Overview

overview

7

Static

static

7

07662e2677...18.exe

windows7-x64

7

07662e2677...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07662e26777c9b88ecd97697c529a4e6_JaffaCakes118

  • Size

    311KB

  • Sample

    240624-j56fmsserc

  • MD5

    07662e26777c9b88ecd97697c529a4e6

  • SHA1

    f02ade58d0292b4732d62ee57c4bb9adfae84147

  • SHA256

    f3855ec515053d845f8c5ffbac0e5dc6bd776b6225473ff05d0f5cd6d23c43cf

  • SHA512

    bac09541d1157774e2fc48c27a7a23c67e4001be3c9836d5d33ec6ef01d5a2f777fb8a930dd98676b035a5178e5f877dd3899aec0a93297cf5127d2e75991726

  • SSDEEP

    6144:DjeEsjVznrzaDbb02BAFnq/1R9lQax5G+02wwluU1Fu0QUGb0o73b7+NDphr:3ViVjrzS49IbQrSuUbdQUGn3n+Fr

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      07662e26777c9b88ecd97697c529a4e6_JaffaCakes118

    • Size

      311KB

    • MD5

      07662e26777c9b88ecd97697c529a4e6

    • SHA1

      f02ade58d0292b4732d62ee57c4bb9adfae84147

    • SHA256

      f3855ec515053d845f8c5ffbac0e5dc6bd776b6225473ff05d0f5cd6d23c43cf

    • SHA512

      bac09541d1157774e2fc48c27a7a23c67e4001be3c9836d5d33ec6ef01d5a2f777fb8a930dd98676b035a5178e5f877dd3899aec0a93297cf5127d2e75991726

    • SSDEEP

      6144:DjeEsjVznrzaDbb02BAFnq/1R9lQax5G+02wwluU1Fu0QUGb0o73b7+NDphr:3ViVjrzS49IbQrSuUbdQUGn3n+Fr

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks