Overview

overview

8

Static

static

3

70789b0e45...18.exe

windows7-x64

8

70789b0e45...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    70789b0e45a82b9a0915d1900dc16d66_JaffaCakes118

  • Size

    66KB

  • Sample

    240525-b494faae36

  • MD5

    70789b0e45a82b9a0915d1900dc16d66

  • SHA1

    a14fc70b59a35381f1baa32557e92bb67eba8971

  • SHA256

    9e8604e30c32f7975efb0773e8ab04485840685312d0f3623824af0407c539a0

  • SHA512

    8f395d1f6b903847accc6fa8b48b1d46f14a924b92acf880884c287c2145684adeb8468ff567a7751595c79a42605a17ae9e62052503edc26bdc55970fb75aec

  • SSDEEP

    1536:5MPXEmAiRm2VfvmNFnToIf6HTRLar5ZINrWKym:m9Vfv6tTBfoTRLar5ZINrWKym

Score
8/10
persistence

Malware Config

Targets

    • Target

      70789b0e45a82b9a0915d1900dc16d66_JaffaCakes118

    • Size

      66KB

    • MD5

      70789b0e45a82b9a0915d1900dc16d66

    • SHA1

      a14fc70b59a35381f1baa32557e92bb67eba8971

    • SHA256

      9e8604e30c32f7975efb0773e8ab04485840685312d0f3623824af0407c539a0

    • SHA512

      8f395d1f6b903847accc6fa8b48b1d46f14a924b92acf880884c287c2145684adeb8468ff567a7751595c79a42605a17ae9e62052503edc26bdc55970fb75aec

    • SSDEEP

      1536:5MPXEmAiRm2VfvmNFnToIf6HTRLar5ZINrWKym:m9Vfv6tTBfoTRLar5ZINrWKym

    Score
    8/10
    persistence

    • Sets DLL path for service in the registry

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks