Overview

overview

7

Static

static

3

1a8f81296a...18.exe

windows7-x64

7

1a8f81296a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a8f81296ac10019ef441b79f98323ba_JaffaCakes118

  • Size

    321KB

  • Sample

    240701-j5h1ca1bpg

  • MD5

    1a8f81296ac10019ef441b79f98323ba

  • SHA1

    4cac33ffefeb40f86a2a0a06e794659a89c228e5

  • SHA256

    c52d4c2cd32b490db173288cdb7ee036c091bfd82ab8527b49a233d5798e9c0e

  • SHA512

    dd46f6c527c3febb584f403dfdc8fdc1a0c1a52f2d10c31ed30225a1ff6b11bd8da0823df79825c3f6ea822b81b7b8d690bd9b205e25f21af0310dc42992d30b

  • SSDEEP

    6144:yMC2F8NXC796TB9vj48AQbHAI0bRd0+Hh01QGT2L3OB+aCdfQS6mtA:y6eVQkTrvj4dE0b0+Hh0bq3O+PdoKA

Score
7/10
persistence

Malware Config

Targets

    • Target

      1a8f81296ac10019ef441b79f98323ba_JaffaCakes118

    • Size

      321KB

    • MD5

      1a8f81296ac10019ef441b79f98323ba

    • SHA1

      4cac33ffefeb40f86a2a0a06e794659a89c228e5

    • SHA256

      c52d4c2cd32b490db173288cdb7ee036c091bfd82ab8527b49a233d5798e9c0e

    • SHA512

      dd46f6c527c3febb584f403dfdc8fdc1a0c1a52f2d10c31ed30225a1ff6b11bd8da0823df79825c3f6ea822b81b7b8d690bd9b205e25f21af0310dc42992d30b

    • SSDEEP

      6144:yMC2F8NXC796TB9vj48AQbHAI0bRd0+Hh01QGT2L3OB+aCdfQS6mtA:y6eVQkTrvj4dE0b0+Hh0bq3O+PdoKA

    Score
    7/10
    persistence

    • Uses the VBS compiler for execution

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks