Overview

overview

10

Static

static

3

5f58ceecb9...18.exe

windows7-x64

10

5f58ceecb9...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    5f58ceecb9ff3249a17713ca27da29f9_JaffaCakes118

  • Size

    384KB

  • Sample

    240720-g2hjastcqg

  • MD5

    5f58ceecb9ff3249a17713ca27da29f9

  • SHA1

    dc6d3fde6c53566237f49e0fabfd2474ebe02894

  • SHA256

    413996bf2dd07e63ad7304ffc5aa2e67b628004313c58f73b5f09d1e6bae92e0

  • SHA512

    6212b7b2ed001e09bb8ae373e9a9a880e3e037bb81529674a6da66458ae0b552698fd7423b64132f81df57313d2156ce21c0c6694ce6df0db60ba303cebee479

  • SSDEEP

    6144:Hot9Rv55G5ke9MRs0On1SIFs7Bqwtj9kJ8c0IITjZ0N7/cYL9duz4hwOUu808Oh1:0R5GdCs0O1BkBqwtjFc0fTjZOT59ozI1

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      5f58ceecb9ff3249a17713ca27da29f9_JaffaCakes118

    • Size

      384KB

    • MD5

      5f58ceecb9ff3249a17713ca27da29f9

    • SHA1

      dc6d3fde6c53566237f49e0fabfd2474ebe02894

    • SHA256

      413996bf2dd07e63ad7304ffc5aa2e67b628004313c58f73b5f09d1e6bae92e0

    • SHA512

      6212b7b2ed001e09bb8ae373e9a9a880e3e037bb81529674a6da66458ae0b552698fd7423b64132f81df57313d2156ce21c0c6694ce6df0db60ba303cebee479

    • SSDEEP

      6144:Hot9Rv55G5ke9MRs0On1SIFs7Bqwtj9kJ8c0IITjZ0N7/cYL9duz4hwOUu808Oh1:0R5GdCs0O1BkBqwtjFc0fTjZOT59ozI1

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks