Overview

overview

10

Static

static

3

74036af6cf...18.exe

windows7-x64

10

74036af6cf...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    74036af6cfc13ceea992cf0be23747fb_JaffaCakes118

  • Size

    408KB

  • Sample

    240726-pew26sxamj

  • MD5

    74036af6cfc13ceea992cf0be23747fb

  • SHA1

    ad66923230c5d225fcc5cbe8007bbd1028a7aff8

  • SHA256

    0af6bd24c0b004bd057479fa39c48299e6bbefda73bdb893cd7e0bc0159db0f1

  • SHA512

    f728fee0b8def3b2e25e55dbdb0fc848e018ca38cbf968ec44684858eb40f16429c9c7313d681b5e42c91f2ae8bf3568b5fbbbdaf458fe2d80f6d45759662f56

  • SSDEEP

    6144:Kzzbdr3v9YtGRH98eoLSe2orDefhul74nKgSsZKEUX4L2:Kzlr34GWuexiud+17UX4L2

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      74036af6cfc13ceea992cf0be23747fb_JaffaCakes118

    • Size

      408KB

    • MD5

      74036af6cfc13ceea992cf0be23747fb

    • SHA1

      ad66923230c5d225fcc5cbe8007bbd1028a7aff8

    • SHA256

      0af6bd24c0b004bd057479fa39c48299e6bbefda73bdb893cd7e0bc0159db0f1

    • SHA512

      f728fee0b8def3b2e25e55dbdb0fc848e018ca38cbf968ec44684858eb40f16429c9c7313d681b5e42c91f2ae8bf3568b5fbbbdaf458fe2d80f6d45759662f56

    • SSDEEP

      6144:Kzzbdr3v9YtGRH98eoLSe2orDefhul74nKgSsZKEUX4L2:Kzlr34GWuexiud+17UX4L2

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks