bbfdb2bedf8b86153f608996a3f1bc41b5cf569d4393015dea8f015b4f32ec6f

Sharing

Copy URL

Twitter E-mail

General

Target

57579c988886392b4cc3b1fac7e6dda2_JaffaCakes118
Size

1.2MB
Sample

241018-n89dxsycpk
MD5

57579c988886392b4cc3b1fac7e6dda2
SHA1

684ce81db634eb31a754e0be6be2d229985ce7e4
SHA256

bbfdb2bedf8b86153f608996a3f1bc41b5cf569d4393015dea8f015b4f32ec6f
SHA512

42b620d02c2d7809869fd32dd4a2e9073af7460e03dadf3a383ca47c0934ad9f6f6c529734696098c3d4ee403ba14a184734874ce1e421f5b8ca299eb2caf364
SSDEEP

24576:JPcRKX3vyiGigrEfp9i8/ExAj02DWJ3Juayi9bIRxSSeL47erRDeLuR5AkD4zSo:JPcRKX3Mib9i8KmDUZ9bMYSeLvCLuUke

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  1.9/Obf/Bunifu_UI_v1.5.3.dll
- Size
  
  236KB
- MD5
  
  2ecb51ab00c5f340380ecf849291dbcf
- SHA1
  
  1a4dffbce2a4ce65495ed79eab42a4da3b660931
- SHA256
  
  f1b3e0f2750a9103e46a6a4a34f1cf9d17779725f98042cc2475ec66484801cf
- SHA512
  
  e241a48eafcaf99187035f0870d24d74ae97fe84aaadd2591cceea9f64b8223d77cfb17a038a58eadd3b822c5201a6f7494f26eea6f77d95f77f6c668d088e6b
- SSDEEP
  
  6144:SIQpxILDXGGMO7Ice9C5kQw2hWHcHTykhb:SIQpxILDXGGlET9n/cHG
Score

1^/10
behavioral1 behavioral2
- Target
  
  1.9/Obf/FlatUI.dll
- Size
  
  55KB
- MD5
  
  b63f5c816f8799857b9b8f95b6e2a9b0
- SHA1
  
  11840f6df4c32d24f0680ca00febdff899fcd4a1
- SHA256
  
  058c926a8818479b06ab9402f2a6c85eb0f64626c2956102d6699ad413afe2fb
- SHA512
  
  87962db2d06e8c5c487eba689723b61c540efd60b50a5476e2275bf2c0e043e1c131767ee66fdc7db93666c1f52591b043a79f08ae24dcdc012bcceb614d0434
- SSDEEP
  
  1536:ngsnXbl4Ss8W5DToAMncqTP7+9XeGCA2:ngsnXbl4Ss8nAEPy9XeGJ2
Score

1^/10
behavioral3 behavioral4
- Target
  
  1.9/Obf/LogIn Theme Dll By xVenoxi.dll
- Size
  
  115KB
- MD5
  
  f3a5fd717a0782c88641cdec9e66ea64
- SHA1
  
  0128f6577dab38a097606e483f962ef98fa085cb
- SHA256
  
  04d7e61f6102a9cfb7e262211880d1a2ac89ad5edf30cf4d28ac5e1444ee4c97
- SHA512
  
  6bc88a3dac591420d97e39b0541bae115c8266401dbf54ca5623fcf9b3c0c25d5dbc9e20f08597a20fa5913266547846a867f071d4adbedcb2377ef8cad997b5
- SSDEEP
  
  3072:Anv5NgCErhIh8PPKYnVobmgJzf/aDVt3WEl9mRzaqBnpm13KGfo74diqiRMoQd:ex6Y9H7fMoQ
Score

1^/10
behavioral5 behavioral6
- Target
  
  1.9/Obf/Microsoft.Threading.Tasks.Extensions.dll
- Size
  
  30KB
- MD5
  
  5e195f1c9b62f8037bf763bcf3702684
- SHA1
  
  53000ea87f06a88edb8f5ae112515ead39af246f
- SHA256
  
  7c1cc8f7445696648701299c132d98cfd861771042df1d5471354e539ad35ac2
- SHA512
  
  aaf412dcc629acc9056d75cbf3226babcf29f4affef7f1d52a9c1b93fdfd79a554ebba78a4aefb636593bfff8ad09550b537151453f2c645813859638ada697c
- SSDEEP
  
  384:PyqL9uaxv+fg8SA4nrzrwoGtOW1VnWd1q//0GftpBjz31TDFH3HRN7XClKO/Xeh:lMfmrwZtvl8iR1TBHFJ
Score

1^/10
behavioral7 behavioral8
- Target
  
  1.9/Obf/Microsoft.Threading.Tasks.dll
- Size
  
  36KB
- MD5
  
  f725173a7b47e909f98a5079fd846106
- SHA1
  
  bc5a8c4a18da4c650d336cf627884c4e598d719c
- SHA256
  
  26e67b42ce9ae8581bc452ff0f99807166badb416bc4b410d99e93a9d09a220a
- SHA512
  
  ad8616639d93d7e9e0201d92edcb2e2d72e0670e08af3ff1674ee90dafcbfb2e756890043561a8c0dfbe7a68e13c675cb89810854c7b11e85f809fa5adc84be3
- SSDEEP
  
  384:8jCan21RTf1FuPIgbSVHfiWvoVZHL+8SBhE+QNEv4qXWy1cW31q//0GftpBjpZVs:8+e21RTrgbSpfihevF4q5q8iLZVH9q
Score

1^/10
behavioral10 behavioral9
- Target
  
  1.9/Obf/Newtonsoft.Json.dll
- Size
  
  638KB
- MD5
  
  f33cbe589b769956284868104686cc2d
- SHA1
  
  2fb0be100de03680fc4309c9fa5a29e69397a980
- SHA256
  
  973fd70ce48e5ac433a101b42871680c51e2feba2aeec3d400dea4115af3a278
- SHA512
  
  ffd65f6487bc71c967abcf90a666080c67b8db010d5282d2060c9d87a9828519a14f5d3a6fe76d81e1d3251c2104a2e9e6186af0effd5f331b1342682811ebf4
- SSDEEP
  
  12288:WvS56CuBAXYxeeNvWHc3oY2osSeBTdb+:K07SAIxOhAVeBTdS
Score

1^/10
behavioral11 behavioral12
- Target
  
  1.9/Obf/SafeGuard.dll
- Size
  
  1.7MB
- MD5
  
  3307fc407d88ba40abeac87266f4558d
- SHA1
  
  3b85fc7ec65d4e26720516866e72b240598cedce
- SHA256
  
  b215110d42bdec6069d1328e429c959f68c1bee08333c4852bd3f5299b95173f
- SHA512
  
  df1f55b8cc0c275ac8a28364d0d5be5d775b9c237db632582e375ac18deb0de8855279d7e92e49ed4389aa694d1cfe0a878b90725d8353df6d6695433018c7d9
- SSDEEP
  
  24576:+M6ryfewjvR47825o3lYiXrVZ1Kpmboqpc7iPTQgO5F9f:sry2wNizQrVZ1Oyc7G3O5F
Score

1^/10
behavioral13 behavioral14
- Target
  
  1.9/Obf/Stresser.exe
- Size
  
  421KB
- MD5
  
  64357c0d06ac60c54f397037183fd256
- SHA1
  
  40197bbc88dacfbf19183c3c9f37987c0976c157
- SHA256
  
  1687e6a1511dc68a5e065fbc7c5edb500150cae01dc0fa2b271b236908f4323d
- SHA512
  
  3816c35be3163e84051f70a67506f0d21ef6262662d69e158738279f9716c6aaed458a83a6a3136253867773e78f1f2a547b71755c4406454d4068a85f1135b7
- SSDEEP
  
  6144:gnYKsxwZQ8earsh5Q+64EWBdWV3vBLGPUbbRXxt5XxtdAdq:PM+Q+6tWTWBvBUitPtiE
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  1.9/Obf/System.Net.Http.Extensions.dll
- Size
  
  21KB
- MD5
  
  7fef7c6a2ac6b7551b149176177f487e
- SHA1
  
  c936305d8944a29a8757e73b8206414cf902ba59
- SHA256
  
  41d2ffdeb498a87ee64979135a2f65090a286e832a5a2eb380f6f94d90090a84
- SHA512
  
  286227854a84b65f81c6fa0e88e8e637dbe714a5bf8c73aa5809c94dbeec255884cc5fc6d4b8d97f04dd062617d06e2ae01a1e64011a7514f656996952e73692
- SSDEEP
  
  192:1aPHHxlV4cWyHxLP0nWinMTI/s/nGfe4pBjSzmWF8ilAwoHnhWgN7aMWyuqnajLK:1Ix1WyRMnJ//0GftpBjVH3HRN7YlCgQf
Score

1^/10
behavioral17 behavioral18
- Target
  
  1.9/Obf/System.Net.Http.Primitives.dll
- Size
  
  21KB
- MD5
  
  8f3b5da24ba48897c2c0aa292d56b5f3
- SHA1
  
  486b7dd2ae9399f10b6c63fba48259419095910e
- SHA256
  
  bdf2f8482ac1839004c4422f94a122b373c21a0fa28d3deff051f5e2e28eb208
- SHA512
  
  29b358d6b77220754c9216a992c96e06bf45691b88dad5a92cce7cd30062f3ade101fcd483336aca76690bda079cfc7cf383944bc24911965c153c3e6b4c99d2
- SSDEEP
  
  384:KGaeuWghMnJ//0GftpBjv+HQJrH3HRN7zlCgX7:K3eQi8iDJrH0G
Score

1^/10
behavioral19 behavioral20
- Target
  
  1.9/Obf/Teen.dll
- Size
  
  45KB
- MD5
  
  fb9d14387b89b30606d094ae8cd93ea0
- SHA1
  
  8f21ac1b24fe1072a9d9ad17eabc738bac23ef58
- SHA256
  
  68eac14ca256f9871cc85ffc77c86b1d6378e6c900dff34f8b697be07b77446a
- SHA512
  
  17e9af55a1967884645e5b30abed374b51c28e173160e369b422ef385a1de9bdb76ef38c740e905629932481421d213ac90589d1bc1c1901c312c3271c75a63e
- SSDEEP
  
  384:6bcg3oHfkx4rxym37Bg4X0HuViEIXPdzJQKDckw6NhU0Pe4oannzXgvijJFWMHJs:lLSDDzgvijTlHJxKbBCxPULcBVDDQ
Score

1^/10
behavioral21 behavioral22
- Target
  
  1.9/Obf/UptimeSharp.dll
- Size
  
  45KB
- MD5
  
  b0b8b95165ae7033ee8ec5351d19f69d
- SHA1
  
  27704d3f09570f66f1448ae5f186d802ed59c374
- SHA256
  
  6f02f0bcb68ca5dd7d1938528c101e2c438afe0475f35a82a6aa3e71126e0290
- SHA512
  
  d02b205d82ea111547232ba1731138b9875debb9bb50f364d30a6fb139f7eb9328a436a6a9d51c337d32b3645b9f1015bd5ac7a20070c64a1b3a6ec6ec0e0209
- SSDEEP
  
  768:sVz0llycBMvlU9Mx4DZpZavW7jJxF5aYlfvWJOW7gLfHOq9YPZvMaVQElyZyZj:sVz0l4c+vlWtP9bF5a4fvWJObDElb
Score

1^/10
behavioral23 behavioral24

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24