Overview

overview

7

Static

static

3

eae6a4b108...18.exe

windows7-x64

7

eae6a4b108...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eae6a4b1089998c1b7dc2a4cfc47a3db_JaffaCakes118

  • Size

    1000KB

  • Sample

    240410-mzeyaagb7v

  • MD5

    eae6a4b1089998c1b7dc2a4cfc47a3db

  • SHA1

    47537bf553458b4a238d87f6c9367b1967d1a33b

  • SHA256

    b62773a05d72ee91102d5055c6cb95e8d39d24a2cf7b0d59eb47a587f3832eaa

  • SHA512

    5dc3d61a8de3d9e31d82be8de61fe16922e6529288da45b669bf5cf95b3477bb00d4ca863a7d2649c1d563d1d448410669586aef0658e746b5d1afd2e014fc43

  • SSDEEP

    24576:iesJYVEoVZYDX5ddynyPJp/BlXN93a1B+5vMiqt0gj2ed:Xs+yoV85TynyPJp/BlXN93wqOL

Score
7/10

Malware Config

Targets

    • Target

      eae6a4b1089998c1b7dc2a4cfc47a3db_JaffaCakes118

    • Size

      1000KB

    • MD5

      eae6a4b1089998c1b7dc2a4cfc47a3db

    • SHA1

      47537bf553458b4a238d87f6c9367b1967d1a33b

    • SHA256

      b62773a05d72ee91102d5055c6cb95e8d39d24a2cf7b0d59eb47a587f3832eaa

    • SHA512

      5dc3d61a8de3d9e31d82be8de61fe16922e6529288da45b669bf5cf95b3477bb00d4ca863a7d2649c1d563d1d448410669586aef0658e746b5d1afd2e014fc43

    • SSDEEP

      24576:iesJYVEoVZYDX5ddynyPJp/BlXN93a1B+5vMiqt0gj2ed:Xs+yoV85TynyPJp/BlXN93wqOL

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks