General
-
Target
3a14cb83998df969fd5d9770d95c7e61_JaffaCakes118
-
Size
29KB
-
Sample
240711-v17npawhjm
-
MD5
3a14cb83998df969fd5d9770d95c7e61
-
SHA1
fc2319a68fff9571980de0d199510a1483a05eb3
-
SHA256
3369901eaf0e114554ebac41237fef2d722f95aa3ab06f8ff68f9823ea014b4e
-
SHA512
24e0890b02113eb467175c2cfbb987dda0ec7180eb1582b3e28eab6bab32fe717e6374340f44e60053995f087f6743d9f700b565189808f8acfe5caf8a4b37fe
-
SSDEEP
768:HADtTCBu0YszVPH/08EuX1nve23r3nbcuyD7Uqn4Lgq:HJBuFszNeuhe23r3nouy8qn4Eq
Malware Config
Targets
-
-
Target
3a14cb83998df969fd5d9770d95c7e61_JaffaCakes118
-
Size
29KB
-
MD5
3a14cb83998df969fd5d9770d95c7e61
-
SHA1
fc2319a68fff9571980de0d199510a1483a05eb3
-
SHA256
3369901eaf0e114554ebac41237fef2d722f95aa3ab06f8ff68f9823ea014b4e
-
SHA512
24e0890b02113eb467175c2cfbb987dda0ec7180eb1582b3e28eab6bab32fe717e6374340f44e60053995f087f6743d9f700b565189808f8acfe5caf8a4b37fe
-
SSDEEP
768:HADtTCBu0YszVPH/08EuX1nve23r3nbcuyD7Uqn4Lgq:HJBuFszNeuhe23r3nouy8qn4Eq
Score8/10-
Event Triggered Execution: Image File Execution Options Injection
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Image File Execution Options Injection
1