Overview

overview

10

Static

static

10

BkavPro.dll

windows7-x64

3

BkavPro.dll

windows10-2004-x64

3

BkavPro.dll

windows7-x64

3

BkavPro.dll

windows10-2004-x64

3

BkavPro.exe

windows7-x64

6

BkavPro.exe

windows10-2004-x64

6

Click.exe

windows7-x64

3

Click.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_0e1d808e8d66fc1d3c30ebf772c1ccb2

  • Size

    648KB

  • Sample

    250220-zmkn8awps9

  • MD5

    0e1d808e8d66fc1d3c30ebf772c1ccb2

  • SHA1

    542f4fd1d06da1b314409113fe7c25e9591d12e9

  • SHA256

    8219ce603320ea5107e632c5ccf76bcb0d1a41d23acf1bfb25317d51077dcf50

  • SHA512

    fe15265b02a6c07fb84c390ae6323c949afe6ed0a6099ea7468e6d2d881af4c2998d03a063e446195e9b0176e4aa44ce2e3c53df19531e8a6538b5d9d6eb57e9

  • SSDEEP

    12288:lEzxAijum7E16IgN0Q7NtmGOQnmhmDqA0tA3YRn1cGnaBJjfcXoRIXTM:lEzxAijuqE1Zg6QJt9xmhrHO3Yt1Bu9P

Score
10/10
ardamaxdiscoverypersistence

Malware Config

Targets

    • Target

      BkavPro.001

    • Size

      61KB

    • MD5

      34c92b717ae97bc926f56ba56a44f24a

    • SHA1

      ccaf3c6bf0c73564d0bf19c92b8d25008ffffbfa

    • SHA256

      6e60d85b35f5e9222375f606e4116b38364a4a943596ddb0d914cf1cf4791774

    • SHA512

      2a9eb63837db128c9e036976d903ebd925e6952ab6bf4efa0e370e79f9fefe0ed6e44e4ab444f56ace1149f4dd14797f568e8827e7cebd1e5581dcf309f9745a

    • SSDEEP

      768:3YBjSWR3lyicJ7EYI4RLzpZbX2LEdTTESWkPvzckKlrJFiIn45rfJtDa:+hrcPIaF1X24JakPvzup2b5rB

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      BkavPro.002

    • Size

      43KB

    • MD5

      246761f047f6aa98d6eaad66a2f883b9

    • SHA1

      42474a5b23d03e094103b62fd7e820457cf807c4

    • SHA256

      3774021a3cdf32d23fd5921cea4de8c26b08f0d601f3097550a7e8af7b00f111

    • SHA512

      d39d0913975ca2f8d585b72667d76de09ce7817f6de26ef21a8b62edc25d7fab39785f036992d19ca5700f5fc2ee377e696142c41529f23f503e8eefff393144

    • SSDEEP

      768:WBzRGjVrli1HP6qsPH7dR0wvwjoe01yym3wMRy8J:WBmAHwPH7dR0jIN8Ry

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      BkavPro.exe

    • Size

      1.5MB

    • MD5

      9ab9b7b74790b7bb2798dd2b26f4a913

    • SHA1

      e8ffa981a0149aa6441dcb0dd42f7baf6eb773a2

    • SHA256

      df1c8d608ebd300889cf21c3bda6d5dd2574d68e1f530cc5a885449a22177a75

    • SHA512

      ffffe21d8cc244aacaaba2eb13cc77ad800a196ecf6f77637a8a1f6d456cabb8331970ab358ab21dcf9832343379b4f0486da3990d45eb2f2765e55b7404739e

    • SSDEEP

      24576:nj/0YV2jIsyMmVmeGUWROwEp2Gw/0ToRxHibl55NTrpplZyc2cfq0hfW67m:nj/0YV2jIDyUW8waJ/sXHiFNTdplZt2d

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral5behavioral6

    • Target

      Click.exe

    • Size

      24KB

    • MD5

      f63ae2d89c73501346f506fd94a4f5fc

    • SHA1

      4c5ed889962e0306cb39bc950b83ce13b779b906

    • SHA256

      b5ddb574bd382cbe03e134ae80cfd260a65cd0edaa141cec8d8eefca55a293c5

    • SHA512

      574756b79c4792a35cba1e7bf89e4c66b420c89b8cd0d1d55e842ce23e8537450f924497f7615510132f50bf3a65d538c6a3c84c829de443005de7257a4d114b

    • SSDEEP

      192:DMAYX3HW+0BxUQsTRL3/dxxWkz3QY2f8JIolJlUXTRGYxv3D5qAYX3HW+:ol3HWXUQs/dxxWPY2feIrRGEql3HW

    Score
    3/10
    discovery
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks