Overview

overview

10

Static

static

3

f15d9fc8d3...18.exe

windows7-x64

10

f15d9fc8d3...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f15d9fc8d3c53080db0e26a22e89eba4_JaffaCakes118

  • Size

    96KB

  • Sample

    240415-sn6jrabg7z

  • MD5

    f15d9fc8d3c53080db0e26a22e89eba4

  • SHA1

    7d2f3fc54901545ab8e0dcf45aa28366432226d3

  • SHA256

    c6e745b04d9b13c12be17e968fc65f0be470f9cd5917ed05168e2031f4d2dbef

  • SHA512

    5e1217edfc6c598c38070165651bd432d6b0fc858b6eb7aed5d5011681a6af41642c197d0099f4ab0c8050944a2a3347151a5556bc1bbd87885fc3da0d7df276

  • SSDEEP

    1536:i61I6UbdIwi/JWkj2dJd6mQ+Ap07CKf9wWSWLLHL5WGfLMvk0zGk/t3Gjs2jsF:R12bdIj/8E2dJ++AMCKfmWSWvHEDk05P

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      f15d9fc8d3c53080db0e26a22e89eba4_JaffaCakes118

    • Size

      96KB

    • MD5

      f15d9fc8d3c53080db0e26a22e89eba4

    • SHA1

      7d2f3fc54901545ab8e0dcf45aa28366432226d3

    • SHA256

      c6e745b04d9b13c12be17e968fc65f0be470f9cd5917ed05168e2031f4d2dbef

    • SHA512

      5e1217edfc6c598c38070165651bd432d6b0fc858b6eb7aed5d5011681a6af41642c197d0099f4ab0c8050944a2a3347151a5556bc1bbd87885fc3da0d7df276

    • SSDEEP

      1536:i61I6UbdIwi/JWkj2dJd6mQ+Ap07CKf9wWSWLLHL5WGfLMvk0zGk/t3Gjs2jsF:R12bdIj/8E2dJ++AMCKfmWSWvHEDk05P

    Score
    10/10
    evasionupx

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks