Overview

overview

10

Static

static

3

4ad762d718...18.exe

windows7-x64

10

4ad762d718...18.exe

windows10-2004-x64

7

Resubmissions

15-07-2024 18:20

240715-wytvgswbme 10

15-07-2024 18:16

240715-wwhdnswana 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ad762d71871c8d17d9d07f6c654b2df_JaffaCakes118

  • Size

    5.1MB

  • Sample

    240715-wwhdnswana

  • MD5

    4ad762d71871c8d17d9d07f6c654b2df

  • SHA1

    f6f70e88f8ef7c5ed1ff85d9fcdb1d410c7f31a9

  • SHA256

    7b33f299b0cb7fcc4d4038d29ef24798e3a8b23b26a46da67fa3209f499e15d5

  • SHA512

    2d54e52383a086231d4122b3ac50cc5925072b9d72f67a4a6b30bce15a5e790d69b4d8130fad2920d273752b946e0a28591428937ec0e66dfe699d651d1f0f40

  • SSDEEP

    24576:MP09/wTXGJZ4+cOAlVZIfd6LymDZpfimWbDntBJMe6AwcFNguxoCWcP+Sf:MQ/AGInZGALyWP32t4hcFNHyfc2I

Score
10/10
persistence

Malware Config

Targets

    • Target

      4ad762d71871c8d17d9d07f6c654b2df_JaffaCakes118

    • Size

      5.1MB

    • MD5

      4ad762d71871c8d17d9d07f6c654b2df

    • SHA1

      f6f70e88f8ef7c5ed1ff85d9fcdb1d410c7f31a9

    • SHA256

      7b33f299b0cb7fcc4d4038d29ef24798e3a8b23b26a46da67fa3209f499e15d5

    • SHA512

      2d54e52383a086231d4122b3ac50cc5925072b9d72f67a4a6b30bce15a5e790d69b4d8130fad2920d273752b946e0a28591428937ec0e66dfe699d651d1f0f40

    • SSDEEP

      24576:MP09/wTXGJZ4+cOAlVZIfd6LymDZpfimWbDntBJMe6AwcFNguxoCWcP+Sf:MQ/AGInZGALyWP32t4hcFNHyfc2I

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks