Overview

overview

6

Static

static

3

8475d4d104...18.exe

windows7-x64

6

8475d4d104...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    8475d4d104963d8eeb773da0a6b1ebe1_JaffaCakes118

  • Size

    140KB

  • Sample

    240810-cttt5s1hjl

  • MD5

    8475d4d104963d8eeb773da0a6b1ebe1

  • SHA1

    7560939ab69a67981ad07ecb4b3879192ada7a76

  • SHA256

    36b2f095c7c07dd70098648ef99d2a652d8837661adbe51cd6e577e90b70bb39

  • SHA512

    bfcd1984999c9cbd0a2450bd9fb1ac27cd485e179080b98f88f64250265ebba171bf9a8b5d741d0c668ba76e9a226c7b1f88165180524ccafcf6e8f8ba70c823

  • SSDEEP

    3072:eeO8mnblktLMMMMMMMMMMMMMMMMMMMMMM0CyBRPC13CG6IeqXjERCMyKFfJ2oeLX:ylkVMMMMMMMMMMMMMMMMMMMMMM0CyBRO

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      8475d4d104963d8eeb773da0a6b1ebe1_JaffaCakes118

    • Size

      140KB

    • MD5

      8475d4d104963d8eeb773da0a6b1ebe1

    • SHA1

      7560939ab69a67981ad07ecb4b3879192ada7a76

    • SHA256

      36b2f095c7c07dd70098648ef99d2a652d8837661adbe51cd6e577e90b70bb39

    • SHA512

      bfcd1984999c9cbd0a2450bd9fb1ac27cd485e179080b98f88f64250265ebba171bf9a8b5d741d0c668ba76e9a226c7b1f88165180524ccafcf6e8f8ba70c823

    • SSDEEP

      3072:eeO8mnblktLMMMMMMMMMMMMMMMMMMMMMM0CyBRPC13CG6IeqXjERCMyKFfJ2oeLX:ylkVMMMMMMMMMMMMMMMMMMMMMM0CyBRO

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks