Overview

overview

8

Static

static

3

89f1efe44a...18.exe

windows7-x64

8

89f1efe44a...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    89f1efe44aa74399d7b93354151f308e_JaffaCakes118

  • Size

    266KB

  • Sample

    240811-l2ngrsvdjn

  • MD5

    89f1efe44aa74399d7b93354151f308e

  • SHA1

    ba5aa7db202444db19e2021a2180faf17502c42a

  • SHA256

    307ea1f3d838d032c5d5ba4fdbd8abe94fda8b95ee6a07576aedc1d31fa33f72

  • SHA512

    c2758957758bdd0393a84b30c0b6f939eca6568003f4e3d4a59f080e44a759ddc9671cb969020324841423246aca5ac92715d1ccc9662b65c896cf33203ee1bf

  • SSDEEP

    6144:V8g1k937vbCVl3py+5XB+9rgzUggHaxAOx:V8R9rvbCVW+5x+1gz6

Score
8/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      89f1efe44aa74399d7b93354151f308e_JaffaCakes118

    • Size

      266KB

    • MD5

      89f1efe44aa74399d7b93354151f308e

    • SHA1

      ba5aa7db202444db19e2021a2180faf17502c42a

    • SHA256

      307ea1f3d838d032c5d5ba4fdbd8abe94fda8b95ee6a07576aedc1d31fa33f72

    • SHA512

      c2758957758bdd0393a84b30c0b6f939eca6568003f4e3d4a59f080e44a759ddc9671cb969020324841423246aca5ac92715d1ccc9662b65c896cf33203ee1bf

    • SSDEEP

      6144:V8g1k937vbCVl3py+5XB+9rgzUggHaxAOx:V8R9rvbCVW+5x+1gz6

    Score
    8/10
    discoveryevasionpersistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks