ca8ade758f6b59bbc129b091c743b59e912e759fb412a650ef3180e582deca33 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

2c8d7818a1...18.exe

windows7-x64

7

2c8d7818a1...18.exe

windows10-2004-x64

7

Sharing

General

Target

2c8d7818a17eb2392216304a89925320_JaffaCakes118
Size

296KB
Sample

240708-qwjc3stfme
MD5

2c8d7818a17eb2392216304a89925320
SHA1

dfd13015fca86e0300f916a6bcc26790dcd908e9
SHA256

ca8ade758f6b59bbc129b091c743b59e912e759fb412a650ef3180e582deca33
SHA512

4b51f42cc6ba1d26ad5736ae131bf23000e1237aedd78429c4625af6ee5cb75b353be52d1bb02b4b309ba1f68a21f7e91a6ef63c5369cf6410f7ccc05331d9c1
SSDEEP

6144:F9raWFVyqQYj77MNQCzX1fwejjgKhwyW6pAgwdUuKKqKHCUqn4SXq:PaWVrT77MNQCzOmjFW4ApUuKKqKHCbb

Score

7^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2c8d7818a17eb2392216304a89925320_JaffaCakes118.exe

Resource

win7-20240704-en

persistence upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

2c8d7818a17eb2392216304a89925320_JaffaCakes118.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  2c8d7818a17eb2392216304a89925320_JaffaCakes118
- Size
  
  296KB
- MD5
  
  2c8d7818a17eb2392216304a89925320
- SHA1
  
  dfd13015fca86e0300f916a6bcc26790dcd908e9
- SHA256
  
  ca8ade758f6b59bbc129b091c743b59e912e759fb412a650ef3180e582deca33
- SHA512
  
  4b51f42cc6ba1d26ad5736ae131bf23000e1237aedd78429c4625af6ee5cb75b353be52d1bb02b4b309ba1f68a21f7e91a6ef63c5369cf6410f7ccc05331d9c1
- SSDEEP
  
  6144:F9raWFVyqQYj77MNQCzX1fwejjgKhwyW6pAgwdUuKKqKHCUqn4SXq:PaWVrT77MNQCzOmjFW4ApUuKKqKHCbb
Score

7^/10

persistence upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy