Overview

overview

8

Static

static

3

4c269e6ef4...18.exe

windows7-x64

3

4c269e6ef4...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c269e6ef46b57552d1ee84bc0d6a30d_JaffaCakes118

  • Size

    51KB

  • Sample

    240716-a93qwazgld

  • MD5

    4c269e6ef46b57552d1ee84bc0d6a30d

  • SHA1

    06403da4599ff529cd79b773087cc4c9c3c83971

  • SHA256

    e07002df90802086106815cd3474a506ef8d5f6d1d82c2d1ec3eb6f586854496

  • SHA512

    1b231063d5b1415e0815b44ef4cb6e54da17d09c6906ede77d08b3422426453333f073ca7df14435a48f62da27d65c53a012966beb3b11e126cea83703584b6e

  • SSDEEP

    1536:qmOLm01gW7/k0TRJy0HZ3gMUwvWi7oD58MYwY:pkY0TR0MLoDuMYwY

Score
8/10
persistence

Malware Config

Targets

    • Target

      4c269e6ef46b57552d1ee84bc0d6a30d_JaffaCakes118

    • Size

      51KB

    • MD5

      4c269e6ef46b57552d1ee84bc0d6a30d

    • SHA1

      06403da4599ff529cd79b773087cc4c9c3c83971

    • SHA256

      e07002df90802086106815cd3474a506ef8d5f6d1d82c2d1ec3eb6f586854496

    • SHA512

      1b231063d5b1415e0815b44ef4cb6e54da17d09c6906ede77d08b3422426453333f073ca7df14435a48f62da27d65c53a012966beb3b11e126cea83703584b6e

    • SSDEEP

      1536:qmOLm01gW7/k0TRJy0HZ3gMUwvWi7oD58MYwY:pkY0TR0MLoDuMYwY

    Score
    8/10
    persistence

    • Sets service image path in registry

      persistence

    • Deletes itself

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks