Overview

overview

8

Static

static

3

8c85595e19...18.exe

windows7-x64

8

8c85595e19...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    8c85595e199ae882f790e7ba222ae37e_JaffaCakes118

  • Size

    143KB

  • Sample

    240812-ab15dszenh

  • MD5

    8c85595e199ae882f790e7ba222ae37e

  • SHA1

    a99b07dad4a2a821c9f0843d6f3adf60410c7219

  • SHA256

    82b5ab0d6eddab0102f65fc30edd031ab745a0cbebad42851ecdb97ff0a9ba93

  • SHA512

    44dace351c01c878635c26e55643940e48ce8c2eb6affd8f6e1697cac0e933ea414a8fd8f6edb392433b767667edef1be7a0215ef76f94e827649351b9197bc6

  • SSDEEP

    3072:5y0AXj5iNyPpT4bG2akvqiVnbKTfOb7Y5BK1jL0/tyT:pAXjiU4bzxqiVbMfVLw/Qt8

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      8c85595e199ae882f790e7ba222ae37e_JaffaCakes118

    • Size

      143KB

    • MD5

      8c85595e199ae882f790e7ba222ae37e

    • SHA1

      a99b07dad4a2a821c9f0843d6f3adf60410c7219

    • SHA256

      82b5ab0d6eddab0102f65fc30edd031ab745a0cbebad42851ecdb97ff0a9ba93

    • SHA512

      44dace351c01c878635c26e55643940e48ce8c2eb6affd8f6e1697cac0e933ea414a8fd8f6edb392433b767667edef1be7a0215ef76f94e827649351b9197bc6

    • SSDEEP

      3072:5y0AXj5iNyPpT4bG2akvqiVnbKTfOb7Y5BK1jL0/tyT:pAXjiU4bzxqiVbMfVLw/Qt8

    Score
    8/10
    discoverypersistence

    • Sets service image path in registry

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks