Overview

overview

8

Static

static

3

011c8311ca...18.exe

windows7-x64

8

011c8311ca...18.exe

windows10-2004-x64

8

$TEMP/51cdF_RQLr.dll

windows7-x64

7

$TEMP/51cdF_RQLr.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    011c8311cae1ccf9f9897109a95d2bc0_JaffaCakes118

  • Size

    108KB

  • Sample

    240930-nqcx1ashmn

  • MD5

    011c8311cae1ccf9f9897109a95d2bc0

  • SHA1

    0d5a196955911bb6481a589c52de1a6c335df95c

  • SHA256

    6a82bfbe2bd2123efa496afa735f0c76a872a3ca7e088adcefc4bb6ebf30dc97

  • SHA512

    56398cdfccc5866ce38039e72845cce456fceadf35ed2371b4e089fe31c918de3a2536675d721a7d83bb34570c965803fbdc17c4a0dd46e70e2f4fc72ce57c27

  • SSDEEP

    3072:IgXdZt9P6D3XJbC1fHK1tjsITcqbfH7TtEXM:Ie3441fHK1JxcEH7h

Score
8/10
discovery

Malware Config

Targets

    • Target

      011c8311cae1ccf9f9897109a95d2bc0_JaffaCakes118

    • Size

      108KB

    • MD5

      011c8311cae1ccf9f9897109a95d2bc0

    • SHA1

      0d5a196955911bb6481a589c52de1a6c335df95c

    • SHA256

      6a82bfbe2bd2123efa496afa735f0c76a872a3ca7e088adcefc4bb6ebf30dc97

    • SHA512

      56398cdfccc5866ce38039e72845cce456fceadf35ed2371b4e089fe31c918de3a2536675d721a7d83bb34570c965803fbdc17c4a0dd46e70e2f4fc72ce57c27

    • SSDEEP

      3072:IgXdZt9P6D3XJbC1fHK1tjsITcqbfH7TtEXM:Ie3441fHK1JxcEH7h

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $TEMP/51cdF_RQLr.dll

    • Size

      89KB

    • MD5

      7a06cb307f802c120609c0b3c1e963a9

    • SHA1

      2bda4b275422ea6138b12efaeefcb9e279f1de95

    • SHA256

      292340cb04147497e7828986c55765e24bc863ab8e3066b317d78032beab984a

    • SHA512

      a38c7cfb714859ddca000390bae3c4dc5a4cf88db2e974168bf1270b0740568630ce2afd63cb6b663c7df9296a97d2c0dbc0968b2eaaab74487cd179876752a6

    • SSDEEP

      1536:zglskiJV33LX+dJ52NZmihyR6cu4fiTUyrUpgWjAal+faohb:QoJ3KdJAbG6cu4OrUpgEAi+fZb

    Score
    7/10
    discovery

    • Deletes itself

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks