Overview

overview

7

Static

static

7

0800490dd0...18.exe

windows7-x64

7

0800490dd0...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0800490dd086bd1b2209a39bd6145465_JaffaCakes118

  • Size

    16KB

  • Sample

    240620-vhqbpayaja

  • MD5

    0800490dd086bd1b2209a39bd6145465

  • SHA1

    37e067f7bf310400edf98398aed0e1531c021f2e

  • SHA256

    ed2ffd2670d892001e46dbbff7798a5fe6c380f49f47eec9a3541d90fef25ac6

  • SHA512

    72555faf2b5520cd1b0c15a21db48d5ee68c4ab81f10a7ec869b59d24c3c31e63a2634cb66c35c7a582a34379af203a7d73b2118ff39ad09e83add79b713a711

  • SSDEEP

    384:jU+9GcaJ6FwmIAfMs2vkU4t3gsw9/nHXY+v3I0cnvsH:VHG6p0s2cU4t3gss3If

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      0800490dd086bd1b2209a39bd6145465_JaffaCakes118

    • Size

      16KB

    • MD5

      0800490dd086bd1b2209a39bd6145465

    • SHA1

      37e067f7bf310400edf98398aed0e1531c021f2e

    • SHA256

      ed2ffd2670d892001e46dbbff7798a5fe6c380f49f47eec9a3541d90fef25ac6

    • SHA512

      72555faf2b5520cd1b0c15a21db48d5ee68c4ab81f10a7ec869b59d24c3c31e63a2634cb66c35c7a582a34379af203a7d73b2118ff39ad09e83add79b713a711

    • SSDEEP

      384:jU+9GcaJ6FwmIAfMs2vkU4t3gsw9/nHXY+v3I0cnvsH:VHG6p0s2cU4t3gss3If

    Score
    7/10
    persistenceupx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks