Overview

overview

7

Static

static

3

67e72b246f...18.exe

windows7-x64

7

67e72b246f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    67e72b246fa68902935978681fa72358_JaffaCakes118

  • Size

    18KB

  • Sample

    240723-rl6lasvakr

  • MD5

    67e72b246fa68902935978681fa72358

  • SHA1

    0729701822bf400660038f06b0c3ab6da58c1351

  • SHA256

    1b733994882c9dfd6a56567db8baf2b6a4799dcfa48cb03ee87f72c0ac9d1e0f

  • SHA512

    4a0cd976bf9d047f5f3ca2b8e6253a53e95dbe5f481b11661a2e6f75c64fbe3b3c830fab3fc153d0e1b098ad3c14300fcc2e9d4fa06b90607ab6f78db62f4440

  • SSDEEP

    384:So3bqfV9APDVizbW2n9KzikSseKiWrt3yV4typa:S8bqfAVizK29OJSsI0Oa

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      67e72b246fa68902935978681fa72358_JaffaCakes118

    • Size

      18KB

    • MD5

      67e72b246fa68902935978681fa72358

    • SHA1

      0729701822bf400660038f06b0c3ab6da58c1351

    • SHA256

      1b733994882c9dfd6a56567db8baf2b6a4799dcfa48cb03ee87f72c0ac9d1e0f

    • SHA512

      4a0cd976bf9d047f5f3ca2b8e6253a53e95dbe5f481b11661a2e6f75c64fbe3b3c830fab3fc153d0e1b098ad3c14300fcc2e9d4fa06b90607ab6f78db62f4440

    • SSDEEP

      384:So3bqfV9APDVizbW2n9KzikSseKiWrt3yV4typa:S8bqfAVizK29OJSsI0Oa

    Score
    7/10
    persistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks