d67cbe8331a8a7a254105c0f8564f675df3fe0d3d64bd0766f960a4ea44d3deb

Sharing

Copy URL

Twitter E-mail

General

Target

e88813111db8192fae42d27c88f96870_JaffaCakes118
Size

1.2MB
Sample

240918-hfee7axdkg
MD5

e88813111db8192fae42d27c88f96870
SHA1

d8afd9ce1b5599a3beceaad2a986be044d48fd03
SHA256

d67cbe8331a8a7a254105c0f8564f675df3fe0d3d64bd0766f960a4ea44d3deb
SHA512

f229155be9bc4ddeb26e80fa327ee532e5aac69e177a1bc44db2d68faca906260ddbfa3e77587705c56f5423a25954a436abb26b67d68b4d4834057ac26a9983
SSDEEP

24576:SAW90UtYVXawNtfh9gC6oad7hPj29oJN0AX+8N7Rgmp/D4j3Ogo:SATxVdNr6d7hSEN0AOyqO/Ej3e

Score

3^/10

execution linux

Malware Config

Targets

- Target
  
  5.5/gcc_64/bin/qml1plugindump
- Size
  
  84KB
- MD5
  
  efe2e25807628a5f5314fdda2f88d86b
- SHA1
  
  5330ee104aa6868567913f1b621a872bff8ed5d3
- SHA256
  
  8d9d1b281ffb468cb109ab981b446141a7d61ba343bdd3342bd8ecf4fc35a9a3
- SHA512
  
  037d511e9d5074579524212e843915efeafb615b322754e80283444e0fca83921ccaddbe7ef5d6fc55124f16c307bbd5b7e276e4845fbc785eee2522e34b1228
- SSDEEP
  
  768:j5BNbsJ5UMEC0cxG/NQRf7fXWKT+p/8ur7jzBQmbAe+CEF55zaib/iuTvnL8rWFJ:jPpKeBER+iGgL3XD0HtvYOFOPH/Vibo
Score

1^/10
behavioral1
- Target
  
  5.5/gcc_64/bin/qmlviewer
- Size
  
  298KB
- MD5
  
  f14a551f2c6691826f7cd62f6b0032de
- SHA1
  
  38ea05f8827f4ec15448a3080fe1af93f886db9a
- SHA256
  
  041e62fb7d08963db60ebb08df357ade07d161b92cdba98ab91901f9d7fcf7b4
- SHA512
  
  5cc4bd68721303f7c87cb232cefd2a1b78e1a51909b9561f2e497f925a2835e9d0d5219fe73e13e528f3f53d648d9f581883ac9dbf5e56582f08a8ab61d19ecb
- SSDEEP
  
  6144:vY4a9JyF80aI2N6MQaWjb6+qbPi7x/yo:vY4M0aI2Aiho7x/yo
Score

1^/10
behavioral2
- Target
  
  5.5/gcc_64/imports/Qt/labs/folderlistmodel/libqmlfolderlistmodelplugin.so
- Size
  
  40KB
- MD5
  
  23ced9aa31f77369153e884a30d90046
- SHA1
  
  799749145e0cdbd48f444c97a7d1f46d7f0b1539
- SHA256
  
  48ce673964abdd53e3123c43227c46563889eba9e41491607d941bf01930f0f7
- SHA512
  
  84d73ce4415bb8d6fd9da136d653148d20eacc4d25b54fbdfcd8b433033e9c8f33be85931102cf03f665abe7b65965d885ba1a15026272b7d99407bcc90e01b9
- SSDEEP
  
  384:8vGNpZz+EtXIeGTnE5DsyG3PuRxLWxAgUDEqkNFYqny1odEpJkAayfZtyAze:seQusT38xLSUYqkNFYAy1TPn
Score

1^/10
behavioral3
- Target
  
  5.5/gcc_64/imports/Qt/labs/gestures/libqmlgesturesplugin.so
- Size
  
  61KB
- MD5
  
  0401f9932892bc0d63b4f5fb32017aa3
- SHA1
  
  e1dde492b2b9c61104db4149ec52dc1e79d946eb
- SHA256
  
  6d51c91891883cd26eb98c75b686b1da107c9fdfdb38352db52f377ac1ff838e
- SHA512
  
  ae6be82a06eba320b0664effa8fb8743c76587ef38ac1ceec75e4e2bb537cb1ad3d56f9a1fb6b1deeaacb90bf049b87fbab79e7b8ba66e3f523d0c3cc8563515
- SSDEEP
  
  768:cmcdyQ8wrL2jEAZ6n9iRNBmk5oss1bQ1AXM2Wt1YxV5xU:cmcUQ88L2jEAZ69iLBmBJQ1AXMz4xV0
Score

1^/10
behavioral4
- Target
  
  5.5/gcc_64/imports/Qt/labs/particles/libqmlparticlesplugin.so
- Size
  
  84KB
- MD5
  
  b290b7c8bd562342116c8f50d1455c48
- SHA1
  
  8b614956deff146c3920553bdf0f5fe8692fde06
- SHA256
  
  e53c8d8dfd463930abc0e1178293a6cddfba9e9eabb1cdd591bf830838e0f304
- SHA512
  
  4573ea17e1e45c64b47ca986528f7b12c07d7dd84d5081b93644ba309a5a11a919abaf88481c08b995755bb33b3544738cc723bea458540699802ff30513bb7c
- SSDEEP
  
  1536:YnNvfQ2jEAZ69crqqebJHwvRQJIP5V80I+gs/k:QQ2jEAZ69crswZQl+g
Score

1^/10
behavioral5
- Target
  
  5.5/gcc_64/imports/Qt/labs/shaders/libqmlshadersplugin.so
- Size
  
  91KB
- MD5
  
  d4fe07fc7b828fc1897ac990d73c091b
- SHA1
  
  a03cbe6ad582f30b6821c9c6f3959d777b85cc4d
- SHA256
  
  b350e344c5b38c233c1745005c5687a9877582cdc3af4c66d41a83e18f77dbce
- SHA512
  
  5025a364eaff179f63b382f35f618f42d6bcaf4da5305468505cffb7608bea16d4b4410ff59c79336bc88d17f49910956ac8f480d71678a30173598f144178e9
- SSDEEP
  
  1536:uO2jEAZ69yph/yeWYuRzAX9h/XG9bwgbDe5D1scIGl1mlcJ:uO2jEAZ69q+NREX9obtX4D1stcJ
Score

1^/10
behavioral6
- Target
  
  5.5/gcc_64/imports/QtWebKit/libqmlwebkitplugin.so
- Size
  
  88KB
- MD5
  
  5d88f316da4fae97b1f483cab4aa9fde
- SHA1
  
  d113d08f1df3a36fba1c099a3836986457fc7c41
- SHA256
  
  4f06dd916dc34c9d0a635000f3ec32e07f69d36635bd47eb3a1cbb3b95c2d261
- SHA512
  
  a1e778e081dd34060b163fc2fd3850eb9153a3d9683e31f130852eadc4cb112ee90d77eca4e70c92fa61e1311cead8f85e50edaae7f0ec6a234c6b9e82360f68
- SSDEEP
  
  1536:YTJLkse1TYE2jEAZ69nHxzc0/FOXy+pKdsUOHrw3PIAG0ilg3y:Ymse1n2jEAZ69nNc0NOXy0KqPLYPIuop
Score

1^/10
behavioral7
- Target
  
  5.5/gcc_64/include/QtDeclarative/5.5.0/QtDeclarative/private/qdeclarativebind_p.h
- Size
  
  2KB
- MD5
  
  684ea18c61a334f8d0182f6b6eb6ab5b
- SHA1
  
  34e6862afc1b328984b98c08914dce130ef3492a
- SHA256
  
  70bcb6b2cdc84a067b67219a6b7476062bc73de5759eaf10dd0cc03e8b0a182b
- SHA512
  
  d8f6b9d17156818e9999df325ffd7d9d3fc9cd34625c46ff331f73f1876d0b748ad84483edda0a078d746c668297ed4cd0d45c55ff257eec2eefe6a6e11f0af0
Score

3^/10

execution
behavioral8 behavioral9
- Target
  
  5.5/gcc_64/include/QtDeclarative/5.5.0/QtDeclarative/private/qdeclarativecomponent_p.h
- Size
  
  5KB
- MD5
  
  6224cb0e5f55a540eadf652350b43230
- SHA1
  
  6f5a2efbc3080eb736f7b6612d62832c154b5241
- SHA256
  
  b6a9c8acc386e1d1b35f78cd7849f33a18454186eacb7e8741e7fab9ecf4e9e3
- SHA512
  
  69b3fad451835349a82a8380abf4a107f6ad113106f6fccfa7f3298305b9d2dab352fc5b36863e81bc70368d56dd094ee2d7e05b02989222bdb2b187cfa66a36
- SSDEEP
  
  96:eo+pSgSCOKgu0kKy9+6tkdpBjJ4LJJF5JT6bJsAbJG6Huli2yhB2bJ7gMT:eDpSgSCOKRfOdpVeJn5sbbfOlirBiJ7x
Score

1^/10
behavioral10 behavioral11
- Target
  
  5.5/gcc_64/include/QtDeclarative/5.5.0/QtDeclarative/private/qdeclarativeexpression_p.h
- Size
  
  7KB
- MD5
  
  5e6d112ea7b9629a12db60dd1506b881
- SHA1
  
  5ddf0c7888ccac8bec4ef1e9b0682befbd973a98
- SHA256
  
  8e9bd8e781c4d1617cf03282775715a5676e6a20476f07f2d3b3ba91a1d3e2ac
- SHA512
  
  224babdedcf1772bac14be6b025d6b64f6a5015c6e79c3a01bd567cdadaa0ec604f33a53c05705df7ee8f911c2c56b6a76dbf700f30650ca413343dbe3794c5f
- SSDEEP
  
  192:eDpSgSCOKRgZd6itKmwypHQWyikxrtVyCTy1X:U8COfZdXt7HQWCv41
Score

3^/10

execution
behavioral12 behavioral13
- Target
  
  5.5/gcc_64/include/QtDeclarative/5.5.0/QtDeclarative/private/qdeclarativeinstruction_p.h
- Size
  
  11KB
- MD5
  
  a663c6adbad0ca236cbdd54ba55ec943
- SHA1
  
  0d332516b0e4d6a03a3de04fef0b5bf1f1e92631
- SHA256
  
  2f7d5cd89f1bc24fb3411ed6a4638392b4923a76a2527dd48c217f1154bcce38
- SHA512
  
  e18f06fcede8c8da185d5028e70eacab8af23dfdec039466adf6241ee33c3979563e1ece9ff9ec82b3133b78a78bae3f3f16ad4435ca4a1b1a05a7b0de410cef
- SSDEEP
  
  192:eDpSgSCOKRa7d8ycCrL9Cguv5Efu92kNAiqa0wrOTb7bmk29Ei9ifHuOIP:U8COT7d8ycCrL9Cguv5Efu92kNAiqa0A
Score

1^/10
behavioral14 behavioral15
- Target
  
  5.5/gcc_64/include/QtDeclarative/qdeclarativecomponent.h
- Size
  
  4KB
- MD5
  
  c075d8d4ce076acea963428a70f0e047
- SHA1
  
  14a8a792d50f91d3f177aa0e5c9cbb6b557b84f8
- SHA256
  
  2bdbf3442f2237682af27e9d9eb761bb2f6c07ae8b18da7f3affa5872460c321
- SHA512
  
  bec6dfc969143bfc3c80b573d4467428f793678d0da292f8d9441f570bf2e3b551daa95937fc107234efeeb528ba4d12b1e0f18a40b2a3a3c71f56226276e0a2
- SSDEEP
  
  96:eo+pSgSCOKgu0kKy9+v2LGurVUQankBY47nwUB8Bp2aJC:eDpSgSCOKRS2LGuRUlkBY47nwWeX0
Score

1^/10
behavioral16 behavioral17
- Target
  
  5.5/gcc_64/plugins/designer/libqdeclarativeview.so
- Size
  
  15KB
- MD5
  
  5ca3d7aa84b5d50f2321bde62d1d63e0
- SHA1
  
  5e7e9c14ebbfe1f51135f5090bdd6615962738c9
- SHA256
  
  d5638b890d1f66f779f8a3beebdc482687e5e6588ccb44571f4ad5ef775212d0
- SHA512
  
  91185be8d58007da80696fbdca3f0ca0707730120ecd79d27a8fa08bbe810ccfd408708de746be7c8631216499e5c36f4a92320eb09de15fd2857b0581e3ef59
- SSDEEP
  
  384:eygrKCEwsZ6Q4gIwYA+NcIQ0MXgxeNatI:4hEwRNcIQ0M
Score

1^/10
behavioral18
- Target
  
  5.5/gcc_64/plugins/qml1tooling/libqmldbg_inspector.so
- Size
  
  135KB
- MD5
  
  5749ef5a5cdb6fa9760afe9e8a8da4f4
- SHA1
  
  18d1f90dbdaef64e55bed3e19acdba5d12bb7d24
- SHA256
  
  286a17f8e56ef5fc918d1f165e62ed1f29f1fff36bd97824483f7ed695c7f04f
- SHA512
  
  8f9145a2393dc657a1e684992ffe637231c9d662fb07c57cf2b26d750c52c3652feefffaacc50c3566753ad931ae07438dabf6183728eb0fa53686c395266d79
- SSDEEP
  
  3072:wECJky2jYAZ69012Azmhnl0h5vpmDSpUDQKoH:3tl1M8USpUZ
Score

1^/10
behavioral19
- Target
  
  5.5/gcc_64/plugins/qml1tooling/libqmldbg_tcp_qtdeclarative.so
- Size
  
  16KB
- MD5
  
  1cb5453c28cfde3e697d451fedf1e3d5
- SHA1
  
  b6bdc18d5ca32800d2a59e008796eeba25250ec6
- SHA256
  
  2cccae1a9949766725335bf79a2ea79949e1181ef9395e220d4be2c238b00339
- SHA512
  
  7a0e20e284418dc1cd177fe5f5be8df3e8ac5b43bc18d65a5046816c9feaaf8446b2edd0151b5b0010bd63b1c56fce7bdf2fcb52add747023f7e329c8fd1be86
- SSDEEP
  
  192:R17mHm8p8EzreAsZ9EYFtq6rPN90r2+Q7Fj0CO6M3t1g9VefFVy890D:WreAsZ3rV9/+2e3Zi
Score

1^/10
behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20