Overview

overview

8

Static

static

7

e25e5d2711...18.exe

windows7-x64

8

e25e5d2711...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    e25e5d2711a7fde568a2b703923f4ddc_JaffaCakes118

  • Size

    11KB

  • Sample

    240406-mvndvshb48

  • MD5

    e25e5d2711a7fde568a2b703923f4ddc

  • SHA1

    7b78e0670071d1edb9438fd04c89bd00e694f878

  • SHA256

    91ffb7df649221d712b069e56880ccacd7d05520f29e1cefb81b262c192cc4da

  • SHA512

    b782a0a2fc479230b9d50e4db8d1e133885dac6590dc24c0784b0b0fd762937a0756c8c521b351fc2498c145d85cadc614bde554cd573cd20cfe6811f6b2e95a

  • SSDEEP

    192:xF6qSgQ5qhSBPgVHIPZuS4QJcyMX/bGsWqcaoLEVeamdl6zDAuN:xF6qSg/SBPSIPE0JcBzGuoL5d5k

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      e25e5d2711a7fde568a2b703923f4ddc_JaffaCakes118

    • Size

      11KB

    • MD5

      e25e5d2711a7fde568a2b703923f4ddc

    • SHA1

      7b78e0670071d1edb9438fd04c89bd00e694f878

    • SHA256

      91ffb7df649221d712b069e56880ccacd7d05520f29e1cefb81b262c192cc4da

    • SHA512

      b782a0a2fc479230b9d50e4db8d1e133885dac6590dc24c0784b0b0fd762937a0756c8c521b351fc2498c145d85cadc614bde554cd573cd20cfe6811f6b2e95a

    • SSDEEP

      192:xF6qSgQ5qhSBPgVHIPZuS4QJcyMX/bGsWqcaoLEVeamdl6zDAuN:xF6qSg/SBPSIPE0JcBzGuoL5d5k

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks