Overview

overview

8

Static

static

3

02bca01c34...18.exe

windows7-x64

8

02bca01c34...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    02bca01c3404f092e688449ca8ef797b_JaffaCakes118

  • Size

    176KB

  • Sample

    240427-jfj64sef3w

  • MD5

    02bca01c3404f092e688449ca8ef797b

  • SHA1

    a6aac2cc2d318599543e5a92be1778ed988825fe

  • SHA256

    ef8219e411ef7c74875a0050453624958cf74c2b08dd227003816cb9b25e0283

  • SHA512

    db1286b8e52bc80865ed27e464dd22187b8b061803e4d3d1369261ca20a783025c08f4859dd76a540923096aabe94809184576cc3edc37233dec260228ad9af2

  • SSDEEP

    1536:151A5sSq46RzRQVvUME/5F3H8QTAP0x0R4sbA5uXDg8GtbjfzRfvZdgE6EZm6N5a:lVlzKw8usbhkZ5fzPdZ6x

Score
8/10
persistence

Malware Config

Targets

    • Target

      02bca01c3404f092e688449ca8ef797b_JaffaCakes118

    • Size

      176KB

    • MD5

      02bca01c3404f092e688449ca8ef797b

    • SHA1

      a6aac2cc2d318599543e5a92be1778ed988825fe

    • SHA256

      ef8219e411ef7c74875a0050453624958cf74c2b08dd227003816cb9b25e0283

    • SHA512

      db1286b8e52bc80865ed27e464dd22187b8b061803e4d3d1369261ca20a783025c08f4859dd76a540923096aabe94809184576cc3edc37233dec260228ad9af2

    • SSDEEP

      1536:151A5sSq46RzRQVvUME/5F3H8QTAP0x0R4sbA5uXDg8GtbjfzRfvZdgE6EZm6N5a:lVlzKw8usbhkZ5fzPdZ6x

    Score
    8/10
    persistence

    • Adds policy Run key to start application

      persistence

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks