Overview

overview

10

Static

static

3

39f3c28e3b...18.exe

windows7-x64

10

39f3c28e3b...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    39f3c28e3b08574dec0c3b5e7868f1a1_JaffaCakes118

  • Size

    52KB

  • Sample

    240711-t94sqavfnn

  • MD5

    39f3c28e3b08574dec0c3b5e7868f1a1

  • SHA1

    f3c963c08df88163171885c9bad29abc32fe9d9a

  • SHA256

    4762aa9e5334f19fe2309c85224a937a0672ea875702b0cc01fcedaad48f0921

  • SHA512

    a89760cbd1d3b2ca4ba2a3d8d33e2e0edbc0e959663303b851d48164e7073e904d7d97f3937553e943f19feaa94c745cb9564a89121caee2df2da6a1b78787f0

  • SSDEEP

    768:+HcQHVVksiRN5p3QE+KKGYHRCRMwWNmfALAWMXHoksZDdl:JQ1VksoNPQZzhqmmfA3AHoTF/

Score
10/10
persistence

Malware Config

Targets

    • Target

      39f3c28e3b08574dec0c3b5e7868f1a1_JaffaCakes118

    • Size

      52KB

    • MD5

      39f3c28e3b08574dec0c3b5e7868f1a1

    • SHA1

      f3c963c08df88163171885c9bad29abc32fe9d9a

    • SHA256

      4762aa9e5334f19fe2309c85224a937a0672ea875702b0cc01fcedaad48f0921

    • SHA512

      a89760cbd1d3b2ca4ba2a3d8d33e2e0edbc0e959663303b851d48164e7073e904d7d97f3937553e943f19feaa94c745cb9564a89121caee2df2da6a1b78787f0

    • SSDEEP

      768:+HcQHVVksiRN5p3QE+KKGYHRCRMwWNmfALAWMXHoksZDdl:JQ1VksoNPQZzhqmmfA3AHoTF/

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Modifies WinLogon

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks