Overview

overview

7

Static

static

3

93aa69aedc...18.exe

windows7-x64

7

93aa69aedc...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    93aa69aedc35bfbb2ac4ecf6a5f4cce7_JaffaCakes118

  • Size

    38KB

  • Sample

    240813-sv8mpawdnr

  • MD5

    93aa69aedc35bfbb2ac4ecf6a5f4cce7

  • SHA1

    aa147cea8c9156516cc77f720392f62cb1ba1d0c

  • SHA256

    ac8dd1fc3c031e5efa5ef36ff27b18cf9dde07a8313cb40298905db7832c4690

  • SHA512

    03b594fa2be36a6383a68079a117a48a87b78e5d5cfc33ae15f232096f93738dd9d123e09dd60d1cb1a4a3c94711c7a544b722941b4ec08e080aaac4498d7c6d

  • SSDEEP

    768:cD8Mku/08vChRzSbJ/iB1ljyRFQPeB1Qi6YyJVQQeDlV8T3+cxcG5:ABkuM1hR2g18CeB1QMyJVQQeD4vxcG5

Score
7/10
discovery

Malware Config

Targets

    • Target

      93aa69aedc35bfbb2ac4ecf6a5f4cce7_JaffaCakes118

    • Size

      38KB

    • MD5

      93aa69aedc35bfbb2ac4ecf6a5f4cce7

    • SHA1

      aa147cea8c9156516cc77f720392f62cb1ba1d0c

    • SHA256

      ac8dd1fc3c031e5efa5ef36ff27b18cf9dde07a8313cb40298905db7832c4690

    • SHA512

      03b594fa2be36a6383a68079a117a48a87b78e5d5cfc33ae15f232096f93738dd9d123e09dd60d1cb1a4a3c94711c7a544b722941b4ec08e080aaac4498d7c6d

    • SSDEEP

      768:cD8Mku/08vChRzSbJ/iB1ljyRFQPeB1Qi6YyJVQQeDlV8T3+cxcG5:ABkuM1hR2g18CeB1QMyJVQQeD4vxcG5

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks