Overview

overview

7

Static

static

3

f0d314b613...18.exe

windows7-x64

7

f0d314b613...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...sg.dll

windows7-x64

3

$PLUGINSDI...sg.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0d314b613330b6fc2f378b4557d2c91_JaffaCakes118

  • Size

    714KB

  • Sample

    240921-3far8azfla

  • MD5

    f0d314b613330b6fc2f378b4557d2c91

  • SHA1

    ed988dbcfb88e4ee945dd49de13520be64a8c558

  • SHA256

    10096b7ed42ec6abd279d785b8828f6cf3f128c790928885af378bd729290a92

  • SHA512

    f9713844129daf9a12645c36c8b0324003e9a88a8031b58b838c7fd2b74434f0d3e4c3614d9174988f9d6fc843c630326cff790c480ddd373f3cc7b631250aec

  • SSDEEP

    12288:bAl6EP4T6lOGG0cBahA78eHdbO9eswBAplLbeUiIHNEWE7GB1/WwJfrQfc8vy4ha:bpEP/Tv6GiepkqHNHIC1OwJfB86P

Score
7/10
discovery

Malware Config

Targets

    • Target

      f0d314b613330b6fc2f378b4557d2c91_JaffaCakes118

    • Size

      714KB

    • MD5

      f0d314b613330b6fc2f378b4557d2c91

    • SHA1

      ed988dbcfb88e4ee945dd49de13520be64a8c558

    • SHA256

      10096b7ed42ec6abd279d785b8828f6cf3f128c790928885af378bd729290a92

    • SHA512

      f9713844129daf9a12645c36c8b0324003e9a88a8031b58b838c7fd2b74434f0d3e4c3614d9174988f9d6fc843c630326cff790c480ddd373f3cc7b631250aec

    • SSDEEP

      12288:bAl6EP4T6lOGG0cBahA78eHdbO9eswBAplLbeUiIHNEWE7GB1/WwJfrQfc8vy4ha:bpEP/Tv6GiepkqHNHIC1OwJfB86P

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/qecbpsg.dll

    • Size

      170KB

    • MD5

      548894851322111a0d00ca29390a3788

    • SHA1

      17b62e823f90566e97f5e9411610a6f0a585e883

    • SHA256

      464bbf2f40908493d03bf229110d6831a2156143e03a320f7421ea3240642473

    • SHA512

      75e37a4f4b3b7ce8bbae8d2e0eb5cd01b3e35c603e5291baa1341c9c2a3f7ca70c0ee2ea580d579cab3c3c5f641ff525c0eed9dd012a4169cb605f495f53fc48

    • SSDEEP

      3072:Ge5W/7GWh0TUmwiTTLy2Q689+xw2zf8SUj:V5WzGFDTLy2Q/7eJU

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks