c40020c78aaf8fb14e5d901cb515473fb54b88faf00d92913c190a17f1190907 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

fb7617da15...18.exe

windows7-x64

7

fb7617da15...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

fb7617da1580d74122a422d16a0de896_JaffaCakes118
Size

400KB
Sample

240420-abjkcabg9y
MD5

fb7617da1580d74122a422d16a0de896
SHA1

33e6e02f9b05365e43e3bd5d7076274b655e250a
SHA256

c40020c78aaf8fb14e5d901cb515473fb54b88faf00d92913c190a17f1190907
SHA512

6d1a87218e53ae2b06346aeddf7060151652424ac291c96c26567016a764293c5bcdc7e45c8b4a8ede963a46d47466f7076030c1a55f88ace7c7d408098e5c4f
SSDEEP

6144:bVuR/zcMXOR9C8fB4g/AXJArTqUVPRgOYPKmHqKcJOnGqSFCcLYIzL/:bVuFzcMXO35ZyJAvqUNRKDqhJOGqSk2

Score

7^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fb7617da1580d74122a422d16a0de896_JaffaCakes118.exe

Resource

win7-20240221-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb7617da1580d74122a422d16a0de896_JaffaCakes118.exe

Resource

win10v2004-20240412-en

persistence upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  fb7617da1580d74122a422d16a0de896_JaffaCakes118
- Size
  
  400KB
- MD5
  
  fb7617da1580d74122a422d16a0de896
- SHA1
  
  33e6e02f9b05365e43e3bd5d7076274b655e250a
- SHA256
  
  c40020c78aaf8fb14e5d901cb515473fb54b88faf00d92913c190a17f1190907
- SHA512
  
  6d1a87218e53ae2b06346aeddf7060151652424ac291c96c26567016a764293c5bcdc7e45c8b4a8ede963a46d47466f7076030c1a55f88ace7c7d408098e5c4f
- SSDEEP
  
  6144:bVuR/zcMXOR9C8fB4g/AXJArTqUVPRgOYPKmHqKcJOnGqSFCcLYIzL/:bVuFzcMXO35ZyJAvqUNRKDqhJOGqSk2
Score

7^/10

persistence upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy