Overview

overview

7

Static

static

1

24e6034940...18.exe

windows7-x64

7

24e6034940...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    24e60349407e21abe6bbabb38da6ec01_JaffaCakes118

  • Size

    298KB

  • Sample

    240704-gw454szgpf

  • MD5

    24e60349407e21abe6bbabb38da6ec01

  • SHA1

    6d21d0ca9fc734b8149b27c4f679a5e37c544cb1

  • SHA256

    292b5f1de718219387a1f0f5903486c8fe8567cf81e691d51aed80a76a9a3984

  • SHA512

    b4c6db4d1b078608a3435c737db10cf108be6edc89ec0089bb35ca2a96e6e37a3fe5c8080f8497ebd74fac27b9d6584d9322891ff3201584c914c06bcc16a568

  • SSDEEP

    6144:dawjHWSIg118HWULKjC7Fif1mO45x/VN0cp0cyI0:dXjIaC7Fy45x/ko0cyI0

Score
7/10
persistence

Malware Config

Targets

    • Target

      24e60349407e21abe6bbabb38da6ec01_JaffaCakes118

    • Size

      298KB

    • MD5

      24e60349407e21abe6bbabb38da6ec01

    • SHA1

      6d21d0ca9fc734b8149b27c4f679a5e37c544cb1

    • SHA256

      292b5f1de718219387a1f0f5903486c8fe8567cf81e691d51aed80a76a9a3984

    • SHA512

      b4c6db4d1b078608a3435c737db10cf108be6edc89ec0089bb35ca2a96e6e37a3fe5c8080f8497ebd74fac27b9d6584d9322891ff3201584c914c06bcc16a568

    • SSDEEP

      6144:dawjHWSIg118HWULKjC7Fif1mO45x/VN0cp0cyI0:dXjIaC7Fy45x/ko0cyI0

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks