General
-
Target
45792a53cd23046281f8b5c5839250b7_JaffaCakes118
-
Size
367KB
-
Sample
241015-ddnhvsvdqq
-
MD5
45792a53cd23046281f8b5c5839250b7
-
SHA1
b39a5feab3b7fee43df4fe0e0dba8aa5a196692a
-
SHA256
4e85005577b1ff875c7d3004dd290ffda262afb02b3d4129553a4232c290e5e4
-
SHA512
a47b114705f258e5c4385d07d499e6c622ad8702ac025fe9db5b0daeca1d8e2f24290830669f1193f2559c9536d5056acea233d47d59c3e7850f975fc0a5a3c3
-
SSDEEP
6144:okNRExR6FlaosTtw9fies2ydIY8Q7Pr7fARK/+RpRit9Ut963oxNa0SbveBwumh:oWRiYB4twIeodIYlvrULfO3Cazbvex
Malware Config
Targets
-
-
Target
45792a53cd23046281f8b5c5839250b7_JaffaCakes118
-
Size
367KB
-
MD5
45792a53cd23046281f8b5c5839250b7
-
SHA1
b39a5feab3b7fee43df4fe0e0dba8aa5a196692a
-
SHA256
4e85005577b1ff875c7d3004dd290ffda262afb02b3d4129553a4232c290e5e4
-
SHA512
a47b114705f258e5c4385d07d499e6c622ad8702ac025fe9db5b0daeca1d8e2f24290830669f1193f2559c9536d5056acea233d47d59c3e7850f975fc0a5a3c3
-
SSDEEP
6144:okNRExR6FlaosTtw9fies2ydIY8Q7Pr7fARK/+RpRit9Ut963oxNa0SbveBwumh:oWRiYB4twIeodIYlvrULfO3Cazbvex
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
-
-
Target
$PLUGINSDIR/GetVersion.dll
-
Size
9KB
-
MD5
225f776172f1baccd2721a6e5d512b36
-
SHA1
2dbbc86f7b0285682880a627b56a75de09f4bed6
-
SHA256
ecfcbe30f5b248673f9cbebb734b9981ed14b06380ea787c563d67b30e2d069e
-
SHA512
4b99a5ac68122501a5913cf54bd3ae99d851d57656b0e136980122739cceef739fa2d5ea097f2442068b9489a4c25ea0884653c41d85f27f25996792bf6c21bb
-
SSDEEP
192:MMr/9XGqK7s/AlHdJZBi46AQ5VuNxHA8/:MsXGqM93Bi46AQ5Vujg8/
Score3/10 -
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
96KB
-
MD5
da5be8a2066d67c93265dcd6a9c9dddf
-
SHA1
8fe968e27e259530dfb435511b1dbe4d167bfda4
-
SHA256
30dc225ef4a4e084ee65c0912d07abdd939d5a49fb3fda535d6c41ac6b112f0b
-
SHA512
d7a98903adca16124c538a12ae912432d6ebc1874e9beaddf394004e96a33a58ab68f5f2e2771b83c56cfc53e05e314d4ab79d5c034459d7bcfd31090fd4bf97
-
SSDEEP
1536:8/fL6f67dFj7xWkdX+zHK7K2h9PORs7dR0h1UgDH40NF:8nL6f67dhxWW00tYwK1UgT46
Score3/10 -
-
-
Target
$PLUGINSDIR/Processes.dll
-
Size
35KB
-
MD5
2cfba79d485cf441c646dd40d82490fc
-
SHA1
83e51ac1115a50986ed456bd18729653018b9619
-
SHA256
86b302fa9c85dfa0c1c03ba000864a928365dab571f3355347dba02da22949b7
-
SHA512
cca186a7f9c5cff3f4eca410fbe8cc13dad2514a7e36aec9b1addfbcb239ace9b9b2d8427771858e3fd11783abce7e24d43c286f98da9f8b17562ca095a4c043
-
SSDEEP
768:uxEiycFoaj/+WSiJfmjvab7L/cUf7IIlMLRF:uxEm7sgfmjy//cgdlM/
Score3/10 -
-
-
Target
$PLUGINSDIR/nsExec.dll
-
Size
8KB
-
MD5
249ae678f0dac4c625c6de6aca53823a
-
SHA1
6ac2b9e90e8445fed4c45c5dbf2d0227cd3b5201
-
SHA256
7298024a36310b7c4c112be87b61b62a0b1be493e2d5252a19e5e976daf674ce
-
SHA512
66e4081a40f3191bf28b810cf8411cb3c8c3e3ec5943e18d6672414fb5e7b4364f862cba44c9115c599ac90890ef02a773e254e7c979e930946bc52b0693aad7
-
SSDEEP
192:r/QeHNWSvUTfWdXw08LYKFaynLb3MRlbOVlR:7jBvwudT8LJxnnMRlyVlR
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/downloaderDDLR.exe
-
Size
58KB
-
MD5
c7f6ed56312c8fbb58ae6ed445c38df4
-
SHA1
e2dba94ef052db774478b9f7198c1a2298b334e5
-
SHA256
fdb8452173a4f116f6e362ab5466c3c16bf6697502fe3d01db0d82f0e339de24
-
SHA512
ac43e5bb31c3c0876a7768553916cce76d92088e62594e8463b128a0d6e587c48152a5efcf0b2a5e8fb43028d46913df114ae3c3750b7e6c4212c7044518ba43
-
SSDEEP
1536:tLXB65939tY6HBg4sXJhweErCi/S8qcy4PLv:tLk395hYXJh0C6jy4z
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/downloaderOFFER0.exe
-
Size
58KB
-
MD5
c7f6ed56312c8fbb58ae6ed445c38df4
-
SHA1
e2dba94ef052db774478b9f7198c1a2298b334e5
-
SHA256
fdb8452173a4f116f6e362ab5466c3c16bf6697502fe3d01db0d82f0e339de24
-
SHA512
ac43e5bb31c3c0876a7768553916cce76d92088e62594e8463b128a0d6e587c48152a5efcf0b2a5e8fb43028d46913df114ae3c3750b7e6c4212c7044518ba43
-
SSDEEP
1536:tLXB65939tY6HBg4sXJhweErCi/S8qcy4PLv:tLk395hYXJh0C6jy4z
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/downloaderOFFER1.exe
-
Size
58KB
-
MD5
c7f6ed56312c8fbb58ae6ed445c38df4
-
SHA1
e2dba94ef052db774478b9f7198c1a2298b334e5
-
SHA256
fdb8452173a4f116f6e362ab5466c3c16bf6697502fe3d01db0d82f0e339de24
-
SHA512
ac43e5bb31c3c0876a7768553916cce76d92088e62594e8463b128a0d6e587c48152a5efcf0b2a5e8fb43028d46913df114ae3c3750b7e6c4212c7044518ba43
-
SSDEEP
1536:tLXB65939tY6HBg4sXJhweErCi/S8qcy4PLv:tLk395hYXJh0C6jy4z
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/downloaderOFFER2.exe
-
Size
58KB
-
MD5
c7f6ed56312c8fbb58ae6ed445c38df4
-
SHA1
e2dba94ef052db774478b9f7198c1a2298b334e5
-
SHA256
fdb8452173a4f116f6e362ab5466c3c16bf6697502fe3d01db0d82f0e339de24
-
SHA512
ac43e5bb31c3c0876a7768553916cce76d92088e62594e8463b128a0d6e587c48152a5efcf0b2a5e8fb43028d46913df114ae3c3750b7e6c4212c7044518ba43
-
SSDEEP
1536:tLXB65939tY6HBg4sXJhweErCi/S8qcy4PLv:tLk395hYXJh0C6jy4z
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/downloaderSTUB.exe
-
Size
58KB
-
MD5
c7f6ed56312c8fbb58ae6ed445c38df4
-
SHA1
e2dba94ef052db774478b9f7198c1a2298b334e5
-
SHA256
fdb8452173a4f116f6e362ab5466c3c16bf6697502fe3d01db0d82f0e339de24
-
SHA512
ac43e5bb31c3c0876a7768553916cce76d92088e62594e8463b128a0d6e587c48152a5efcf0b2a5e8fb43028d46913df114ae3c3750b7e6c4212c7044518ba43
-
SSDEEP
1536:tLXB65939tY6HBg4sXJhweErCi/S8qcy4PLv:tLk395hYXJh0C6jy4z
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/NSISdl.dll
-
Size
14KB
-
MD5
a5f8399a743ab7f9c88c645c35b1ebb5
-
SHA1
168f3c158913b0367bf79fa413357fbe97018191
-
SHA256
dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9
-
SHA512
824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977
-
SSDEEP
192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go
Score3/10 -
-
-
Target
$TEMP/30602584caa012822e932dd66bc8dbe3/preinstaller.exe
-
Size
241KB
-
MD5
9d8fe8bcc4c493b2fd1da8d2b07ba57c
-
SHA1
aa9366eb9210c8a5398b5e55921c92ce8970df5b
-
SHA256
f33b7419880c7c90c999970e4c21febaaf6d39fdb02f9d9deafa8f8d97f3b3eb
-
SHA512
3fd58a0d7c870e8b07eb17f8f088d505ad98c7101733972f486a2946d18babfe0e4866ae28a16fe2481e006c26cbdf2d3eb1a2dd71bb44c084bbf14fea475216
-
SSDEEP
6144:gLZpiirZUwURUebtBGVBpBwXVUTL7E97IkXQxBRUoz0iYvF:4NYEVjBwXVwM9vylz3YvF
Score3/10 -