cc74da59ac86b951ed556f5f2ce5e9da4eb61c21f11209cf043a0d29bef69876 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

88420113af...18.exe

windows7-x64

7

88420113af...18.exe

windows10-2004-x64

7

$TEMP/Keygen.exe

windows7-x64

7

$TEMP/Keygen.exe

windows10-2004-x64

7

$TEMP/svchost.exe

windows7-x64

7

$TEMP/svchost.exe

windows10-2004-x64

7

Sharing

General

Target

88420113af3853846fe8915b5d0fc75f_JaffaCakes118
Size

135KB
Sample

240811-al6gvswaml
MD5

88420113af3853846fe8915b5d0fc75f
SHA1

7c38abddb79a2cc35bab069cbfcf6d16fc9b9eeb
SHA256

cc74da59ac86b951ed556f5f2ce5e9da4eb61c21f11209cf043a0d29bef69876
SHA512

b72e5d95b0e153064ed5483330ebfa6edaacf3bc2d769feb62cc9abcc52f9dd02e2844440be7382057d214699b00539f1d8aed6e0f09eb79c0188941956f9b6f
SSDEEP

3072:S9kcc/OJTMw6Rgo5SBzLpqpBhQRHVegXIDzZwt7Q:S9k1/S4wN6SlFqbu1eFDzCt7

Score

7^/10

discovery upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

88420113af3853846fe8915b5d0fc75f_JaffaCakes118.exe

Resource

win7-20240708-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

88420113af3853846fe8915b5d0fc75f_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral3

Sample

$TEMP/Keygen.exe

Resource

win7-20240729-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$TEMP/Keygen.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$TEMP/svchost.exe

Resource

win7-20240704-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral6

Sample

$TEMP/svchost.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  88420113af3853846fe8915b5d0fc75f_JaffaCakes118
- Size
  
  135KB
- MD5
  
  88420113af3853846fe8915b5d0fc75f
- SHA1
  
  7c38abddb79a2cc35bab069cbfcf6d16fc9b9eeb
- SHA256
  
  cc74da59ac86b951ed556f5f2ce5e9da4eb61c21f11209cf043a0d29bef69876
- SHA512
  
  b72e5d95b0e153064ed5483330ebfa6edaacf3bc2d769feb62cc9abcc52f9dd02e2844440be7382057d214699b00539f1d8aed6e0f09eb79c0188941956f9b6f
- SSDEEP
  
  3072:S9kcc/OJTMw6Rgo5SBzLpqpBhQRHVegXIDzZwt7Q:S9k1/S4wN6SlFqbu1eFDzCt7
Score

7^/10

discovery upx
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  $TEMP/Keygen.exe
- Size
  
  16KB
- MD5
  
  9b578fd26c3fbe4b720c9ab2e3556924
- SHA1
  
  7e4395344a02ffa469bac8cbbd82ccd1d7f5f7ba
- SHA256
  
  1fb4df7d07ed8e55b10da166f28dd493a08ff6cf43ef5ca56693e252c4369deb
- SHA512
  
  dca17c52d9d76d51e11b819e7ac09de12a823415a8bb7fae32d101cc86516c4da3c07aa863181d490e33e5b43668f1b986f6d22840c12d21d60882cb942e7b25
- SSDEEP
  
  384:uwnHbUB4Tv4t80DtISN6u5ZEpEfxzXMB+:uU7Q40thsuQo+
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  $TEMP/svchost.exe
- Size
  
  56KB
- MD5
  
  e1d300e107fdf1d777e2f6f99fe438d2
- SHA1
  
  82ede37d811b55cd50cdf3f50b4e16e3d529d6ab
- SHA256
  
  7a6a67678f6c6df657aabef24a48577ce0b8197a05e16468ce01a01b70d38722
- SHA512
  
  59541b8e07eedbe79a1ade7befd8ee1dc966998848d96518133060e50b7ae96dedd24d79e23da802d17d83a281424ce4f1b6d332a6a2d7368123a0924bcf05a1
- SSDEEP
  
  1536:bD8kwenxjzLfRqFHBhJ6Rxd1ri8Jddeg91ILBpT:bo5SBzLpqpBhQRHVegXID
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

© 2018-2025

Terms | Privacy