Overview

overview

7

Static

static

7

40d1a55ab3...18.exe

windows7-x64

7

40d1a55ab3...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    40d1a55ab39f584cbd100b7483294dd2_JaffaCakes118

  • Size

    444KB

  • Sample

    240713-jqz1bavcpe

  • MD5

    40d1a55ab39f584cbd100b7483294dd2

  • SHA1

    f807a5fb2715653f619e0c4786ccb4186ee10929

  • SHA256

    ce9660f5360a2a007f40aa77849293c076c561c43418041a144aa441dd685df5

  • SHA512

    c8b23c9f4c75aee3196ffdfa6872db17e0bd11e7b117fe9df0430ec195d2e80169090e66d98963d0af54365e069868ad3975d34c6aaec1a0aaf9763cf90bc3a2

  • SSDEEP

    12288:wuX/iIu5QjXqgNY42s6TgCPWRYcK7/n+f:wgNu2Xqg+42OBm/Gf

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      40d1a55ab39f584cbd100b7483294dd2_JaffaCakes118

    • Size

      444KB

    • MD5

      40d1a55ab39f584cbd100b7483294dd2

    • SHA1

      f807a5fb2715653f619e0c4786ccb4186ee10929

    • SHA256

      ce9660f5360a2a007f40aa77849293c076c561c43418041a144aa441dd685df5

    • SHA512

      c8b23c9f4c75aee3196ffdfa6872db17e0bd11e7b117fe9df0430ec195d2e80169090e66d98963d0af54365e069868ad3975d34c6aaec1a0aaf9763cf90bc3a2

    • SSDEEP

      12288:wuX/iIu5QjXqgNY42s6TgCPWRYcK7/n+f:wgNu2Xqg+42OBm/Gf

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks