Overview

overview

7

Static

static

7

8270628df8...18.exe

windows7-x64

7

8270628df8...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8270628df8baab39db3a858caf43fd74_JaffaCakes118

  • Size

    538KB

  • Sample

    240802-be2qrs1dkh

  • MD5

    8270628df8baab39db3a858caf43fd74

  • SHA1

    ab5c585c239c79eb57d8957137c9797e6382181d

  • SHA256

    c8c90919220b757615880429999d475ce13bdaa37a35b2a126651da3d44d403d

  • SHA512

    6cf1ccc3d2bb3531ae0cbe3ee6f23df574b914b6c4538c465b0c66acb761bd0ff4fd99f4a1c7f1900326bda9d93a9bc422682138b16c42a69c332741f57fa0c1

  • SSDEEP

    12288:2M5DSN6aAH0XNp7gGpWa7U8oico9hJMBex+gQL0:2M5D18NpEGZNVlxnF

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      8270628df8baab39db3a858caf43fd74_JaffaCakes118

    • Size

      538KB

    • MD5

      8270628df8baab39db3a858caf43fd74

    • SHA1

      ab5c585c239c79eb57d8957137c9797e6382181d

    • SHA256

      c8c90919220b757615880429999d475ce13bdaa37a35b2a126651da3d44d403d

    • SHA512

      6cf1ccc3d2bb3531ae0cbe3ee6f23df574b914b6c4538c465b0c66acb761bd0ff4fd99f4a1c7f1900326bda9d93a9bc422682138b16c42a69c332741f57fa0c1

    • SSDEEP

      12288:2M5DSN6aAH0XNp7gGpWa7U8oico9hJMBex+gQL0:2M5D18NpEGZNVlxnF

    Score
    7/10
    discoverypersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks