c178e63b30a5d0f097903e51a91e669727c1700fa706a1f21ffd75a8151a2ec1 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

f2725950f9...18.exe

windows7-x64

7

f2725950f9...18.exe

windows10-2004-x64

7

Sharing

General

Target

f2725950f9df1a23b453de55a72fdc66_JaffaCakes118
Size

1003KB
Sample

240416-ck8lyaeh42
MD5

f2725950f9df1a23b453de55a72fdc66
SHA1

b6e84a890e75a89e097ba2e8d9028ae65344fd97
SHA256

c178e63b30a5d0f097903e51a91e669727c1700fa706a1f21ffd75a8151a2ec1
SHA512

e02a5cc88873f758360b95c27415f002d2ef4338232e9ae7ac641c392ef03f5d34b4c1749a02b12e11fb1e68a7c64991f32b1fdb4e7bf063fc1c9d73d1075327
SSDEEP

12288:Act8ZKNblTjlrFcBl/yRxfK238a4iw6gocdiJvhVdrcH5f+6eCyKNebN3BwzowuG:HoKNTrFcBl/y5DRcH5f+64JRWFULCD+

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

f2725950f9df1a23b453de55a72fdc66_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f2725950f9df1a23b453de55a72fdc66_JaffaCakes118.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f2725950f9df1a23b453de55a72fdc66_JaffaCakes118
- Size
  
  1003KB
- MD5
  
  f2725950f9df1a23b453de55a72fdc66
- SHA1
  
  b6e84a890e75a89e097ba2e8d9028ae65344fd97
- SHA256
  
  c178e63b30a5d0f097903e51a91e669727c1700fa706a1f21ffd75a8151a2ec1
- SHA512
  
  e02a5cc88873f758360b95c27415f002d2ef4338232e9ae7ac641c392ef03f5d34b4c1749a02b12e11fb1e68a7c64991f32b1fdb4e7bf063fc1c9d73d1075327
- SSDEEP
  
  12288:Act8ZKNblTjlrFcBl/yRxfK238a4iw6gocdiJvhVdrcH5f+6eCyKNebN3BwzowuG:HoKNTrFcBl/y5DRcH5f+64JRWFULCD+
Score

7^/10

upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy