edcb20c4866a9bb4d39179a8d8709db43780b82904a02f5fe7a3825f1ad232b5

Sharing

Copy URL

Twitter E-mail

General

Target

2df035196145068fe24c8d7438e0b00d_JaffaCakes118
Size

341KB
Sample

241009-kd568sygkm
MD5

2df035196145068fe24c8d7438e0b00d
SHA1

53ae34982eaa6c3110ba3b63e8fba38f17dc6ebc
SHA256

edcb20c4866a9bb4d39179a8d8709db43780b82904a02f5fe7a3825f1ad232b5
SHA512

7eaaa617c5e2b3cf5640f750f17c77cd464a3da92e5d6e32ebd9a562047605c93e5822aa068c231fc1ec3d1ef6a463a8afdd5217f892a849c9cfa565a6e0721f
SSDEEP

6144:2+npuvh2skM2pH04MD41iszT4YWECSQxu/9n33WzvM6n15Qpb2StFKpF5pL5:kQ/JpH04MD4vX9nSoWzHop6SbKppF

Score

7^/10

discovery execution

Malware Config

Targets

- Target
  
  2df035196145068fe24c8d7438e0b00d_JaffaCakes118
- Size
  
  341KB
- MD5
  
  2df035196145068fe24c8d7438e0b00d
- SHA1
  
  53ae34982eaa6c3110ba3b63e8fba38f17dc6ebc
- SHA256
  
  edcb20c4866a9bb4d39179a8d8709db43780b82904a02f5fe7a3825f1ad232b5
- SHA512
  
  7eaaa617c5e2b3cf5640f750f17c77cd464a3da92e5d6e32ebd9a562047605c93e5822aa068c231fc1ec3d1ef6a463a8afdd5217f892a849c9cfa565a6e0721f
- SSDEEP
  
  6144:2+npuvh2skM2pH04MD41iszT4YWECSQxu/9n33WzvM6n15Qpb2StFKpF5pL5:kQ/JpH04MD4vX9nSoWzHop6SbKppF
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $9:/Documents and Settings/All Users/Application Data/Update/seupd.exe
- Size
  
  307KB
- MD5
  
  143daa59ea3c3adc09b8e08be4d796fa
- SHA1
  
  378adfe3038e7e25a02fdf0db8acc845fd6c0461
- SHA256
  
  44ffa994a1cb265688af7f7fa4862aac022a9a95b6351032aa98e101159eab86
- SHA512
  
  f38aef36e7a7a34cc3073ab1f3334c6040b1b4a4604f181e22557d5faa758db36b8d671c3366fb4b1d9810a118f06426708fe0d22764f6084070cde3b506617f
- SSDEEP
  
  6144:2+npEukM2pH04MC41isbT4YcECSQxL/9n33WzdM6n1yilNLAKy5pLkvK7:sJpH04MC4PXvnS1WzBMiluZovK7
Score

7^/10

discovery
- Loads dropped DLL
behavioral3 behavioral4
- Target
  
  $9:/Documents and Settings/$1/Application Data/Mozilla/Firefox/Profiles/$3/user.js
- Size
  
  181B
- MD5
  
  cac30c3ad61e8d07a4bbb09421df68ce
- SHA1
  
  0ea485078e36bbc1a7c2cf620e7282b74b63c298
- SHA256
  
  88f66f6a9af9d507213c6bc28850b22822aea838a5737857db8b4180502ac52f
- SHA512
  
  d3bdf9400b6eb0020e7a0301eb83f8e1db002f72554c97c516693e7746e3f17aa991f3cbd9d342cb95d567fb155633f6ee1044b811d01d644b43e660ad69c907
Score

3^/10

execution
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c6f5b9596db45ce43f14b64e0fbcf552
- SHA1
  
  665a2207a643726602dc3e845e39435868dddabc
- SHA256
  
  4b6da3f2bdb6c452fb493b98f6b7aa1171787dbd3fa2df2b3b22ccaeac88ffa0
- SHA512
  
  8faa0204f9ed2721acede285be843b5a2d7f9986841bcf3816ebc8900910afb590816c64aebd2dd845686daf825bbf9970cb4a08b20a785c7e54542eddc5b09a
- SSDEEP
  
  192:qADKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQbVUSF:qAViJrtFRdbmXK8+WVUw
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  cdff6b8f9523b6ef9f20fb5f9e90f1a5
- SHA1
  
  b25f6e0a19b41ff0a12de8e98e3005bc119d34fa
- SHA256
  
  80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8
- SHA512
  
  62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e
- SSDEEP
  
  96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/registry.dll
- Size
  
  16KB
- MD5
  
  24a7a119e289f1b5b69f3d6cf258db7c
- SHA1
  
  fec84298f9819adf155fcf4e9e57dd402636c177
- SHA256
  
  ae53f8e00574a87dd243fdf344141417cfe2af318c6c5e363a030d727a6c75d1
- SHA512
  
  fdbbedcc877bf020a5965f6ba8586ade48cfbe03ac0af8190a8acf077fb294ffd6b5a7ae49870bff8cacd9e33d591be63b5b3d5c2e432c640212bdcd0c602861
- SSDEEP
  
  384:Bl1fUuJHxreh2OatbswPCr64oLchV0oLQYYfVB:BlBzHxrehKbswK2TchDLQZfVB
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $TEMP/sqlite3.exe
- Size
  
  518KB
- MD5
  
  1ffc848ff350e2ee6234bb14a9e29667
- SHA1
  
  14d8bb49c895e2646933e746ad2107ddd82451fc
- SHA256
  
  fc408d18eb476628686b258120387e3cad2cf85977df4ca9547752a8bf5fe560
- SHA512
  
  9ed0c39ae1c9bcf880a5c9e659eb01b85f1887cb1a0982863b52ab931d926c77dfa8b6891e3101fcab7058810a92ab52d55b128dbb8d7ed7f1084d2bcd8e7e94
- SSDEEP
  
  6144:BuFI8IxnAyapn4ioYgu5bVKHkdIANuK7E5sJTenZsUzQ0BMX9S09SU6EvRYyTZfM:QFIcxqcpKErNuKw5sZf9/MM92+V/ne
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/NSISdl.dll
- Size
  
  14KB
- MD5
  
  9c90c746adae5171c52b932080113331
- SHA1
  
  2eb66e61ad38a33aa6e6c245e84e0a78dfcc5460
- SHA256
  
  5b7be83ff4f023eba8d2d7ab972b067a904adc71f56a50cb367619cd116d0e92
- SHA512
  
  fca06b4b39fdd76002487a4f9a454bec5507b2355a0e4e2dfe044e2def52bbd01aa5d2a0077703f7b8814b248743fac2b84fd37f611e04281f7e5c428e245565
- SSDEEP
  
  192:wZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp/12VgsfA:wBo/680dCI5adOjFOg9//p27lAro
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  6KB
- MD5
  
  cdff6b8f9523b6ef9f20fb5f9e90f1a5
- SHA1
  
  b25f6e0a19b41ff0a12de8e98e3005bc119d34fa
- SHA256
  
  80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8
- SHA512
  
  62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e
- SSDEEP
  
  96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7
Score

3^/10

discovery
behavioral17 behavioral18