Overview

overview

7

Static

static

3

8dda959a31...18.exe

windows7-x64

7

8dda959a31...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8dda959a31cf488e2d16387a66d0fa21_JaffaCakes118

  • Size

    501KB

  • Sample

    240812-jbnzha1dkj

  • MD5

    8dda959a31cf488e2d16387a66d0fa21

  • SHA1

    34fc80f83849b098793dd39957c1037d1889b8b6

  • SHA256

    5ac6149603c65c1c5153c72f39711d64b6a03b772a7e068662dff4db1171791e

  • SHA512

    6d870145e82c0a6cbac8e9f32c9e99744c03c7d1ab72bde8a30311b8245dc721c7c78777aec7c941d5f747b218586d401e3013a93c6e0eb11b5ce3199fb2da3d

  • SSDEEP

    12288:vHFw56UzwZdXSS/Sf2tWG3jiwu/GW+aX5uET6aUzWhLskc7SFu6:vtUzq7XjxoTTmzEBq

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      8dda959a31cf488e2d16387a66d0fa21_JaffaCakes118

    • Size

      501KB

    • MD5

      8dda959a31cf488e2d16387a66d0fa21

    • SHA1

      34fc80f83849b098793dd39957c1037d1889b8b6

    • SHA256

      5ac6149603c65c1c5153c72f39711d64b6a03b772a7e068662dff4db1171791e

    • SHA512

      6d870145e82c0a6cbac8e9f32c9e99744c03c7d1ab72bde8a30311b8245dc721c7c78777aec7c941d5f747b218586d401e3013a93c6e0eb11b5ce3199fb2da3d

    • SSDEEP

      12288:vHFw56UzwZdXSS/Sf2tWG3jiwu/GW+aX5uET6aUzWhLskc7SFu6:vtUzq7XjxoTTmzEBq

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks