Overview

overview

7

Static

static

7

e78c3c6c10...18.exe

windows7-x64

7

e78c3c6c10...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e78c3c6c10e58eec6a4e7b496b28d7a4_JaffaCakes118

  • Size

    50KB

  • Sample

    240408-qj37qaaa73

  • MD5

    e78c3c6c10e58eec6a4e7b496b28d7a4

  • SHA1

    678f6d4617aa8bdc541a8ac1945ad72b0f2b6e53

  • SHA256

    39631f2f185cf69afde7b87f5f1355ff4bc9c47be4dd0614f9a5cc00848a2931

  • SHA512

    9e114062320fda81a77b7f4b5dec26e2e258cc4475d17c325593aeb0f3fe9f6e1108da0b69f4dab7fcc96188e7353a7633684c24667796488bfa218b8ea31a37

  • SSDEEP

    1536:0siaoBRVIXtXIsIbZPmpgd32MRF7qBUKli8W:GaOI94bbZPmpgVlRF7q3y

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      e78c3c6c10e58eec6a4e7b496b28d7a4_JaffaCakes118

    • Size

      50KB

    • MD5

      e78c3c6c10e58eec6a4e7b496b28d7a4

    • SHA1

      678f6d4617aa8bdc541a8ac1945ad72b0f2b6e53

    • SHA256

      39631f2f185cf69afde7b87f5f1355ff4bc9c47be4dd0614f9a5cc00848a2931

    • SHA512

      9e114062320fda81a77b7f4b5dec26e2e258cc4475d17c325593aeb0f3fe9f6e1108da0b69f4dab7fcc96188e7353a7633684c24667796488bfa218b8ea31a37

    • SSDEEP

      1536:0siaoBRVIXtXIsIbZPmpgd32MRF7qBUKli8W:GaOI94bbZPmpgVlRF7q3y

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks