d1d65a8a10ee7258e2c0c2d43a8180a0faa56c399c76eecd075d053d565a8ddd | Triage

Submit
Reports

Overview

overview

Static

static

3

87ff226077...18.exe

windows7-x64

87ff226077...18.exe

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows7-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Cdx.exe

windows7-x64

9

Cdx.exe

windows10-2004-x64

9

Setup.exe

windows7-x64

Setup.exe

windows10-2004-x64

Two.vbs

windows7-x64

8

Two.vbs

windows10-2004-x64

8

enigma_ide.dll

windows7-x64

1

enigma_ide.dll

windows10-2004-x64

1

enigma_ide64.dll

windows7-x64

1

enigma_ide64.dll

windows10-2004-x64

1

udis.dll

windows7-x64

3

udis.dll

windows10-2004-x64

3

Analysis

max time kernel
133s
max time network
109s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
31-05-2024 18:55

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

87ff226077aa2f3db328d217b8a19033_JaffaCakes118.exe

Resource

win7-20240221-en

cryptbot discovery evasion spyware stealer

windows7-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

87ff226077aa2f3db328d217b8a19033_JaffaCakes118.exe

Resource

win10v2004-20240508-en

cryptbot discovery evasion spyware stealer

windows10-2004-x64

19 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/UAC.dll

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/UAC.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

$PLUGINSDIR/nsExec.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

Cdx.exe

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

Cdx.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral15

Sample

Setup.exe

Resource

win7-20240221-en

cryptbot discovery evasion spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral16

Sample

Setup.exe

Resource

win10v2004-20240508-en

cryptbot discovery evasion spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral17

Sample

Two.vbs

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

Two.vbs

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

enigma_ide.dll

Resource

win7-20240419-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

enigma_ide.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

enigma_ide64.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

enigma_ide64.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

udis.dll

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

udis.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

enigma_ide64.dll
Size

41KB
MD5

39db21ffd436484891026a5e99710b26
SHA1

2b736f826bd2d7ce215f8048b5f73d0b330b12b0
SHA256

5141f9f501eb6c8f402db79f99b5a21998bd7ce1e28eb077c565e34b2a2be891
SHA512

47debf6588f27454414a0a2b4eae6ba2ade7ecd00802ad1bf8f6c52a3b1a64a025149a953743587d46dc5e392e12350329465b31c206a40ace64c77a33d4705e
SSDEEP

768:QxyTrKwS3DjRWxNysLx/rlqKtkKZEZvHYkc/Fv:HTrrSaRlxDm3c/

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\enigma_ide64.dll,#1
1⤵
PID:2680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy