Overview

overview

7

Static

static

3

39f450d646...18.exe

windows7-x64

7

39f450d646...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.exe

windows7-x64

1

$PLUGINSDI...er.exe

windows10-2004-x64

6

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    39f450d6461d15660d3b74ff08fec978_JaffaCakes118

  • Size

    280KB

  • Sample

    241012-pewreazcrh

  • MD5

    39f450d6461d15660d3b74ff08fec978

  • SHA1

    3d8fcf6f1b7aba0b16faebab98fa0aeba6fa34e4

  • SHA256

    e13d38ec48df73416dbfa1289714e4ada7cbb902d361e78669cc5600b29a7f75

  • SHA512

    a3d029792d5c596e0244c5bac91dca1bb11b5c5e413d2275029b13a46d1e3b832c4fab820028067361caca470d762d1b178fce8928235da65e84f3041ab31ca7

  • SSDEEP

    6144:GsaocyLCKwNWceA0939IMxw70GIaWgDtT9i/Vy7oV9fkc:GtobtMRe/9WMxw7/IhgJTg/VUE9fkc

Score
7/10
discovery

Malware Config

Targets

    • Target

      39f450d6461d15660d3b74ff08fec978_JaffaCakes118

    • Size

      280KB

    • MD5

      39f450d6461d15660d3b74ff08fec978

    • SHA1

      3d8fcf6f1b7aba0b16faebab98fa0aeba6fa34e4

    • SHA256

      e13d38ec48df73416dbfa1289714e4ada7cbb902d361e78669cc5600b29a7f75

    • SHA512

      a3d029792d5c596e0244c5bac91dca1bb11b5c5e413d2275029b13a46d1e3b832c4fab820028067361caca470d762d1b178fce8928235da65e84f3041ab31ca7

    • SSDEEP

      6144:GsaocyLCKwNWceA0939IMxw70GIaWgDtT9i/Vy7oV9fkc:GtobtMRe/9WMxw7/IhgJTg/VUE9fkc

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/installer.exe

    • Size

      207KB

    • MD5

      de8e9cb3a534359f5809b9c5980ce365

    • SHA1

      34def3bd6d46a97daa546671513733b9a94c1e8a

    • SHA256

      653db07daeedb23437e723f00ab4f7320e5bb6e6689e38e54896ee44d84cfc71

    • SHA512

      dffe030837a4babfb06419ffd893f54b9856e0f1aafb320e923a7a4aea894154207b0f2998fd0ecaaf0105c6ff1bed95d93a8ae2f531e1c8c3aca248a35b1fe2

    • SSDEEP

      6144:+RrKVYBooo1v0eB24qUxG1DJpqC+D6RwpKJ/eGRKP:+hKyov1ceE4rxG1DJpqkwpKJ/eGRK

    Score
    6/10

    • Drops desktop.ini file(s)

    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      8KB

    • MD5

      249ae678f0dac4c625c6de6aca53823a

    • SHA1

      6ac2b9e90e8445fed4c45c5dbf2d0227cd3b5201

    • SHA256

      7298024a36310b7c4c112be87b61b62a0b1be493e2d5252a19e5e976daf674ce

    • SHA512

      66e4081a40f3191bf28b810cf8411cb3c8c3e3ec5943e18d6672414fb5e7b4364f862cba44c9115c599ac90890ef02a773e254e7c979e930946bc52b0693aad7

    • SSDEEP

      192:r/QeHNWSvUTfWdXw08LYKFaynLb3MRlbOVlR:7jBvwudT8LJxnnMRlyVlR

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks