Overview

overview

7

Static

static

3

771bc8c037...18.exe

windows7-x64

7

771bc8c037...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    771bc8c03797354bda6f8718b2f70095_JaffaCakes118

  • Size

    440KB

  • Sample

    240727-ffw9wsybqm

  • MD5

    771bc8c03797354bda6f8718b2f70095

  • SHA1

    e88d449c57a8ed3e0bbf566969e8772b15e4e0f3

  • SHA256

    da7ccda595f2e484f285794aad70dbfe89305edec910b0a635ce512f5d755db0

  • SHA512

    95295085dee7a9f0519001aaef9b443ec5b679928360df0804fab2037b04636e52c295fe9d8c41e1507ba97046062d74b6d357789eb36cd0ce94e7e2437b62fc

  • SSDEEP

    12288:eZPMzkBtRp1Hmlv175qj47nKrwy5XV2wsEK6Px:eZRRH4Z5qj4urFEER

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      771bc8c03797354bda6f8718b2f70095_JaffaCakes118

    • Size

      440KB

    • MD5

      771bc8c03797354bda6f8718b2f70095

    • SHA1

      e88d449c57a8ed3e0bbf566969e8772b15e4e0f3

    • SHA256

      da7ccda595f2e484f285794aad70dbfe89305edec910b0a635ce512f5d755db0

    • SHA512

      95295085dee7a9f0519001aaef9b443ec5b679928360df0804fab2037b04636e52c295fe9d8c41e1507ba97046062d74b6d357789eb36cd0ce94e7e2437b62fc

    • SSDEEP

      12288:eZPMzkBtRp1Hmlv175qj47nKrwy5XV2wsEK6Px:eZRRH4Z5qj4urFEER

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks