Overview

overview

10

Static

static

3

3386576eca...18.exe

windows7-x64

10

3386576eca...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3386576eca3b69add75b499c83ea763d_JaffaCakes118

  • Size

    393KB

  • Sample

    240710-gf9qnasbjc

  • MD5

    3386576eca3b69add75b499c83ea763d

  • SHA1

    bff2c2f968d1a57be24d88d8c8fa5383bed92ad6

  • SHA256

    60ef1da5900ae93d1ab1bf9da48a2f6e48eae1b1b1f014aa5319e2ade69f2a5e

  • SHA512

    226a92f418beda8ea77e8d6f9c73092b826496efda413647585df3f1f190c14f50e223becb04b8b70eaa6067569de8ab55ea2c0811e458934858153c74cdde04

  • SSDEEP

    6144:b1eq3xg7dUShNmPhlen1GJw9B1uqY1dZHhptjYUxevM79lWzuDRsxyYZvy0TDjMY:5ecg7dUmmLen1G6Lkjr7plWzuDRsVqZO

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      3386576eca3b69add75b499c83ea763d_JaffaCakes118

    • Size

      393KB

    • MD5

      3386576eca3b69add75b499c83ea763d

    • SHA1

      bff2c2f968d1a57be24d88d8c8fa5383bed92ad6

    • SHA256

      60ef1da5900ae93d1ab1bf9da48a2f6e48eae1b1b1f014aa5319e2ade69f2a5e

    • SHA512

      226a92f418beda8ea77e8d6f9c73092b826496efda413647585df3f1f190c14f50e223becb04b8b70eaa6067569de8ab55ea2c0811e458934858153c74cdde04

    • SSDEEP

      6144:b1eq3xg7dUShNmPhlen1GJw9B1uqY1dZHhptjYUxevM79lWzuDRsxyYZvy0TDjMY:5ecg7dUmmLen1G6Lkjr7plWzuDRsVqZO

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks