Overview

overview

6

Static

static

3

6585f7a523...18.exe

windows7-x64

6

6585f7a523...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6585f7a523e6a7e7df661507f7996a5a_JaffaCakes118

  • Size

    167KB

  • Sample

    240522-bvx3hsgb8w

  • MD5

    6585f7a523e6a7e7df661507f7996a5a

  • SHA1

    f2a4f16c449d856517fc3459c6f6105c637c46ee

  • SHA256

    b7343e6e03bd3ee539d9102a31a3cff6d5835b9c416b7c857c4eef81b2be75a6

  • SHA512

    bd9ef396638e6eb5842c43788bf9f4e4db4c44595f02465fefce38ed52876a91e13fea59d3027c00256c3d7562d6305b8c250b30252ab185ddfb80fa339c0b93

  • SSDEEP

    3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeLlHz4+fxVhV:aM7jJlRexYTHYZMtzHfxfV

Score
6/10
persistence

Malware Config

Targets

    • Target

      6585f7a523e6a7e7df661507f7996a5a_JaffaCakes118

    • Size

      167KB

    • MD5

      6585f7a523e6a7e7df661507f7996a5a

    • SHA1

      f2a4f16c449d856517fc3459c6f6105c637c46ee

    • SHA256

      b7343e6e03bd3ee539d9102a31a3cff6d5835b9c416b7c857c4eef81b2be75a6

    • SHA512

      bd9ef396638e6eb5842c43788bf9f4e4db4c44595f02465fefce38ed52876a91e13fea59d3027c00256c3d7562d6305b8c250b30252ab185ddfb80fa339c0b93

    • SSDEEP

      3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeLlHz4+fxVhV:aM7jJlRexYTHYZMtzHfxfV

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks