bf40e9f43592712b8ce1a0d362c0400ee512d9b1be432deb541d335eed525eb8 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

e942ecc706...18.exe

windows7-x64

7

e942ecc706...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

e942ecc70696df797662cec30947c67c_JaffaCakes118
Size

1003KB
Sample

240409-ff33fafb52
MD5

e942ecc70696df797662cec30947c67c
SHA1

43de85bb0a5dd7af2a12071fcc752a4b615787ed
SHA256

bf40e9f43592712b8ce1a0d362c0400ee512d9b1be432deb541d335eed525eb8
SHA512

79c0f97f1b55a980038091bb629986a08bdb2b6ed1f5bd0d871e1d064bc7fd1967b0175fefeeecb6b7f0a4d151641644174b0f95bb1dd4a64c5e845f518b6e86
SSDEEP

24576:9shJDl37L+HTKhNbkoUbzujwqn/Ax2wwzl6DZBKIdys:2/DJaHTKhN1uqj3/cwzl6DiIj

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

e942ecc70696df797662cec30947c67c_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

e942ecc70696df797662cec30947c67c_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  e942ecc70696df797662cec30947c67c_JaffaCakes118
- Size
  
  1003KB
- MD5
  
  e942ecc70696df797662cec30947c67c
- SHA1
  
  43de85bb0a5dd7af2a12071fcc752a4b615787ed
- SHA256
  
  bf40e9f43592712b8ce1a0d362c0400ee512d9b1be432deb541d335eed525eb8
- SHA512
  
  79c0f97f1b55a980038091bb629986a08bdb2b6ed1f5bd0d871e1d064bc7fd1967b0175fefeeecb6b7f0a4d151641644174b0f95bb1dd4a64c5e845f518b6e86
- SSDEEP
  
  24576:9shJDl37L+HTKhNbkoUbzujwqn/Ax2wwzl6DZBKIdys:2/DJaHTKhN1uqj3/cwzl6DiIj
Score

7^/10

upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy