General
-
Target
bce954f422e15aea97f256e690894085_JaffaCakes118
-
Size
780KB
-
Sample
240618-t3e6sawank
-
MD5
bce954f422e15aea97f256e690894085
-
SHA1
fbbd9415203c187a0e2ad90c0399015964cb8ce2
-
SHA256
283a6aa481e63c0aefd46004cb5b127a58d1102edc78784404491f64b45f579a
-
SHA512
81f9e12c87e5f8ffecf12e3e7af11a798174ed5fdc3cf0de11d63ba13141d1b2f776773ff7c600cce005b810ba7219c8771061619ba43854427a1c940c87e050
-
SSDEEP
24576:qhiDoNJQWSSoPyKUq/XqcUHl0qmzJ8sYSc8O:eiDPWSS8yKUiXqcX/G1mO
Static task
static1
Behavioral task
behavioral1
Sample
bce954f422e15aea97f256e690894085_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
bce954f422e15aea97f256e690894085_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
bce954f422e15aea97f256e690894085_JaffaCakes118
-
Size
780KB
-
MD5
bce954f422e15aea97f256e690894085
-
SHA1
fbbd9415203c187a0e2ad90c0399015964cb8ce2
-
SHA256
283a6aa481e63c0aefd46004cb5b127a58d1102edc78784404491f64b45f579a
-
SHA512
81f9e12c87e5f8ffecf12e3e7af11a798174ed5fdc3cf0de11d63ba13141d1b2f776773ff7c600cce005b810ba7219c8771061619ba43854427a1c940c87e050
-
SSDEEP
24576:qhiDoNJQWSSoPyKUq/XqcUHl0qmzJ8sYSc8O:eiDPWSS8yKUiXqcX/G1mO
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Executes dropped EXE
-
Loads dropped DLL
-