Overview

overview

10

Static

static

3

0399a93836...18.exe

windows7-x64

10

0399a93836...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0399a938361ebe3ea0c4d713b02b74a4_JaffaCakes118

  • Size

    49KB

  • Sample

    240728-aryzzaxbkm

  • MD5

    0399a938361ebe3ea0c4d713b02b74a4

  • SHA1

    3c2169047072777cd05e25f4d1252afae392498e

  • SHA256

    e6de8bfca6990525edbe92fe113bca3d5b06738840d42b2c837ed1bcca4677dc

  • SHA512

    f09281238d1347804f58d6ad09ec00372ca2c2338e7a896cc7ba4c940e40de8293b26ff0a52b6ac8120e3184171a35cbcec52401b144ee5185ca88f2880343f1

  • SSDEEP

    1536:vSc82B7u6GAoj7fRiMQlAdi44RVaS4877:vv7uf3XRiMN9Sj7

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      0399a938361ebe3ea0c4d713b02b74a4_JaffaCakes118

    • Size

      49KB

    • MD5

      0399a938361ebe3ea0c4d713b02b74a4

    • SHA1

      3c2169047072777cd05e25f4d1252afae392498e

    • SHA256

      e6de8bfca6990525edbe92fe113bca3d5b06738840d42b2c837ed1bcca4677dc

    • SHA512

      f09281238d1347804f58d6ad09ec00372ca2c2338e7a896cc7ba4c940e40de8293b26ff0a52b6ac8120e3184171a35cbcec52401b144ee5185ca88f2880343f1

    • SSDEEP

      1536:vSc82B7u6GAoj7fRiMQlAdi44RVaS4877:vv7uf3XRiMN9Sj7

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks