Overview

overview

7

Static

static

7

227296df35...18.exe

windows7-x64

7

227296df35...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    227296df3579cf32e6bd248fdb55375b_JaffaCakes118

  • Size

    934KB

  • Sample

    240703-p7wxwawgpg

  • MD5

    227296df3579cf32e6bd248fdb55375b

  • SHA1

    0321314501456ef7bc281601e0c2ac71d4b224d3

  • SHA256

    4aa1556adc676e1bb2a278639c49ee1a849b434992e77d5a779bb64a0b082ce3

  • SHA512

    96e7a2d4c025b2108bceadc498111c731085ef70af1d50a47b116f6dcc07fd71160d260d44665e29655507955d16077b05d9fc12e12398aac1ad32c078613459

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjgQg:r5sJo6YrFUiyAak11LtjgQg

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      227296df3579cf32e6bd248fdb55375b_JaffaCakes118

    • Size

      934KB

    • MD5

      227296df3579cf32e6bd248fdb55375b

    • SHA1

      0321314501456ef7bc281601e0c2ac71d4b224d3

    • SHA256

      4aa1556adc676e1bb2a278639c49ee1a849b434992e77d5a779bb64a0b082ce3

    • SHA512

      96e7a2d4c025b2108bceadc498111c731085ef70af1d50a47b116f6dcc07fd71160d260d44665e29655507955d16077b05d9fc12e12398aac1ad32c078613459

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjgQg:r5sJo6YrFUiyAak11LtjgQg

    Score
    7/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks