682baf6019363b6627b25eb0764b61a2f9a82ff39a0e506274c0a13296b80be0 | Triage

Submit
Reports

Overview

overview

Static

static

7

399f0dcb9a...18.exe

windows7-x64

399f0dcb9a...18.exe

windows10-2004-x64

Sharing

General

Target

399f0dcb9aa27feb6840b352d037e076_JaffaCakes118
Size

37KB
Sample

240711-sfsb6atfpg
MD5

399f0dcb9aa27feb6840b352d037e076
SHA1

c6f71ede19ed7c72155cf116c6ae1917ce669713
SHA256

682baf6019363b6627b25eb0764b61a2f9a82ff39a0e506274c0a13296b80be0
SHA512

774a2647ac235d349b41d5229c60ed6cc8a447eae95c4bf15c3ef29891fd8b6fab4fda0c4b3a0d4ecd7714335a8151b99ce61816e6a3f48b4ac83fc0d599221d
SSDEEP

768:w2RMiIWbg81xG3tAlzfB57yRd+dkz4xWgvNn6tPfbPkT2IOinIBqKuBr:L6wtmL+W4XN6tXbPktIu

Score

10^/10

evasion trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

399f0dcb9aa27feb6840b352d037e076_JaffaCakes118.exe

Resource

win7-20240704-en

evasion trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

399f0dcb9aa27feb6840b352d037e076_JaffaCakes118.exe

Resource

win10v2004-20240709-en

evasion trojan upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  399f0dcb9aa27feb6840b352d037e076_JaffaCakes118
- Size
  
  37KB
- MD5
  
  399f0dcb9aa27feb6840b352d037e076
- SHA1
  
  c6f71ede19ed7c72155cf116c6ae1917ce669713
- SHA256
  
  682baf6019363b6627b25eb0764b61a2f9a82ff39a0e506274c0a13296b80be0
- SHA512
  
  774a2647ac235d349b41d5229c60ed6cc8a447eae95c4bf15c3ef29891fd8b6fab4fda0c4b3a0d4ecd7714335a8151b99ce61816e6a3f48b4ac83fc0d599221d
- SSDEEP
  
  768:w2RMiIWbg81xG3tAlzfB57yRd+dkz4xWgvNn6tPfbPkT2IOinIBqKuBr:L6wtmL+W4XN6tXbPktIu
Score

10^/10

evasion trojan upx
- Modifies security service
  evasion
- Windows security bypass
  evasion trojan
- Deletes itself
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Windows security modification
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx

© 2018-2025

Terms | Privacy