Overview

overview

7

Static

static

1

289250ab78...18.exe

windows7-x64

7

289250ab78...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    289250ab78db08ac241c60c9e98a6f2e_JaffaCakes118

  • Size

    380KB

  • Sample

    240706-sb6c8athmb

  • MD5

    289250ab78db08ac241c60c9e98a6f2e

  • SHA1

    c08171b291a8c011945dc19082806f0a21281a3c

  • SHA256

    33999f9859dbd2de3d87d62488c625e4559b9d3bddad14f4e116a8f5a2c58a35

  • SHA512

    3dac55d3526ca18fe18057bed33d0c542e46ed0a919c0d495ea2c1daf6d02634599c4c2596a77c8bf0f872cd3eff4ad575336c47ed132e02128ebdfc7f694e2a

  • SSDEEP

    6144:G1qjtX94z9moAupI8zchJm8EroL3iZBxjGWsQmbFoI0BEOIF:PjjUPfKGs66ymbFoK

Score
7/10
persistence

Malware Config

Targets

    • Target

      289250ab78db08ac241c60c9e98a6f2e_JaffaCakes118

    • Size

      380KB

    • MD5

      289250ab78db08ac241c60c9e98a6f2e

    • SHA1

      c08171b291a8c011945dc19082806f0a21281a3c

    • SHA256

      33999f9859dbd2de3d87d62488c625e4559b9d3bddad14f4e116a8f5a2c58a35

    • SHA512

      3dac55d3526ca18fe18057bed33d0c542e46ed0a919c0d495ea2c1daf6d02634599c4c2596a77c8bf0f872cd3eff4ad575336c47ed132e02128ebdfc7f694e2a

    • SSDEEP

      6144:G1qjtX94z9moAupI8zchJm8EroL3iZBxjGWsQmbFoI0BEOIF:PjjUPfKGs66ymbFoK

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks