aeb6e9ad0fde49c4217d2869443a0cf64079b8fa23073e69209329fbe6f749bd | Triage

Submit
Reports

Overview

overview

Static

static

3

eb54f091b0...18.exe

windows7-x64

eb54f091b0...18.exe

windows10-2004-x64

9

Sharing

General

Target

eb54f091b05a95511601e2f9f9771bae_JaffaCakes118
Size

76KB
Sample

240410-scg21sfb6w
MD5

eb54f091b05a95511601e2f9f9771bae
SHA1

86d73a0e44c60283b2a791caadcfea091f104ddf
SHA256

aeb6e9ad0fde49c4217d2869443a0cf64079b8fa23073e69209329fbe6f749bd
SHA512

baa09e5a9a491092bc12ed7f13decadf0c9becff21e46a31d5c06b71342a1cc388d6cc3c8c24b54bd099d7abc0b84319e1155a081f415992ad31a1feed1683a3
SSDEEP

1536:hsoNutBF/WkrxeGDYyxTYV5SIw+XPVxUARLDD:3NuvF/zr8lSKcIw+XpL

Score

10^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

eb54f091b05a95511601e2f9f9771bae_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb54f091b05a95511601e2f9f9771bae_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  eb54f091b05a95511601e2f9f9771bae_JaffaCakes118
- Size
  
  76KB
- MD5
  
  eb54f091b05a95511601e2f9f9771bae
- SHA1
  
  86d73a0e44c60283b2a791caadcfea091f104ddf
- SHA256
  
  aeb6e9ad0fde49c4217d2869443a0cf64079b8fa23073e69209329fbe6f749bd
- SHA512
  
  baa09e5a9a491092bc12ed7f13decadf0c9becff21e46a31d5c06b71342a1cc388d6cc3c8c24b54bd099d7abc0b84319e1155a081f415992ad31a1feed1683a3
- SSDEEP
  
  1536:hsoNutBF/WkrxeGDYyxTYV5SIw+XPVxUARLDD:3NuvF/zr8lSKcIw+XpL
Score

10^/10

evasion upx
- Modifies firewall policy service
  evasion
- Nirsoft
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy