Overview

overview

7

Static

static

3

2df0351961...18.exe

windows7-x64

7

2df0351961...18.exe

windows10-2004-x64

7

$9:/Docume...pd.exe

windows7-x64

7

$9:/Docume...pd.exe

windows10-2004-x64

7

$9:/Docume...ser.js

windows7-x64

3

$9:/Docume...ser.js

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ry.dll

windows7-x64

3

$PLUGINSDI...ry.dll

windows10-2004-x64

3

$TEMP/sqlite3.exe

windows7-x64

1

$TEMP/sqlite3.exe

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2df035196145068fe24c8d7438e0b00d_JaffaCakes118

  • Size

    341KB

  • Sample

    241009-kd568sygkm

  • MD5

    2df035196145068fe24c8d7438e0b00d

  • SHA1

    53ae34982eaa6c3110ba3b63e8fba38f17dc6ebc

  • SHA256

    edcb20c4866a9bb4d39179a8d8709db43780b82904a02f5fe7a3825f1ad232b5

  • SHA512

    7eaaa617c5e2b3cf5640f750f17c77cd464a3da92e5d6e32ebd9a562047605c93e5822aa068c231fc1ec3d1ef6a463a8afdd5217f892a849c9cfa565a6e0721f

  • SSDEEP

    6144:2+npuvh2skM2pH04MD41iszT4YWECSQxu/9n33WzvM6n15Qpb2StFKpF5pL5:kQ/JpH04MD4vX9nSoWzHop6SbKppF

Score
7/10
discoveryexecution

Malware Config

Targets

    • Target

      2df035196145068fe24c8d7438e0b00d_JaffaCakes118

    • Size

      341KB

    • MD5

      2df035196145068fe24c8d7438e0b00d

    • SHA1

      53ae34982eaa6c3110ba3b63e8fba38f17dc6ebc

    • SHA256

      edcb20c4866a9bb4d39179a8d8709db43780b82904a02f5fe7a3825f1ad232b5

    • SHA512

      7eaaa617c5e2b3cf5640f750f17c77cd464a3da92e5d6e32ebd9a562047605c93e5822aa068c231fc1ec3d1ef6a463a8afdd5217f892a849c9cfa565a6e0721f

    • SSDEEP

      6144:2+npuvh2skM2pH04MD41iszT4YWECSQxu/9n33WzvM6n15Qpb2StFKpF5pL5:kQ/JpH04MD4vX9nSoWzHop6SbKppF

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $9:/Documents and Settings/All Users/Application Data/Update/seupd.exe

    • Size

      307KB

    • MD5

      143daa59ea3c3adc09b8e08be4d796fa

    • SHA1

      378adfe3038e7e25a02fdf0db8acc845fd6c0461

    • SHA256

      44ffa994a1cb265688af7f7fa4862aac022a9a95b6351032aa98e101159eab86

    • SHA512

      f38aef36e7a7a34cc3073ab1f3334c6040b1b4a4604f181e22557d5faa758db36b8d671c3366fb4b1d9810a118f06426708fe0d22764f6084070cde3b506617f

    • SSDEEP

      6144:2+npEukM2pH04MC41isbT4YcECSQxL/9n33WzdM6n1yilNLAKy5pLkvK7:sJpH04MC4PXvnS1WzBMiluZovK7

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      $9:/Documents and Settings/$1/Application Data/Mozilla/Firefox/Profiles/$3/user.js

    • Size

      181B

    • MD5

      cac30c3ad61e8d07a4bbb09421df68ce

    • SHA1

      0ea485078e36bbc1a7c2cf620e7282b74b63c298

    • SHA256

      88f66f6a9af9d507213c6bc28850b22822aea838a5737857db8b4180502ac52f

    • SHA512

      d3bdf9400b6eb0020e7a0301eb83f8e1db002f72554c97c516693e7746e3f17aa991f3cbd9d342cb95d567fb155633f6ee1044b811d01d644b43e660ad69c907

    Score
    3/10
    execution
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c6f5b9596db45ce43f14b64e0fbcf552

    • SHA1

      665a2207a643726602dc3e845e39435868dddabc

    • SHA256

      4b6da3f2bdb6c452fb493b98f6b7aa1171787dbd3fa2df2b3b22ccaeac88ffa0

    • SHA512

      8faa0204f9ed2721acede285be843b5a2d7f9986841bcf3816ebc8900910afb590816c64aebd2dd845686daf825bbf9970cb4a08b20a785c7e54542eddc5b09a

    • SSDEEP

      192:qADKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQbVUSF:qAViJrtFRdbmXK8+WVUw

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      cdff6b8f9523b6ef9f20fb5f9e90f1a5

    • SHA1

      b25f6e0a19b41ff0a12de8e98e3005bc119d34fa

    • SHA256

      80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8

    • SHA512

      62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e

    • SSDEEP

      96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/registry.dll

    • Size

      16KB

    • MD5

      24a7a119e289f1b5b69f3d6cf258db7c

    • SHA1

      fec84298f9819adf155fcf4e9e57dd402636c177

    • SHA256

      ae53f8e00574a87dd243fdf344141417cfe2af318c6c5e363a030d727a6c75d1

    • SHA512

      fdbbedcc877bf020a5965f6ba8586ade48cfbe03ac0af8190a8acf077fb294ffd6b5a7ae49870bff8cacd9e33d591be63b5b3d5c2e432c640212bdcd0c602861

    • SSDEEP

      384:Bl1fUuJHxreh2OatbswPCr64oLchV0oLQYYfVB:BlBzHxrehKbswK2TchDLQZfVB

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $TEMP/sqlite3.exe

    • Size

      518KB

    • MD5

      1ffc848ff350e2ee6234bb14a9e29667

    • SHA1

      14d8bb49c895e2646933e746ad2107ddd82451fc

    • SHA256

      fc408d18eb476628686b258120387e3cad2cf85977df4ca9547752a8bf5fe560

    • SHA512

      9ed0c39ae1c9bcf880a5c9e659eb01b85f1887cb1a0982863b52ab931d926c77dfa8b6891e3101fcab7058810a92ab52d55b128dbb8d7ed7f1084d2bcd8e7e94

    • SSDEEP

      6144:BuFI8IxnAyapn4ioYgu5bVKHkdIANuK7E5sJTenZsUzQ0BMX9S09SU6EvRYyTZfM:QFIcxqcpKErNuKw5sZf9/MM92+V/ne

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/NSISdl.dll

    • Size

      14KB

    • MD5

      9c90c746adae5171c52b932080113331

    • SHA1

      2eb66e61ad38a33aa6e6c245e84e0a78dfcc5460

    • SHA256

      5b7be83ff4f023eba8d2d7ab972b067a904adc71f56a50cb367619cd116d0e92

    • SHA512

      fca06b4b39fdd76002487a4f9a454bec5507b2355a0e4e2dfe044e2def52bbd01aa5d2a0077703f7b8814b248743fac2b84fd37f611e04281f7e5c428e245565

    • SSDEEP

      192:wZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp/12VgsfA:wBo/680dCI5adOjFOg9//p27lAro

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      cdff6b8f9523b6ef9f20fb5f9e90f1a5

    • SHA1

      b25f6e0a19b41ff0a12de8e98e3005bc119d34fa

    • SHA256

      80b2740fb3a21ffab022a96ce6b420019072f8ef3a048fd9dea4a5b64498c0c8

    • SHA512

      62585c6a6103aed10f9a79c016df8cb630c3e37715542b5f26aa1a910771540c9b323ddbba3329db0ecf524143f7a27b782e198ce944317f764be6b9d04b792e

    • SSDEEP

      96:W7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3trCUTMxVXw32E:IKgfwgcr8zylsB49lrCUTMxVX7

    Score
    3/10
    discovery
    behavioral17behavioral18

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.