Overview

overview

7

Static

static

3

ea8b3a760f...18.exe

windows7-x64

7

ea8b3a760f...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...pd.dll

windows7-x64

3

$PLUGINSDI...pd.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea8b3a760fa653078e5b254080535704_JaffaCakes118

  • Size

    751KB

  • Sample

    240919-ejvd2azdqa

  • MD5

    ea8b3a760fa653078e5b254080535704

  • SHA1

    45627205aa4cb2d85041f3961b82a2390e13433a

  • SHA256

    056a403f1453b26e56d649f51e43957092e80372878318240f0f6dcf7dbab1f0

  • SHA512

    c5e604f4baa33c7d4f4318c2872c6ad4752b696954eab6d14c39efe74f76443fa856da79ab26f68dd3ea3c4b5862d5dd5bff8a5201c7f81a6112a0c642df9a79

  • SSDEEP

    12288:w1gig15q7qnE1W5IYQ0M/ocZrLc8yzN/gntRosGBRvIqqt2dLjMNUXJdd+NVwFf6:wiigHhnRSp0M/ocZrL5yp4ncxp/qt2Ry

Score
7/10
discovery

Malware Config

Targets

    • Target

      ea8b3a760fa653078e5b254080535704_JaffaCakes118

    • Size

      751KB

    • MD5

      ea8b3a760fa653078e5b254080535704

    • SHA1

      45627205aa4cb2d85041f3961b82a2390e13433a

    • SHA256

      056a403f1453b26e56d649f51e43957092e80372878318240f0f6dcf7dbab1f0

    • SHA512

      c5e604f4baa33c7d4f4318c2872c6ad4752b696954eab6d14c39efe74f76443fa856da79ab26f68dd3ea3c4b5862d5dd5bff8a5201c7f81a6112a0c642df9a79

    • SSDEEP

      12288:w1gig15q7qnE1W5IYQ0M/ocZrLc8yzN/gntRosGBRvIqqt2dLjMNUXJdd+NVwFf6:wiigHhnRSp0M/ocZrL5yp4ncxp/qt2Ry

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/boqyspd.dll

    • Size

      158KB

    • MD5

      87ea5f2c6920d573ff040352417672ac

    • SHA1

      53a30f62beb9dc08c7e1e9f724b63042609429da

    • SHA256

      0690219379518dc52aadc714a43a3d17a0e3009d93077645e88a15eebbe0ac9f

    • SHA512

      fc117240040b40dd770dc152bb4463dac74b1097b1a222a95fb1a7ad44ff8162a3cac6e033bb2b16fbbe59b4494824f0ddd03a3c9cae8e03a3d7297dfa2ccef4

    • SSDEEP

      3072:GGiYa/t1XNLiM/rCaZc+jepsyfYAt0+2l:Fgt/TCaKltEl

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks