Overview

overview

10

Static

static

3

04e4e986fb...18.exe

windows7-x64

10

04e4e986fb...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    04e4e986fb3025d5279cd7c51893247e_JaffaCakes118

  • Size

    108KB

  • Sample

    240428-llqbesda41

  • MD5

    04e4e986fb3025d5279cd7c51893247e

  • SHA1

    cf743ea80ed77d3c74b17cf5610ca150207bc0cb

  • SHA256

    503ef81e6f8818b4a1a0012d045d8a1a433375cff6f554751fd430fe8234a45a

  • SHA512

    2fc41ad1151c5de8f3d48895e08a0d727e654414a25e74a4dd6d5b8678efaaf7995ce640ac233e4e347a11a86d209ad685a0c551465508ae353521ebbac97a6e

  • SSDEEP

    768:0Xne9SLNE6yDCAtSt6b3yFhBVNsx4MOZjFB4xbyv0DVtaxuK9lta5qCqeq6qWqS2:0X9EZ1rahBY2VZjFK2sBt2tIA

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      04e4e986fb3025d5279cd7c51893247e_JaffaCakes118

    • Size

      108KB

    • MD5

      04e4e986fb3025d5279cd7c51893247e

    • SHA1

      cf743ea80ed77d3c74b17cf5610ca150207bc0cb

    • SHA256

      503ef81e6f8818b4a1a0012d045d8a1a433375cff6f554751fd430fe8234a45a

    • SHA512

      2fc41ad1151c5de8f3d48895e08a0d727e654414a25e74a4dd6d5b8678efaaf7995ce640ac233e4e347a11a86d209ad685a0c551465508ae353521ebbac97a6e

    • SSDEEP

      768:0Xne9SLNE6yDCAtSt6b3yFhBVNsx4MOZjFB4xbyv0DVtaxuK9lta5qCqeq6qWqS2:0X9EZ1rahBY2VZjFK2sBt2tIA

    Score
    10/10
    evasionpersistencetrojan

    • UAC bypass

      evasiontrojan

    • Disables Task Manager via registry modification

      evasion

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks