General

  • Target

    6a443cbb50117c2f609ebccdc1e36977_JaffaCakes118

  • Size

    33KB

  • Sample

    240724-fadklaycrn

  • MD5

    6a443cbb50117c2f609ebccdc1e36977

  • SHA1

    989a48bc642762638a896a9ea3794acaea9b99e3

  • SHA256

    2b4f48b988569505d7b1235878e5952f08afd89e43a66eea473e1113f7a5cf61

  • SHA512

    738a34ce5acfa7593da8d6a8d520ab354c451e4f78c0033ff75696af185f5a36fd5fd51b2fbe9bc31d98d74db6529e7482a952f5e26db0c1cc641bbf6cb95c3c

  • SSDEEP

    768:++b6Gf4Gpq4yUuivMWwIqcuzGQGc3GlHImp2Rbz:+dGwv4RUDcuzGQTWlo9P

Malware Config

Targets

    • Target

      6a443cbb50117c2f609ebccdc1e36977_JaffaCakes118

    • Size

      33KB

    • MD5

      6a443cbb50117c2f609ebccdc1e36977

    • SHA1

      989a48bc642762638a896a9ea3794acaea9b99e3

    • SHA256

      2b4f48b988569505d7b1235878e5952f08afd89e43a66eea473e1113f7a5cf61

    • SHA512

      738a34ce5acfa7593da8d6a8d520ab354c451e4f78c0033ff75696af185f5a36fd5fd51b2fbe9bc31d98d74db6529e7482a952f5e26db0c1cc641bbf6cb95c3c

    • SSDEEP

      768:++b6Gf4Gpq4yUuivMWwIqcuzGQGc3GlHImp2Rbz:+dGwv4RUDcuzGQTWlo9P

    • Disables service(s)

    • Stops running service(s)

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks