc47f7ff287cbf57c1e85
- SSDEEP
  
  384:rgn0eXAk0+yxdK3qL8hiIRmcAQIk75HyH0dWU1SjEEtkhG:0ZEV
Score

1^/10
behavioral29 behavioral30
- Target
  
  $0/CregC.cmd
- Size
  
  3KB
- MD5
  
  2e9b9e3ac77103e691c69c9778f381a6
- SHA1
  
  089ad5a72b6970b21c2aa8437f16723c64e8a413
- SHA256
  
  30bf31c63c09db498bfc48203ca7c9f6bfc32e31f528d9ae4d074217f187ad2f
- SHA512
  
  97918cae13cf4e48aa546f0a46326e58c81cf85731ca7b8177ff3640ddb412c4d5a7b3da44035001cb15f25b25ed6f0718c32b387c080934ec354b0fff6e9823
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32