Overview

overview

10

Static

static

3

4753a64283...18.exe

windows7-x64

10

4753a64283...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4753a64283a684c9f060e16b34677eef_JaffaCakes118

  • Size

    385KB

  • Sample

    240714-3xr3ts1bmg

  • MD5

    4753a64283a684c9f060e16b34677eef

  • SHA1

    66f06a7b8f3bce82cb03766730d3de762d4d2f62

  • SHA256

    7a603af9b95e719026d8b7090a47a2744e4a7d7316e6399764203ff912a246f0

  • SHA512

    8edf68a34aaedb1ff438681687fc6ff3cafc19b4037b765405754ed72f885e650c5cdf63e41f05c3137791b8517732ab4065fb0dec381236b07c5115fb2fbb11

  • SSDEEP

    6144:28+ENWJSFMCfGITPVWu7yh+iydXRxB+1tkpoz5JdoR:KKX0ITPVxyh+pVRL9pydc

Score
10/10
evasion

Malware Config

Targets

    • Target

      4753a64283a684c9f060e16b34677eef_JaffaCakes118

    • Size

      385KB

    • MD5

      4753a64283a684c9f060e16b34677eef

    • SHA1

      66f06a7b8f3bce82cb03766730d3de762d4d2f62

    • SHA256

      7a603af9b95e719026d8b7090a47a2744e4a7d7316e6399764203ff912a246f0

    • SHA512

      8edf68a34aaedb1ff438681687fc6ff3cafc19b4037b765405754ed72f885e650c5cdf63e41f05c3137791b8517732ab4065fb0dec381236b07c5115fb2fbb11

    • SSDEEP

      6144:28+ENWJSFMCfGITPVWu7yh+iydXRxB+1tkpoz5JdoR:KKX0ITPVxyh+pVRL9pydc

    Score
    10/10
    evasion

    • Modifies firewall policy service

      evasion

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks