d2b02619c86fb8e9600646e92086e66952f8206213ea19bb18a7c038e95d0c59 | Triage

Submit
Reports

Overview

overview

Static

static

3

611f8a6ba3...18.exe

windows7-x64

611f8a6ba3...18.exe

windows10-2004-x64

3

Sharing

General

Target

611f8a6ba3d00310969fb037fe619915_JaffaCakes118
Size

40KB
Sample

240721-ycawlatdnl
MD5

611f8a6ba3d00310969fb037fe619915
SHA1

8fb67a91ebfabc2e7152e7e48fcd60e69d78ca11
SHA256

d2b02619c86fb8e9600646e92086e66952f8206213ea19bb18a7c038e95d0c59
SHA512

9b912f8c1c9f5def743fc2cd43b2fc5587cd42dbc7671e27ac679faa817b97f08dd669554c37ef3c48f72fff504b396513f4da954a1411bf3bf415f5407651a2
SSDEEP

768:+p3bI6VWz5jRMFKpdYV778HozofioZogOZmY3wb:MbI6VeTP0zs6oZYp3

Score

10^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

611f8a6ba3d00310969fb037fe619915_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

611f8a6ba3d00310969fb037fe619915_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  611f8a6ba3d00310969fb037fe619915_JaffaCakes118
- Size
  
  40KB
- MD5
  
  611f8a6ba3d00310969fb037fe619915
- SHA1
  
  8fb67a91ebfabc2e7152e7e48fcd60e69d78ca11
- SHA256
  
  d2b02619c86fb8e9600646e92086e66952f8206213ea19bb18a7c038e95d0c59
- SHA512
  
  9b912f8c1c9f5def743fc2cd43b2fc5587cd42dbc7671e27ac679faa817b97f08dd669554c37ef3c48f72fff504b396513f4da954a1411bf3bf415f5407651a2
- SSDEEP
  
  768:+p3bI6VWz5jRMFKpdYV778HozofioZogOZmY3wb:MbI6VeTP0zs6oZYp3
Score

10^/10

evasion upx
- Modifies firewall policy service
  evasion
- Deletes itself
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy