Overview

overview

8

Static

static

3

350d7fadf9...18.exe

windows7-x64

8

350d7fadf9...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    350d7fadf9a1d10c4773352774c12458_JaffaCakes118

  • Size

    398KB

  • Sample

    240710-rgyd5avcmd

  • MD5

    350d7fadf9a1d10c4773352774c12458

  • SHA1

    c34d90eca88092f7a89fbd48f055476ea77aca0d

  • SHA256

    984bac3c487255cec9d4465adf6ed549f61d3c81f6629d5839dee52c67524bcd

  • SHA512

    5c204ce8793993024fee85bb1ed4e02721995c5908eccbee9da6e6ae70a54d914014478572e52b45a9019b9e9396e767f59ec206738619efb958cb79ca93390f

  • SSDEEP

    6144:3z8qQ44jMcrhssBCTzkmX51ECBPi/C0gkjp3kkSg2pTi:jbvwMc9sTtX51ECBa/027S9p

Score
8/10
executionpersistenceupx

Malware Config

Targets

    • Target

      350d7fadf9a1d10c4773352774c12458_JaffaCakes118

    • Size

      398KB

    • MD5

      350d7fadf9a1d10c4773352774c12458

    • SHA1

      c34d90eca88092f7a89fbd48f055476ea77aca0d

    • SHA256

      984bac3c487255cec9d4465adf6ed549f61d3c81f6629d5839dee52c67524bcd

    • SHA512

      5c204ce8793993024fee85bb1ed4e02721995c5908eccbee9da6e6ae70a54d914014478572e52b45a9019b9e9396e767f59ec206738619efb958cb79ca93390f

    • SSDEEP

      6144:3z8qQ44jMcrhssBCTzkmX51ECBPi/C0gkjp3kkSg2pTi:jbvwMc9sTtX51ECBa/027S9p

    Score
    8/10
    executionpersistenceupx

    • Creates new service(s)

      persistenceexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks