Overview

overview

7

Static

static

7

ecf72949a8...18.exe

windows7-x64

7

ecf72949a8...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ecf72949a8c1f64cd3b13d983c611667_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240411-j4xgcaae8w

  • MD5

    ecf72949a8c1f64cd3b13d983c611667

  • SHA1

    f1570708b5f7da531cffc34356f30b400dfb2a57

  • SHA256

    422c8b4e89252be7e587f9ce6a4350e3281c464d1087ef394313cf99e55f44f3

  • SHA512

    343724edfdc9ce38cf663252cb8916466c47508c16d4b19a8d87451755876b9540ddc3fdaa42a6de7a1594d534d5ed3fcf6b6b71e7ff17794df84042a05c1b8a

  • SSDEEP

    49152:rfigM4kDsGDehOZPdt/Mkh8DL4wjMWDLrI7t5k7EJ/Mkh8DL4wj:rfigM9sQdtvMkGDcwjB7I7t5k7ENMkGT

Score
7/10
upx

Malware Config

Targets

    • Target

      ecf72949a8c1f64cd3b13d983c611667_JaffaCakes118

    • Size

      2.0MB

    • MD5

      ecf72949a8c1f64cd3b13d983c611667

    • SHA1

      f1570708b5f7da531cffc34356f30b400dfb2a57

    • SHA256

      422c8b4e89252be7e587f9ce6a4350e3281c464d1087ef394313cf99e55f44f3

    • SHA512

      343724edfdc9ce38cf663252cb8916466c47508c16d4b19a8d87451755876b9540ddc3fdaa42a6de7a1594d534d5ed3fcf6b6b71e7ff17794df84042a05c1b8a

    • SSDEEP

      49152:rfigM4kDsGDehOZPdt/Mkh8DL4wjMWDLrI7t5k7EJ/Mkh8DL4wj:rfigM9sQdtvMkGDcwjB7I7t5k7ENMkGT

    Score
    7/10
    upx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks