Overview

overview

7

Static

static

7

fa6091a16a...18.exe

windows7-x64

7

fa6091a16a...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    fa6091a16abe0068f2ea1194709589d8_JaffaCakes118

  • Size

    501KB

  • Sample

    240419-qjy8rsec9v

  • MD5

    fa6091a16abe0068f2ea1194709589d8

  • SHA1

    3c2a397563a5ae7a163bb7cdf22d6d2a72819fc1

  • SHA256

    4dc835fcec4812f3a53b789eeec50283e7b7f00efa85184843980c277763849e

  • SHA512

    2e9aa9d4ea9e86f285b8951e5d20a1d3e25a246736bdf60948ba4a58b774350cdc485524ced06f1d14f2b864c9d0302f29138ae6cccc22c662994d65f48b0c25

  • SSDEEP

    6144:AVyufHrbc7yQgL8Y8+PZPRgpcdLlaV5ybN+Z/vxU5W9oF1r+rNvmI1iQkVVV:AkU/eyOb+PZPRBdLAVkuUbFx+rnLi

Score
7/10
upx

Malware Config

Targets

    • Target

      fa6091a16abe0068f2ea1194709589d8_JaffaCakes118

    • Size

      501KB

    • MD5

      fa6091a16abe0068f2ea1194709589d8

    • SHA1

      3c2a397563a5ae7a163bb7cdf22d6d2a72819fc1

    • SHA256

      4dc835fcec4812f3a53b789eeec50283e7b7f00efa85184843980c277763849e

    • SHA512

      2e9aa9d4ea9e86f285b8951e5d20a1d3e25a246736bdf60948ba4a58b774350cdc485524ced06f1d14f2b864c9d0302f29138ae6cccc22c662994d65f48b0c25

    • SSDEEP

      6144:AVyufHrbc7yQgL8Y8+PZPRgpcdLlaV5ybN+Z/vxU5W9oF1r+rNvmI1iQkVVV:AkU/eyOb+PZPRBdLAVkuUbFx+rnLi

    Score
    7/10
    upx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks