Overview

overview

10

Static

static

3

6f84971461...18.exe

windows7-x64

10

6f84971461...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6f84971461e0b0cb8cd0bb3c39900dd9_JaffaCakes118

  • Size

    14KB

  • Sample

    240725-pcl47a1cnf

  • MD5

    6f84971461e0b0cb8cd0bb3c39900dd9

  • SHA1

    af79e0d0af402dbeb1d41134f214053ed39220c7

  • SHA256

    3e0b1859a61198b5159b2f6b44ee9627f7a06cd6514c04d21ccfb361d04973ee

  • SHA512

    4d358bde307a6792ac297f7e634425fc0c82e4bd8eea16ba49830288ef14edec224bfc6027532c0037a0db7eb8f050603c6031996267afaa5f19934d6aa5174f

  • SSDEEP

    384:/Zid9Cgrtq/RlbVYwqFrTrw10jxXhc3fp/zryNRyhoroFKBJdeJ:0Hq/RlbhqRLG3fp72NRyhoroHJ

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      6f84971461e0b0cb8cd0bb3c39900dd9_JaffaCakes118

    • Size

      14KB

    • MD5

      6f84971461e0b0cb8cd0bb3c39900dd9

    • SHA1

      af79e0d0af402dbeb1d41134f214053ed39220c7

    • SHA256

      3e0b1859a61198b5159b2f6b44ee9627f7a06cd6514c04d21ccfb361d04973ee

    • SHA512

      4d358bde307a6792ac297f7e634425fc0c82e4bd8eea16ba49830288ef14edec224bfc6027532c0037a0db7eb8f050603c6031996267afaa5f19934d6aa5174f

    • SSDEEP

      384:/Zid9Cgrtq/RlbVYwqFrTrw10jxXhc3fp/zryNRyhoroFKBJdeJ:0Hq/RlbhqRLG3fp72NRyhoroHJ

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks