Overview

overview

10

Static

static

3

86eddcb57d...18.exe

windows7-x64

10

86eddcb57d...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    86eddcb57ddc3d94b26e0bb347b4ff8c_JaffaCakes118

  • Size

    393KB

  • Sample

    240810-vn35qsyfqq

  • MD5

    86eddcb57ddc3d94b26e0bb347b4ff8c

  • SHA1

    23843b1149e4d84b26df3b53120b7dde9715bb5f

  • SHA256

    4397b0d5202f386668fb3ce3abea9797a9e5d4a210081eb45fb148fdfb8f35b0

  • SHA512

    304b467232580ad284f70eea675a4f10a2335c5e495d3002837354b788dfd6b6f60875c6ec20df1f0430cd7b6d54348c7c025f3c45877d6665d7e74aa481e471

  • SSDEEP

    12288:d3KpJI6xj1dV9fJcEXW4OYIb5IiENCaQa6zV0T:dCb1dV9fJhXWGHNAaA4

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      86eddcb57ddc3d94b26e0bb347b4ff8c_JaffaCakes118

    • Size

      393KB

    • MD5

      86eddcb57ddc3d94b26e0bb347b4ff8c

    • SHA1

      23843b1149e4d84b26df3b53120b7dde9715bb5f

    • SHA256

      4397b0d5202f386668fb3ce3abea9797a9e5d4a210081eb45fb148fdfb8f35b0

    • SHA512

      304b467232580ad284f70eea675a4f10a2335c5e495d3002837354b788dfd6b6f60875c6ec20df1f0430cd7b6d54348c7c025f3c45877d6665d7e74aa481e471

    • SSDEEP

      12288:d3KpJI6xj1dV9fJcEXW4OYIb5IiENCaQa6zV0T:dCb1dV9fJhXWGHNAaA4

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks