Overview

overview

7

Static

static

3

74a7c263cb...18.exe

windows7-x64

7

74a7c263cb...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    74a7c263cbe56240c59f8c372c3ff615_JaffaCakes118

  • Size

    624KB

  • Sample

    240726-s2az1awgkr

  • MD5

    74a7c263cbe56240c59f8c372c3ff615

  • SHA1

    8d555e9f1a67575c2a6d983ec219f2307079b5d5

  • SHA256

    966a86a03bfadc8c01dd41bce644cda909bdd54fabfc427c5386a36d396d836f

  • SHA512

    139aab5bc2e3cff2542426959bcbf0991124f2162dac3273095fa304d61ccb1a409a973e95754dcd32a2b74df9aee0321eafd95d9ba20fb40abfc31370c5ed39

  • SSDEEP

    12288:WOwNxGUDwMeIkZajwu4diroeJsISWAT4lFMvwmb1TLnWI5NVmpk:WOsxGUDIa0ZirRsrWAT4lFWwmb1/WYN/

Score
7/10
aspackv2discoverypersistenceupx

Malware Config

Targets

    • Target

      74a7c263cbe56240c59f8c372c3ff615_JaffaCakes118

    • Size

      624KB

    • MD5

      74a7c263cbe56240c59f8c372c3ff615

    • SHA1

      8d555e9f1a67575c2a6d983ec219f2307079b5d5

    • SHA256

      966a86a03bfadc8c01dd41bce644cda909bdd54fabfc427c5386a36d396d836f

    • SHA512

      139aab5bc2e3cff2542426959bcbf0991124f2162dac3273095fa304d61ccb1a409a973e95754dcd32a2b74df9aee0321eafd95d9ba20fb40abfc31370c5ed39

    • SSDEEP

      12288:WOwNxGUDwMeIkZajwu4diroeJsISWAT4lFMvwmb1TLnWI5NVmpk:WOsxGUDIa0ZirRsrWAT4lFWwmb1/WYN/

    Score
    7/10
    aspackv2discoverypersistenceupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks