Overview

overview

8

Static

static

7

717da97010...18.exe

windows7-x64

8

717da97010...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    717da97010169d0944da2dbcb1ea726d_JaffaCakes118

  • Size

    3.0MB

  • Sample

    240725-2db2ts1hqa

  • MD5

    717da97010169d0944da2dbcb1ea726d

  • SHA1

    2dd0085b2a737bc32963a23548fb00c0364a9d02

  • SHA256

    d82179fdb47472a3285f2dfbdc5c65afe6d2e5daf90ae9020aafedb12a0011af

  • SHA512

    100af2effb1b5c87ba143e7631601d502548743eb4f77cfc2344ed9adfa0e9e37b95b17c03486a6c856c84a7190fdb46cc0821fb96184355da7904099c9c9247

  • SSDEEP

    49152:Xof7wvDj6Zpx2w5X31UPEg56ST08KtXdePo5dwauZLyZAJ6+CyWf:JmZpFU56iIm4syZG6+Cy

Score
8/10
aspackv2discoverypersistenceupx

Malware Config

Targets

    • Target

      717da97010169d0944da2dbcb1ea726d_JaffaCakes118

    • Size

      3.0MB

    • MD5

      717da97010169d0944da2dbcb1ea726d

    • SHA1

      2dd0085b2a737bc32963a23548fb00c0364a9d02

    • SHA256

      d82179fdb47472a3285f2dfbdc5c65afe6d2e5daf90ae9020aafedb12a0011af

    • SHA512

      100af2effb1b5c87ba143e7631601d502548743eb4f77cfc2344ed9adfa0e9e37b95b17c03486a6c856c84a7190fdb46cc0821fb96184355da7904099c9c9247

    • SSDEEP

      49152:Xof7wvDj6Zpx2w5X31UPEg56ST08KtXdePo5dwauZLyZAJ6+CyWf:JmZpFU56iIm4syZG6+Cy

    Score
    8/10
    discoverypersistenceupx

    • Drops file in Drivers directory

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks