General

  • Target

    f0af2a62ff29df86e7e4453b2562fb10_JaffaCakes118

  • Size

    97KB

  • Sample

    240415-knxylsae84

  • MD5

    f0af2a62ff29df86e7e4453b2562fb10

  • SHA1

    68b56e01a3dfbe5de5c49acdfaee06cd3197af7d

  • SHA256

    a4f8c08fa04116373b1845e97d90121bd553614e6532f2cd118a3aa0888e9cf9

  • SHA512

    9196ebbd2e13b60f0339a93f538943cd5ffd6eb56b99683f6607f29ac338ff5439ec3a10159d0c1acf9345dcb2b1d6e27b3e631e3572e85b85a6b25aac11703d

  • SSDEEP

    3072:57mf2cZ8UtE2UvMzSKMLTQ7ja8qULZsJgz:5Kffo5yo3Q7ja8qe

Malware Config

Targets

    • Target

      f0af2a62ff29df86e7e4453b2562fb10_JaffaCakes118

    • Size

      97KB

    • MD5

      f0af2a62ff29df86e7e4453b2562fb10

    • SHA1

      68b56e01a3dfbe5de5c49acdfaee06cd3197af7d

    • SHA256

      a4f8c08fa04116373b1845e97d90121bd553614e6532f2cd118a3aa0888e9cf9

    • SHA512

      9196ebbd2e13b60f0339a93f538943cd5ffd6eb56b99683f6607f29ac338ff5439ec3a10159d0c1acf9345dcb2b1d6e27b3e631e3572e85b85a6b25aac11703d

    • SSDEEP

      3072:57mf2cZ8UtE2UvMzSKMLTQ7ja8qULZsJgz:5Kffo5yo3Q7ja8qe

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks