Overview

overview

10

Static

static

3

391fbfebac...18.exe

windows7-x64

10

391fbfebac...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    391fbfebacbc58b4d09eb584c170789c_JaffaCakes118

  • Size

    342KB

  • Sample

    240711-pp388syeqg

  • MD5

    391fbfebacbc58b4d09eb584c170789c

  • SHA1

    a27bb0872c059ddecb6b8a23a4749cfec844c6de

  • SHA256

    6bf318da4c945874048f4f7071714189860537651e8a7830a9e2ffcefcfc36e1

  • SHA512

    de46c54eed9214e997033720566b2dd1ec6329a7df42edd3da71c32c06624f4019a2f8a7e9611a30aff997f76dbc54cebe53a06095616fc76f127fe65fa1c66b

  • SSDEEP

    6144:oTtGZLcSj5PSXyggMfOLRTYO+9wTLfdvyhEwFUsjRLTt+/z4eq3h:VFhgh2R8O+yFqpLh+rqh

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      391fbfebacbc58b4d09eb584c170789c_JaffaCakes118

    • Size

      342KB

    • MD5

      391fbfebacbc58b4d09eb584c170789c

    • SHA1

      a27bb0872c059ddecb6b8a23a4749cfec844c6de

    • SHA256

      6bf318da4c945874048f4f7071714189860537651e8a7830a9e2ffcefcfc36e1

    • SHA512

      de46c54eed9214e997033720566b2dd1ec6329a7df42edd3da71c32c06624f4019a2f8a7e9611a30aff997f76dbc54cebe53a06095616fc76f127fe65fa1c66b

    • SSDEEP

      6144:oTtGZLcSj5PSXyggMfOLRTYO+9wTLfdvyhEwFUsjRLTt+/z4eq3h:VFhgh2R8O+yFqpLh+rqh

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks