General

  • Target

    fccf3015ec0b8a8abb2c354096a65944_JaffaCakes118

  • Size

    11.4MB

  • Sample

    241218-x4wfyaynd1

  • MD5

    fccf3015ec0b8a8abb2c354096a65944

  • SHA1

    72dfaab2fbaa1f521c7be3f1d501b0f439e03f34

  • SHA256

    103ff2d94016f09ac46e189336e85453d7e565bd2614f0b7fd80adfb1b28914e

  • SHA512

    ba40529414f1d42946376b83c10a13227438256d6df64e090bc783cfccc7c32d7b19b221f14efbe2b58acf2bceb83ca148748eb83a1bb4283513d7faef922852

  • SSDEEP

    196608:PZ2peol6HA3pNo3i9RSYVskHgHi3txHdDQ9yV7aS1+G8LlXaZabkSyluGNMhDFf:PZaPcVCSYxHgHG9U9y5J1WXaZ2kDluzP

Malware Config

Targets

    • Target

      PDF转CAD软件合集/PDF 2 DXF/GrafikRW2.dll

    • Size

      892KB

    • MD5

      82f8de30a7d2ff89e5e77ff2cc63c9b7

    • SHA1

      9912452330a60b905f803e2ccf40c2e5905ce3cf

    • SHA256

      42c678094bb8b05688566c74ed537dfd661cb177fb2269a1b52f14b70c9df05c

    • SHA512

      82c75cfa7b542c11d64b3bcfc4344bf62a9f06f93cfb6e7cb40ae1fcca929b92fcc071ab93bc1f4f64b5460b722493f9a718c989065a794ce2d09ead3746afc8

    • SSDEEP

      24576:HNqCwHQym/4ou2VgoqbJ5H+ND5J7gM9TMJVhRGGyDRZ3rIC0f0mlzUM2q:HN3MQyfMc/ERZ3rIC0f0EU

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/PDF2DXF.exe

    • Size

      3.3MB

    • MD5

      cb814559db4c5a0cebf17b6ee9174bbd

    • SHA1

      8a216756c05dac50972a4e669f9494b9fd5f2226

    • SHA256

      942edaa0ed186e558f5e89b8b90872a9ef7c5956b1c4637e4b214d4af227e21d

    • SHA512

      59e89f3ef38bf83bae8bf0069d68434e1ed38796d5d285e6f9c4853b948cad7a2e7daa017f5e4db545ae0c9551a8a34d27adc67625212c53082bc0b83feb9ab6

    • SSDEEP

      98304:3aN4FufNa0hQfSJ4Q0Yi9Gdnk06+AVnWsuVqzCUmJb:qN4u1a4dnkhZVWrqezZ

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

    • Modiloader family

    • ModiLoader First Stage

    • Target

      PDF转CAD软件合集/PDF 2 DXF/cadkasdeinst01e.exe

    • Size

      70KB

    • MD5

      daac4576382f4d95170f00dda0cac355

    • SHA1

      35138fc090f8aa3ec5433e8e56bd49b3ac574a1b

    • SHA256

      b1960f9efd40494e01686af299fda8ea434460d095cf829b6171b5e6ca87ccf2

    • SHA512

      3212cca0ae811ac5799cbb5003d1da374c1231a2f67e4f8057e1967a5c7cb77f52703ed63632869f0a49a7fa452d56ee6d9a8b468f9b22b60c50a35b67aaeaa2

    • SSDEEP

      1536:D14qpEqoa5fpotqZ450ISogzxudSfd/4Xlqsf89:5B9FpotoK8wU1/4Xlqi89

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/faxdecode.dll

    • Size

      56KB

    • MD5

      4db76320fa999383bd82e39f2e5e8414

    • SHA1

      f538acf92fc513f1423dca6f4fa879f7f2e5486c

    • SHA256

      e4f31cb126225d49ed20b08d995dc7378dd1d5de386fa5600d6998dd82432dac

    • SHA512

      c004e123a18bafb68d458f06b1085ad729597e71a23b3e04092413394577b3cae87a25708d28194e07f6b950134e88ef46f492302487c1439818a2b23b983695

    • SSDEEP

      768:BbwVEsY7+R+nTzHcqQdKJSA63UaxlFnMqZCcVZkBo9iqXZ2:BbMEsn0Tz8TIJSlZxlJ/qoj2

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/freetype.dll

    • Size

      468KB

    • MD5

      f8854fdfb7b5ab2bf185f2ac986b8585

    • SHA1

      a98ac04d2fef829ec144cddde6d7bd96f9e3fc72

    • SHA256

      d2eef26ba7b667bac6e210253eeb569c879dee865a0d63e1eacb59f59072ce7d

    • SHA512

      3cc9f88f9142f8a4d840e6b6e8793c5c0f394c888b6e51e9fc7722bd88870941f0352549e0aec8242d4b3443e0d045a3a01ab731bb06e767555eec4bebb65fbe

    • SSDEEP

      12288:KtR8mRH3SICK0PI1zUAkJQuG58tavonLysGiKDP9Yn:KtR8mJDKI1zUAkJQ6tavoHGi6Pmn

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/pdfrw_.dll

    • Size

      196KB

    • MD5

      ebf943c4a7e074f83063e0802e110927

    • SHA1

      9539cac2d76c4d9393b4831f4414cd7f6779f7e9

    • SHA256

      49d17ed0a706c190c0c69386d08ac0f3ce9c0fd7c3a3563b708999e6b0f52ee4

    • SHA512

      dcc27f2a9e38684144dbc92b112312d63b2e9cf6b0d99ae00fdbfde4c1ef36ca1cadcdcc2ee594dcb32d3b0ceacf955ac59a4de721ab90794882579f7681e2f0

    • SSDEEP

      1536:HH1kklWh9xLosAFtp5haSOSBXWSAjjVuKlYFsEEuKop21MbcPuc6Rd66k3q3PrvN:HVkGiLLEFtVakJRpk4P7QIomiY

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/setup.exe

    • Size

      80KB

    • MD5

      209fcdc6fae4382bc01c2955497fea96

    • SHA1

      d46cba466da77ef026e22fe5a7e1ffdb60f7269d

    • SHA256

      9fb49f2a1df66c158c0ead070089ba8e66d2fa3ede4277efdd4a5dd6eef4698a

    • SHA512

      ef3d876a9c269b43ffb68f68dc96a76ffbac509a6cf94d68d9f20f60b0ec27fb9048f93aa294e62fa51a1f840eed20fba6bac90c9ed6cda7d919c47dee2b4375

    • SSDEEP

      1536:1yqNE8M2OxaJb7Y8XUizMYf+mqs40oIn9QdNoV/ygk9:py29x7Ychf+9PvI9QdNoYgk9

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF 2 DXF/twainio2.dll

    • Size

      29KB

    • MD5

      6c260cd0e621bb4dbc19e7ba26a0688e

    • SHA1

      46e4ff1402f8de7c7d9864c218d1de1991f86b2c

    • SHA256

      89085ba1490f47ec0e40582ccb2d9dd63ea36b7da723ee52ded6d6dee4da16bc

    • SHA512

      7d66e8fdec2b4c64daf2c6abfbaaa6b7190ef15cc1ebb7a0a715dc232aba9392eeceb3253d655cbaedd04b9c78d2fca371599c53c21690e48f4e9ef354eaab19

    • SSDEEP

      384:5xlsH7xUG2dxuIUGOnI47M9T3h7oQgaXrpglOa+AWrz4hnehfP1G1csQBrtC:53sbxUG2dkEITWiBgrmrqz4he7t

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/VGFLOW.DLL

    • Size

      1024KB

    • MD5

      fabcc6c4e18f84cbcd27a66d9cfa91bd

    • SHA1

      0ce6d6e743d1442f82c851a4a42e3e892781fc57

    • SHA256

      c9dd052b4d7c22a35c42f59a85e00385aca6ce45f5ab5c62ee94b43e2ab99907

    • SHA512

      04ac21a4ed3cc7a7d23afb950a61f01c159056ab3e78b5a06dc8259e3993ec03c461c79934a0e75f449a3cdeb65ee531f67476bcc6094341f75fa8f3186e5e37

    • SSDEEP

      24576:nyK5kON72YuS55CVWDqLpWPQGwbPKW0y7QWUv7SylPPz:nvyxVSXwmfy7Qzz9lPPz

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/WMFview.exe

    • Size

      52KB

    • MD5

      1d9bde0cbda49409237df6ce7ce5285d

    • SHA1

      cdf47b13fec0d6817554ba1801f35902d8efd631

    • SHA256

      3c2a5d5b2861eeee1cf0d4cfab930d5942c46626b7de52597e6abbc4525f186b

    • SHA512

      f594be7330f400a0fe9ebd04749d8945ca6fbfa8585e94743aafd216ff8dccad98cb3a5afdb1fb4adac72321c08e210fba4433cf7ae5beecdee7a22d5d4999d2

    • SSDEEP

      768:zrZdAuUghyw4yUX5HcDrbr4GSOS22S3ZdCD26kOOQuw:zrPXUqyaUX5Horbrlwm8OQu

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/_ISREG32.DLL

    • Size

      40KB

    • MD5

      0d76786858edb257d9c662094bbbe581

    • SHA1

      d4da0f2d07e5e4d7fa3045aaf0d18997c902ff1e

    • SHA256

      04cb740602f03beec4386972892bf037a7b1026f700ec1615a3d7f6b0bcbe227

    • SHA512

      5f4e16264c30e58d6a7a27f7095afe7786d17446ecf6146e22f0a1ecd88dcaf3364346ada4c83cac1151ec2fe7ed664433fd3a6a7ca01ccb80c720b04fcea7c1

    • SSDEEP

      768:D66mfO9sVEJF3vo4Uo1ODDI0xzoAjJIjXtv/h1JK9ZsadDnMY+:DRsVEXfoho1wDxxzoQJEdXh1JKbFdDn

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/license.PDF

    • Size

      110KB

    • MD5

      6c9cdedf8d78d50d01cddf2d54573d46

    • SHA1

      80e61f6467bb85c5b383f71175272c2da7468fa9

    • SHA256

      ce9d56a9a207fe63025984cb0d7a910fe81cef51db7172ce5dfec0ef41094a7d

    • SHA512

      348beaad055ca7caadd282729db57ee3a5e719ae4e485a25ad2929b837dd072938ffc7d6f7ea46a3e7a0821801497ed03daa064ad5dfea698959bcc9de947a16

    • SSDEEP

      3072:KFII8bKC1OZq0sI8i5tEKtqqMu+Lj938B173JL7mJk:S8++50sri5mG0wl7z

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/options.pdf

    • Size

      110KB

    • MD5

      a11b5313182c1ef03a4731d3bfb53483

    • SHA1

      4276f316251c8ac798e6f48487a6789c22f10f9c

    • SHA256

      61ae8c186a8fb57ab8ea9f0e4eeaea8ddc7ca6492230f2d0d7bff50da55162e2

    • SHA512

      38b56bab7c5a19b2d8fdf57f8dded0dc32de74a54807d6311b944450de8ea31a27fde39d4af8b33b0f72d16479868431e4671ee68f0e4d9b41ab4c693a0cfe24

    • SSDEEP

      3072:2Jc7TV7lMG4MVw9IODftpJXJWxJRJUJVUFpYmQYF3FchS:dJ/pK9I+ftcmU/YmQIuM

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/pdf2xxx.exe

    • Size

      28KB

    • MD5

      d91b22f5c6e0dea4da7c745861b4eccd

    • SHA1

      ece2584cfb398741eea7d3e464d370f7977ece47

    • SHA256

      39247c7f08685d3371b8020ed720ca6dd97a78cb00e1f72e472fa35043111b10

    • SHA512

      ca9a0140a5c23fb5148379d473ab619cba1ab2dbb08b712a8a949295f92658170a3688c4eee1149b6e33c099cadcde0c259fd384f8e3b5f8d8ef445dbf0c9870

    • SSDEEP

      384:gA7xT0vSOgC6n3MS2MkxdFVmlyfcuyUrb7dssauAWoj:gAN0vMxqxdzNXHdIuVo

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/pdfFLY.exe

    • Size

      544KB

    • MD5

      7e0f58cec855698debd12b2736ec55f7

    • SHA1

      f7ceb2a67d8b8b3e07888888b149318ce63a8721

    • SHA256

      5718f38033b5dd2c36fae77f4b7b0ad35a72237999e1dceffce5c51f54ba5af6

    • SHA512

      83f378af14294f3b84344a5b430e44c2b6c0a9b1af750510b21e0231c82424be53dcb7c3e35a180f05bf867279c3dcd2abdcc63aaf771cc9cf309bf1173ce993

    • SSDEEP

      6144:8Ii0RoClWnZ4DDyTTCe50/v4qF2f3ZlNob+m4rnC9q+NAD:85iDDKTCe50/v4qF2f3ZlNob+3WPNAD

    Score
    3/10
    • Target

      PDF转CAD软件合集/PDF FLY/pdffly-help.pdf

    • Size

      289KB

    • MD5

      535bb83de0deb366b8e8f297b0969110

    • SHA1

      e3a995f3a784ccc292271ad85fb0ded4a59fc267

    • SHA256

      28a9dd63f14a3b3da24d90618a92b046b1800cc3047213e4dcb7a855bcb86f90

    • SHA512

      c97316c900523e1e71cbdbe7672f61edfdd9d77ddf2b8ebcbbaa70e0719c0bbee4cd7faf930de42acd60c575ef93600f1b046dfdd986df33a24228fd12d1ee76

    • SSDEEP

      6144:kAmrQnNM9GAJ9pQBi363LyksuLC1c7NOe:x+QNxAJWikLucIe

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

pdflinkmodiloader
Score
10/10

behavioral1

discovery
Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

modiloaderdiscoverytrojan
Score
10/10

behavioral4

modiloaderdiscoverytrojan
Score
10/10

behavioral5

discovery
Score
3/10

behavioral6

discovery
Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

discovery
Score
3/10

behavioral20

discovery
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10

behavioral25

discovery
Score
3/10

behavioral26

discovery
Score
3/10

behavioral27

Score
1/10

behavioral28

discovery
Score
3/10

behavioral29

discovery
Score
3/10

behavioral30

discovery
Score
3/10

behavioral31

discovery
Score
3/10

behavioral32

discovery
Score
3/10