General

  • Target

    JaffaCakes118_6ed574852bf78784b403818ddfd45d7d403fa3779cd021c68cf84ff5cf216601

  • Size

    261KB

  • Sample

    241223-3e2jjsvner

  • MD5

    9ae015c615c8181db8e9fb260446bfc0

  • SHA1

    4deab26bf92a8bce412112ccfe301d6d664afcf5

  • SHA256

    6ed574852bf78784b403818ddfd45d7d403fa3779cd021c68cf84ff5cf216601

  • SHA512

    e2fa06f1056d32b92732f797f4dd7d38e27afbb62a954bc84ff85294ab574e8cb68e8dd90e8f558c299535becb9e04e87d40dbda4e46c26a0641736c514d2583

  • SSDEEP

    6144:f4y2f91YEPY4+IZ+gFeKsYL6JBXJl8XaS1PTViI/rRBd9Y:f4/fTYEw/vdcL4Jl8XaSJN/rR2

Malware Config

Targets

    • Target

      Masonic.exe

    • Size

      366KB

    • MD5

      ce5a7f35800a959fd70c2795435033d0

    • SHA1

      dbc2b1e8abeaa29d0c88c03ae8f3ec6662750bf7

    • SHA256

      375eb2835d2d093d9ec26dfc20d6d560b475ba7d462673bb3a5e53edc7beb38a

    • SHA512

      e5a8da201ad7a194b76a3d0d55f246cac373216178514cff3d5c2afecd8777a7e41e0311582dc71c8565314002d36c73837437aa6e853bf5376e5070a80acf4d

    • SSDEEP

      6144:Ewq3Np8RBcKsECowfQixykTI0sndnMlneyTZeLG4t6bkAPGM00gKpcgw:EzIRBcKMfQMj+DE8LkwOKgw

    • Guloader family

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      17ed1c86bd67e78ade4712be48a7d2bd

    • SHA1

      1cc9fe86d6d6030b4dae45ecddce5907991c01a0

    • SHA256

      bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb

    • SHA512

      0cbed521e7d6d1f85977b3f7d3ca7ac34e1b5495b69fd8c7bfa1a846baf53b0ecd06fe1ad02a3599082ffacaf8c71a3bb4e32dec05f8e24859d736b828092cd5

    • SSDEEP

      192:eY24sihno00Wfl97nH6T2enXwWobpWBTU4VtHT7dmN35Ol+Sl:E8QIl975eXqlWBrz7YLOl+

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks