Overview

overview

7

Static

static

3

f9e1805006...18.exe

windows7-x64

7

f9e1805006...18.exe

windows10-2004-x64

7

$PLUGINSDI...ur.dll

windows7-x64

3

$PLUGINSDI...ur.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f9e180500632283a02202e3366f266a2_JaffaCakes118

  • Size

    581KB

  • Sample

    240927-g3tmysygkp

  • MD5

    f9e180500632283a02202e3366f266a2

  • SHA1

    e8e6623c425d0d90653c9ddca238bb67e2d9ea8a

  • SHA256

    06dd0b6f0f4f7980ec98b96be3664f80b092c1f3601a365f96b11c4748f5acf0

  • SHA512

    d2eb0ff807893f8414965aa751a4c6f65f0a3d6c359f850575c03512396080bd98b65bd5162bb2d19a04a2da2b0ad2166e565b27ddca12abc79a9fb48ac17fa5

  • SSDEEP

    12288:Sf0N1TgnqL8f+67YFmBvL4fVj/Vm+rRvUW1L7TI6VN:Sf0N1WqL4+NFmKdjNBvUW1L5

Score
7/10
discovery

Malware Config

Targets

    • Target

      f9e180500632283a02202e3366f266a2_JaffaCakes118

    • Size

      581KB

    • MD5

      f9e180500632283a02202e3366f266a2

    • SHA1

      e8e6623c425d0d90653c9ddca238bb67e2d9ea8a

    • SHA256

      06dd0b6f0f4f7980ec98b96be3664f80b092c1f3601a365f96b11c4748f5acf0

    • SHA512

      d2eb0ff807893f8414965aa751a4c6f65f0a3d6c359f850575c03512396080bd98b65bd5162bb2d19a04a2da2b0ad2166e565b27ddca12abc79a9fb48ac17fa5

    • SSDEEP

      12288:Sf0N1TgnqL8f+67YFmBvL4fVj/Vm+rRvUW1L7TI6VN:Sf0N1WqL4+NFmKdjNBvUW1L5

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ibcdrur.dll

    • Size

      153KB

    • MD5

      cc7702c331fd2b2201d356a02401e5bc

    • SHA1

      11cd196fd5b3c11de259da2c8ccc3a5d9161c09a

    • SHA256

      3516da154df6fe34fd628e20df3e2a71ffe7d6795cb2f481869ab475f69d9291

    • SHA512

      7bdb51b6032d9dbd418b74e48aede845a537ed13ee50f7019289d041b1de72966db88545cfabc48ebef72e7b881faed2cb180544bce43eb6e48ba9fe67a34653

    • SSDEEP

      3072:GVSpRtRLuavasT3WhuXn4t52LLaD+IG//sJxOZHQ:8Sp7tNIt52KDtGZZHQ

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsisunz.dll

    • Size

      40KB

    • MD5

      5f13dbc378792f23e598079fc1e4422b

    • SHA1

      5813c05802f15930aa860b8363af2b58426c8adf

    • SHA256

      6e87ecb7f62039fbb6e7676422d1a5e75a32b90dde6865dcb68ee658ba8df61d

    • SHA512

      9270635a5294482f49e0292e26d45dd103b85fe27dc163d44531b095c5f9dbde6b904adaf1a888ba3c112a094380394713c796f5195b2566a20f00b42b6578e5

    • SSDEEP

      384:KExN66Yf2xL5Q4IsjuUjUZfqRDpImexpf88FwHxXvjX3hwlHt6oIfESxSHoOO8n9:O2x64GcVpI3xC8ynToIf1SIOhW4

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks