309d48e866f14fab470c93db57d7334bd271df8482c5bf0c8ffbe9e468d739cc | Triage

Submit
Reports

Overview

overview

8

Static

static

3

06d6779dec...18.exe

windows7-x64

8

06d6779dec...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

06d6779dec08194cb910ae343070df9b_JaffaCakes118
Size

349KB
Sample

240620-rva6rawgnq
MD5

06d6779dec08194cb910ae343070df9b
SHA1

0910867994485317118dd46c7b1d23140c170a34
SHA256

309d48e866f14fab470c93db57d7334bd271df8482c5bf0c8ffbe9e468d739cc
SHA512

e07b44ee16947bc56ac8ead131522a8de8a6c87d4e028eecefd7c3459563c6bf1483a961af677e612d7ce6f68b25939c4ea9e37c2ba5906c5a23f234c39aead7
SSDEEP

6144:jUf+krSCXJxm5aVLVhgcvpjAnqye7m8ITESWzJNhwTk:jUWkrMEVHpjAn0sKwT

Score

8^/10

evasion persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

06d6779dec08194cb910ae343070df9b_JaffaCakes118.exe

Resource

win7-20240508-en

evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

06d6779dec08194cb910ae343070df9b_JaffaCakes118.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  06d6779dec08194cb910ae343070df9b_JaffaCakes118
- Size
  
  349KB
- MD5
  
  06d6779dec08194cb910ae343070df9b
- SHA1
  
  0910867994485317118dd46c7b1d23140c170a34
- SHA256
  
  309d48e866f14fab470c93db57d7334bd271df8482c5bf0c8ffbe9e468d739cc
- SHA512
  
  e07b44ee16947bc56ac8ead131522a8de8a6c87d4e028eecefd7c3459563c6bf1483a961af677e612d7ce6f68b25939c4ea9e37c2ba5906c5a23f234c39aead7
- SSDEEP
  
  6144:jUf+krSCXJxm5aVLVhgcvpjAnqye7m8ITESWzJNhwTk:jUWkrMEVHpjAn0sKwT
Score

8^/10

evasion persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Disables taskbar notifications via registry modification
  evasion
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

© 2018-2025

Terms | Privacy