2d3643ee84b44bdae847583b92835789d7976949bc7acd6c6e1d4be9b2df0c70

Sharing

Copy URL Twitter E-mail

General

Target

eb14a9f31ace8f83ed286bdbd8c65e1c_JaffaCakes118
Size

4.0MB
Sample

240919-lvsg5sscpa
MD5

eb14a9f31ace8f83ed286bdbd8c65e1c
SHA1

30c2a3becc2b32817347cfff5d1d4c02811a2831
SHA256

2d3643ee84b44bdae847583b92835789d7976949bc7acd6c6e1d4be9b2df0c70
SHA512

340b95196949d8bb6e96a49d398e131b6766b3a7154cb1af694d7dae03767ad938ca9eda0752c74b3345e27c68b66085acbc29074456a6aa4a60a3d23cfebf25
SSDEEP

98304:GXZrF0CO8afC/wcWlDDQHoo2U4GInlPUPwqThLjYrQiu:GXW8gCYcOhGGsPRhYrQiu

Score

9^/10

discovery upx

Malware Config

Targets

- Target
  
  eb14a9f31ace8f83ed286bdbd8c65e1c_JaffaCakes118
- Size
  
  4.0MB
- MD5
  
  eb14a9f31ace8f83ed286bdbd8c65e1c
- SHA1
  
  30c2a3becc2b32817347cfff5d1d4c02811a2831
- SHA256
  
  2d3643ee84b44bdae847583b92835789d7976949bc7acd6c6e1d4be9b2df0c70
- SHA512
  
  340b95196949d8bb6e96a49d398e131b6766b3a7154cb1af694d7dae03767ad938ca9eda0752c74b3345e27c68b66085acbc29074456a6aa4a60a3d23cfebf25
- SSDEEP
  
  98304:GXZrF0CO8afC/wcWlDDQHoo2U4GInlPUPwqThLjYrQiu:GXW8gCYcOhGGsPRhYrQiu
Score

7^/10

discovery upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $0/AWF.cmd
- Size
  
  666B
- MD5
  
  0af9ff8d8313fab8e535ccef4c8db10a
- SHA1
  
  968b503a28c2b921ff79d49d2996f361b3e6a494
- SHA256
  
  150afede0368d115bb26787e98aa9148335f20053791b9953e4ba4b23ad64130
- SHA512
  
  df9ad4e3e98bcb7414a0b767b325b48379aaf5598bb4874ada22a72343b4f6503f9a4b82216ab8aaf327e524debf6c891708e175076038bc8ca9666046818339
Score

1^/10
behavioral3 behavioral4
- Target
  
  $0/AppDataFile.cfx
- Size
  
  92KB
- MD5
  
  827d19cd7af1df94be194a51601d4ef4
- SHA1
  
  98c3bc8e0b4d5f52d70c27d4dbea684d5416ef7d
- SHA256
  
  fbe1f4cccec52535b07b9afb10668b297fc4046ee5501cafe3cf359848bb6133
- SHA512
  
  3d8361feebe6878f222f28aeadeb49d52c81c379d8f790caafcf5783f22346e8ff0790b49fa97d49c2ee91dbb9818a90ff57e47352ad9fea444d29456328d9f1
- SSDEEP
  
  1536:JJWqRYWZs3S+ZOdk25eWBDCaRQcK/uVPQR0RJtQJhi4CLRyEDMm:JTiWQRyCaRixRq3QJZCLsm
Score

1^/10
behavioral5 behavioral6
- Target
  
  $0/Assoc.cmd
- Size
  
  4KB
- MD5
  
  3364a1267717ef5108004ac7e8083e9c
- SHA1
  
  1bda258eca5783ecac14a8e43672625d5b035f8b
- SHA256
  
  7350048eec1d07923e8f79f300f693a2e38c23d1cdaf23075b09b5a0ed56503d
- SHA512
  
  d5ea6045f943f4e92a0cab1adc3fc5e95487f582e87193a6d5afd7a0fe7d69a37da62a7a6ac20f750a63cf20cea34fe7cefba2f0cbfc539829c17d0cd52df316
- SSDEEP
  
  96:lPm3InNxXEWtI+jXJKj3bz9qA3FziF36irm3HaUCGjBz9FjLqLnbl1jyu4My:BxXw+LJKXQG10rjyZ
Score

1^/10
behavioral7 behavioral8
- Target
  
  $0/Auto-RC.cmd
- Size
  
  5KB
- MD5
  
  4de357c04c6419e720eb200800bbf4ca
- SHA1
  
  0b0ac7c361f9de9a2740e4929bc5b43a3c11e22a
- SHA256
  
  16d7762055b408135f89f9911cb4cfcea7eacd9bb93b1def7e5ac04a20adc9f9
- SHA512
  
  2ff7a0b635cc9a7787ef243465472e89a99eccf4bab2fea893167282e4ee78e0e411331416240f523b8274f383f4ee56095823a00ec9a6a28f9274eca0d5353c
- SSDEEP
  
  96:ISUakRPoFOO37MMWjkIJEW93k13jS3n+3Tyh3zRA6eM:ISU/PE8F
Score

1^/10
behavioral10 behavioral9
- Target
  
  $0/Boot-Rk.cmd
- Size
  
  4KB
- MD5
  
  53931310c2d416ac3e05a63ec70ae9ac
- SHA1
  
  fa4c40888c82e0f949230ed95fab62d7343551c2
- SHA256
  
  9ea9374460e13a9b8247a0c2bf7fbf3812d4f10ea28cb1872c922689e72641ba
- SHA512
  
  aaac518a81fee8e3309a2d849c89db4589da8f2e8b042b1f061aaaf5ef54bea178a1289111659339e9541089644863931e76768b2e7eec26f0e0e04409941356
- SSDEEP
  
  96:oOJrx4mGWjbYLmxgshuNOuckCuNuguIunTBuNuI6NJ:LSAxWmPW6NJ
Score

1^/10
behavioral11 behavioral12
- Target
  
  $0/Boot.bat
- Size
  
  8KB
- MD5
  
  76cfb322dfe414bb087394b008e434e1
- SHA1
  
  8488001331efb63bab1ede75a8a7546e0194d397
- SHA256
  
  81304c4c20b842f4955dddba235020201d771727a65ba61e853e6aa3c1a45fac
- SHA512
  
  74816199dd6f252034e3abde3a75074494ae04e317af98d7c4e50e2f5a31469ef88a1cb456d640939c074b566c45ff862f46cb232854e96fbda5d86e41c52d82
- SSDEEP
  
  192:hE78sBp9qdDqgIm9gh7AqNpUklOodUivk5qZ+sTS:hcBp94qgImeh7jAklOvivllS
Score

4^/10
behavioral13 behavioral14
- Target
  
  $0/BootDrv.vbs
- Size
  
  875B
- MD5
  
  602ad0a844220d0dc431dc77c0e1a322
- SHA1
  
  8aec04633f6248c932a46ed487d998d10762434b
- SHA256
  
  9c79039a69e206167a13d20ea9ccb5bdcaf02111c000e5fb65b1ac5aca0a762d
- SHA512
  
  45267f257da2e3f9b8bdd4712d588f824fbab73e848105eb1d396f2228e51cf155694c1627fcc900e095f36cc8762569ccc90e7ab206b729270d8bab24c95d3a
Score

1^/10
behavioral15 behavioral16
- Target
  
  $0/CF-Script.cmd
- Size
  
  30KB
- MD5
  
  6dec8e58a5917d1f777b9c48e967a5a1
- SHA1
  
  718e44bb0f3562c64cb46e2d14aa3086ab7f823a
- SHA256
  
  e1db9cd253d03db6bd926be7a6b5123732c65aa49f9b5683653ed345ab988c5e
- SHA512
  
  685bb7f995fccb6e5e25e0cf950687e74084945b9e2d252fa7a876b8491b8baab35a09bafacc0fd9a705877db7cc57e444c0b480c21e9e342bd0e714888e2aa3
- SSDEEP
  
  384:W9CYZKUMVzl6tU8iUQSryIMxkIsBIpZLPWKNpTO4:W9CYgUMVkK8iUDybsBIpZLPWKzTH
Score

1^/10
behavioral17 behavioral18
- Target
  
  $0/CSet.cmd
- Size
  
  1KB
- MD5
  
  0b8feab462b9004e0ce1babe99775600
- SHA1
  
  49ff272a59602402d7663529200531faac0c2bad
- SHA256
  
  8841d40f500a5dfc8d693065e40de9ddc5cea16f0914892cdc14c4e37637cb3a
- SHA512
  
  d1ba3cb11edcbb2ca16548853637e8dfd98c7a80b32d06847fcdb1c2bb61559cb3e48bf6f4ab41067f0c456592a7a2b3886a933c301217f5b74fb1795f730614
Score

1^/10
behavioral19 behavioral20
- Target
  
  $0/Catch-sub.cmd
- Size
  
  1KB
- MD5
  
  bcef310908bdcf3c5029a5c22fc44e8e
- SHA1
  
  8be00a8d886a8bb241ef6ad523d06bbfa04cf336
- SHA256
  
  5f617a3daee71abfe574afff763928f0839e210bcc0be7817ecf1886e2489a66
- SHA512
  
  1ce53f87fd937168b9e4f7af32bd4b0ec46f77d2575bfb10cb6db4c1de8489367e79caa4285861981b0e9f2b13f7395c8c9e3bf23169af26863d01c4ce28bc70
Score

1^/10
behavioral21 behavioral22
- Target
  
  $0/Combo-Fix.sys
- Size
  
  1024B
- MD5
  
  9f22aac35c7d133eefea8d297a67bf92
- SHA1
  
  5e490325534e2aa2534c22d36a9f03dd7a5a8fdc
- SHA256
  
  8c2c9afc84e0180a3907a9fb42c4bf84ffc924326c7a4969e89c0fa372409f08
- SHA512
  
  785d574c4fcf6b6aea00d498d66068d6a4fa07df8af436f408a281fe734d44e1e3982fda5f433c831571170108e7da646effea142ff8f4c703005b67a20a0f23
Score

1^/10
behavioral23 behavioral24
- Target
  
  $0/ComboFix-Download.3XE
- Size
  
  230KB
- MD5
  
  3df9e0775a9e3fc113f4d9fd0d4a14c4
- SHA1
  
  f1f73486ca8f1eb2f179eea267f8218a2066d71e
- SHA256
  
  838c0e609e6adc1359505cf6e7427fce3e55c6efa17085627fc7e820103ce14f
- SHA512
  
  5b7d1c8d5fe0088750fa55b9f21da6ae6ef8e82a0c1cfc11b9c1fe8423fbddd051e20d3f53a5f8532252d7406d37e84cce1667371bb54635996c55824c591300
- SSDEEP
  
  6144:4/V3rs9X41vEwJYAzSqRKpYeVliFmWrXsFSyGTBVVf/fOMZ3iulsF8G+2E:ChxJnzSgGVgc6skT5/iuL
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  $0/Combobatch.bat
- Size
  
  8KB
- MD5
  
  9b62bbcc4d42f61d9c7d085d37238dec
- SHA1
  
  468d001da4a1b586e7bdd4e53056c8686e858a01
- SHA256
  
  33b5cdb94d7dfa6a9e0c80c4e89b52aece0c7edb4a1ad6ead75769d44c462400
- SHA512
  
  12e70c13e404c03a6d378babf47c2ad2a023e92a98f3ff711a750e51eeac630c7011e9814502093f7aae5274976731dc5af560f7a4f182af002080743c82daa8
- SSDEEP
  
  96:N+lx6aT1yZrxUTb7W7q2DJq2D2mTQBO5XQT3Ipj1ByXe4tXm9RIOEggZUkOeNvZU:Ax6re7W7HrwqXjDwe4gEmwOs4
Score

1^/10
behavioral27 behavioral28
- Target
  
  $0/Create.cmd
- Size
  
  18KB
- MD5
  
  b821bf236cb655c407df6131be8b9ebf
- SHA1
  
  2b8b0d3e2d765dd5c0c924ae085de7083ef5b5c5
- SHA256
  
  f144b3ec8d2a07632e3ab614e0f301aabbde9aff6dbf5cb25f2a119a2743adf5
- SHA512
  
  5b53a00a93f5b78a58936f965284593a099bb8561cf81b7b53a38663fdd96e54fe7be01990732d55435866dd0da154f45c4d9f48ba0bc47f7ff287cbf57c1e85
- SSDEEP
  
  384:rgn0eXAk0+yxdK3qL8hiIRmcAQIk75HyH0dWU1SjEEtkhG:0ZEV
Score

1^/10
behavioral29 behavioral30
- Target
  
  $0/CregC.cmd
- Size
  
  4KB
- MD5
  
  187565c09311bf9831e02fc54de4bf9d
- SHA1
  
  2b72be743706a0b4d3ee368292e46fdf0c6aa9e9
- SHA256
  
  8d74a55edcd25f13b0186878b77d9b311ffaac23ebbb949c66c547f5f0443c87
- SHA512
  
  97eb9a5f6b7bd48082826ba5c759e9377169c769b684ed1b00a99fcf9ac5d9af43bfeb1c7dbe0640a55e5f3f9514913b611300b518dd70c6049e13b8b86fc32c
- SSDEEP
  
  96:c6odiQSz62Gvi3D8BIrfcjVWhhDyhtyh4yBnyrx0yr+yrQyrZyBTY22CGJGrfcj9:c3yYIrIWlyXyWyZy10y6y0ytyFJrIJCk
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32