54fc27864211f75a83460de5faea593fa6fcde0254020057287d5b35d8724a03

Sharing

Copy URL

Twitter E-mail

General

Target

dffea3bbd7ac4eb4949263af53bf6cda_JaffaCakes118
Size

3.9MB
Sample

240914-md41aayfkn
MD5

dffea3bbd7ac4eb4949263af53bf6cda
SHA1

2b4b7f23dcbb2ffcbbf85727c7eb3a75b54662af
SHA256

54fc27864211f75a83460de5faea593fa6fcde0254020057287d5b35d8724a03
SHA512

cc1dfaa247aad81f2e4286b5bdabc6f0b7b55cb4d99602620cd900d7bb4e3834586c0d53914731717a65a074061e71f75f3db96ec84a12b776195eb5d1f5bdd4
SSDEEP

98304:B7k0BhZh9y7Ug/e9cjehfOTEUZbOFfKccCCxxVCzTYfY2l/Y:1htyAg/LelOLZi1s3VCo9/Y

Score

7^/10

Malware Config

Targets

- Target
  
  汇博计件工资(2005-03-16-16-02)/Common/UninstallPgm/Uninstall.exe
- Size
  
  215KB
- MD5
  
  d8714c3a79ebc734a1aabc39502683fc
- SHA1
  
  5a305f12be2a13903b75bacaef50180182ba589b
- SHA256
  
  143774edfd463716240b7b7be77559e500d540355b224ed5536a57fcf49589b0
- SHA512
  
  d164195155c4b0cd26716415ef10eaf55d14868c1ce307cbaa27eac4e5bd2adc775fc14e1e9fb2f531fdb943dc9045e4e73e85faca1d1e9bb19fb009e4359fe0
- SSDEEP
  
  6144:h6IGu/dFT+GraMJgH9kA5u3LXl5JSw1ZxZDMyb:Pr+Gdgdv5ubXlq0lY
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  汇博计件工资(2005-03-16-16-02)/Console/Msi/Hyper_CSalary.MSI
- Size
  
  1.0MB
- MD5
  
  67a5074ca2b8464718a00c5f55f9743d
- SHA1
  
  1dd452c81ecacea06cf83a20bb4790f362d99a93
- SHA256
  
  e9dd12f517d4cd25638a0445056f8513780f07d716792f28637b68c48e9df4ac
- SHA512
  
  eb9941a73ca7ddadaddc56c1bc8cc309ee3855789c6d06c2c2f8aa5f379fed9f32e7cb498a58ae6fe2f295fbca37816be01398f9745c0b016742981c0d366aa3
- SSDEEP
  
  24576:INaXTzN9JSp2CfD49SSLyZGcvjSI/GZtSLLZaVk:INajznJC2CrPSeZtjstoZaW
Score

7^/10

aspackv2 discovery persistence privilege_escalation
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/GBMgr.dll
- Size
  
  273KB
- MD5
  
  3342ecfc6f36cd3582bbb8a7b238b7b6
- SHA1
  
  1622f6bce501eeeea1bdd3ba6d20311f34884062
- SHA256
  
  7b0487b746d25ee34bd5781dad8843a4bf7bbb998774de552365c8f6ea618067
- SHA512
  
  44985f3f229f4b7774fb86e25e3a1c316775bb8f9a8fe48031dfbe27fa75f138ed3a536a1eb3dbf18f7e987d81e4e438aa2b11693283f045570e39a58a6fe145
- SSDEEP
  
  6144:ob4KV04rtrErqpsmM3Pbu86y6DkbJLGYgXWXOPg7Mh1S:w1orqGm76JGXXWXOu
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/PSMgr.dll
- Size
  
  312KB
- MD5
  
  36ec5b141c90b03bbe4e50d300ea50a4
- SHA1
  
  bc2124f43e12f99eedfb8a4032bdc753a1b1c7ed
- SHA256
  
  765ee35de88e0d4cade0e985ff9c4bfca9ac7b78862e343a91d5ff133f8bc5e9
- SHA512
  
  97e66114b433c5c1ac696758f5db637a0ed51353727d55931975856613aaba70bbf9fe7ba26100901becdc7a87815e702072c0ddd69b17d35fe3e8467e611708
- SSDEEP
  
  6144:j1M7ddKp9jQeyockbmA6DpuZwallqKPL9VKHlWgN8ZGCoaXwbx:SAPQe2mNU8ZlZVKFzCoi
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/SMMgr.dll
- Size
  
  479KB
- MD5
  
  452d12c662da3e7e57e036b81f293298
- SHA1
  
  a6a3f98b16bea3afbb03b8643e9a9243f3b455db
- SHA256
  
  215f8c75776c4afe07141d6fff392d10af1475b8ca5d5cfccc7ad07bf2710519
- SHA512
  
  0174f90b9314e1547cb7a7bea57849f022d173fc6f63072ed3f38c5721af0c7156f88fd2ede9585a866d7ce7575845d1751920c3ba5f8a135244b5f91cd2481b
- SSDEEP
  
  12288:tuvZjwVETSjuKzhRgsu+znZ8xzl/drcHnX:tuvGVoShRgsuYZCe3
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  汇博计件工资(2005-03-16-16-02)/Desktop/HYPER_DESKTOP.exe
- Size
  
  1.3MB
- MD5
  
  7244024d83175540edfe17f2655ef33f
- SHA1
  
  23bcfdd36a5f76ad5a9ed3b58ddb914b7ac1a971
- SHA256
  
  062155b0a4c0c591ab61560bd6f21dbf234f936f1a1c11809d9b8471f7f3cac3
- SHA512
  
  de86c056b1fc0dd9ba27e9614b50cef852b85b72ceefa192bdaf66eeaff97a14db95244c436c944b9e45eeaf0b671295de298d04d047460da12f2aa41362959f
- SSDEEP
  
  24576:XoQXjhU23TAGB8EapKNiod4nxlAGcZKoFYuk3EPp6Bk3HxL:Xowe2BBZaENgxlggoFYuk0R6B4R
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  汇博计件工资(2005-03-16-16-02)/Desktop/Help/Hyper_CSalary.chm
- Size
  
  427KB
- MD5
  
  2321fdb183339cc9f6e79f9546fcc1b2
- SHA1
  
  abb0f8909ab22b9b0d6d8bf078b279ea162d8185
- SHA256
  
  1f15843cb4733204abc094c442cdc49553473a0bc549687f4ad5ab187ca894df
- SHA512
  
  a13f64825f1597064a56473f04d01c8ebba1de182fce59bce781082ec7bce01142ebddd6743520eedf4374a03f231be9682ade46f49167d01fd108c30f711017
- SSDEEP
  
  12288:wRsOWsdjzTC5fwz58rQo6J4GwN6sH6pQzGMY:V+NTCiKEEfN8MY
Score

1^/10
behavioral13 behavioral14
- Target
  
  汇博计件工资(2005-03-16-16-02)/Setup.exe
- Size
  
  287KB
- MD5
  
  f0f4b169a55232dd0d14bbc045efee58
- SHA1
  
  742fb1d7695c32bef753cf400a28ec604e62ebea
- SHA256
  
  5bb8f3036303a9c05502f6d5d290d0cd9e732317beaa8df712ec231fcc9ede2f
- SHA512
  
  af20e74f6a1847d295390c6d0800b9b4c24fb04f140efa78c6ac9177971b391ce3dbfb8454db70d54871d244fa8bb75672a032de41dfe48cafbbc9f3ff1d77cb
- SSDEEP
  
  6144:2TcGDp9ZFFqufHGbYUHAbVyzFD/JRPZq73S/extxUhHBb5Avr:SpHAYUPLJRF/q2ev
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

T1546

Installer Packages

T1546.016

Privilege Escalation

Event Triggered Execution

T1546

Installer Packages

T1546.016

Defense Evasion

System Binary Proxy Execution

T1218

Msiexec

T1218.007

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

ASPack v2.12-2.42

Enumerates connected drives

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16