Overview

overview

7

Static

static

7

874c28d62b...18.exe

windows7-x64

7

874c28d62b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    874c28d62b4a6795cbc3c5efe7361efe_JaffaCakes118

  • Size

    33KB

  • Sample

    240810-xspt1stbnm

  • MD5

    874c28d62b4a6795cbc3c5efe7361efe

  • SHA1

    fcdbd2065da13949c3dc226174e6262f08c8c5ee

  • SHA256

    8bcfc5a9d4c3c51d91a4b93bd398684f49452e578251171b0f29279fddfca920

  • SHA512

    8497c6bd1d1ebc613089733e7c4d879ffd9280d258f777e5114b4c2288b88bc4b67b289cd6c814703190ef596d3584209af0c8430c414660837fa00e356452bb

  • SSDEEP

    768:sJyoFx/9SCa1+OI0FFhN82sDZvlqNQFpcKsASTMoisyb8:sIFCam2Ff8t9NIvADT8

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      874c28d62b4a6795cbc3c5efe7361efe_JaffaCakes118

    • Size

      33KB

    • MD5

      874c28d62b4a6795cbc3c5efe7361efe

    • SHA1

      fcdbd2065da13949c3dc226174e6262f08c8c5ee

    • SHA256

      8bcfc5a9d4c3c51d91a4b93bd398684f49452e578251171b0f29279fddfca920

    • SHA512

      8497c6bd1d1ebc613089733e7c4d879ffd9280d258f777e5114b4c2288b88bc4b67b289cd6c814703190ef596d3584209af0c8430c414660837fa00e356452bb

    • SSDEEP

      768:sJyoFx/9SCa1+OI0FFhN82sDZvlqNQFpcKsASTMoisyb8:sIFCam2Ff8t9NIvADT8

    Score
    7/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks