Overview

overview

7

Static

static

3

371b9518b9...18.exe

windows7-x64

7

371b9518b9...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    371b9518b95c65b85da5523d2865084d_JaffaCakes118

  • Size

    168KB

  • Sample

    240711-bcajhazdnl

  • MD5

    371b9518b95c65b85da5523d2865084d

  • SHA1

    678082e822b5eee10c36cf5d8515e2b077042b94

  • SHA256

    c572abd7958b6d6c4a42a501f8ed1603397d9014704ec60fa452306d8d738dc7

  • SHA512

    f4e8df7fce497b49d8a0f2e4ef4a8e83c455ddc93b76fbd038b27f49f5c3d54d7e0f03a17bce7189c8a00d8342ac8f0052b3556056fefb54ba320224152af7fa

  • SSDEEP

    3072:8IdcFLEdskgrt05bnwhVh6PTPXWR1NdK5VU:5WjZ0xCVh6SR1NM5V

Score
7/10
persistence

Malware Config

Targets

    • Target

      371b9518b95c65b85da5523d2865084d_JaffaCakes118

    • Size

      168KB

    • MD5

      371b9518b95c65b85da5523d2865084d

    • SHA1

      678082e822b5eee10c36cf5d8515e2b077042b94

    • SHA256

      c572abd7958b6d6c4a42a501f8ed1603397d9014704ec60fa452306d8d738dc7

    • SHA512

      f4e8df7fce497b49d8a0f2e4ef4a8e83c455ddc93b76fbd038b27f49f5c3d54d7e0f03a17bce7189c8a00d8342ac8f0052b3556056fefb54ba320224152af7fa

    • SSDEEP

      3072:8IdcFLEdskgrt05bnwhVh6PTPXWR1NdK5VU:5WjZ0xCVh6SR1NM5V

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks