ac57f7b21c95406c2100c3e29c1c4e926178e79e6fecdc8fdfac0d0165282d3f | Triage

Submit
Reports

Overview

overview

7

Static

static

3

6f5bc9b9ae...18.exe

windows7-x64

7

6f5bc9b9ae...18.exe

windows10-2004-x64

7

Sharing

General

Target

6f5bc9b9ae39a8fe994daa655004f880_JaffaCakes118
Size

804KB
Sample

240725-nf3exawbpk
MD5

6f5bc9b9ae39a8fe994daa655004f880
SHA1

79e834f494bd1985463d1a2963485b6ac877c9a6
SHA256

ac57f7b21c95406c2100c3e29c1c4e926178e79e6fecdc8fdfac0d0165282d3f
SHA512

0cb1b5cf98f4ae0b41e57ab63300af99743234d6a70c61ca54135739dc2cbca8e5cf51887df70a9b0eacd9831bfa3a42492d2ea5df2444a67ed31f23af06a2af
SSDEEP

24576:jN7RqVdg1D10wCLLHmnl/3M4absbHsieS7ry:jVRqV21HCXHYfLbHsizy

Score

7^/10

discovery persistence privilege_escalation upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6f5bc9b9ae39a8fe994daa655004f880_JaffaCakes118.exe

Resource

win7-20240704-en

discovery persistence privilege_escalation upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

6f5bc9b9ae39a8fe994daa655004f880_JaffaCakes118.exe

Resource

win10v2004-20240709-en

discovery persistence privilege_escalation upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  6f5bc9b9ae39a8fe994daa655004f880_JaffaCakes118
- Size
  
  804KB
- MD5
  
  6f5bc9b9ae39a8fe994daa655004f880
- SHA1
  
  79e834f494bd1985463d1a2963485b6ac877c9a6
- SHA256
  
  ac57f7b21c95406c2100c3e29c1c4e926178e79e6fecdc8fdfac0d0165282d3f
- SHA512
  
  0cb1b5cf98f4ae0b41e57ab63300af99743234d6a70c61ca54135739dc2cbca8e5cf51887df70a9b0eacd9831bfa3a42492d2ea5df2444a67ed31f23af06a2af
- SSDEEP
  
  24576:jN7RqVdg1D10wCLLHmnl/3M4absbHsieS7ry:jVRqV21HCXHYfLbHsizy
Score

7^/10

discovery persistence privilege_escalation upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Netsh Helper DLL

Privilege Escalation

Event Triggered Execution

Netsh Helper DLL

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalationupx

behavioral2

discoverypersistenceprivilege_escalationupx

© 2018-2025

Terms | Privacy