Overview

overview

10

Static

static

7

943385d9b2...18.dll

windows7-x64

10

943385d9b2...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    943385d9b28f967a5f55f7f12885d561_JaffaCakes118

  • Size

    23KB

  • Sample

    240813-wvr7gstdkj

  • MD5

    943385d9b28f967a5f55f7f12885d561

  • SHA1

    36c48df3afb70f04428cf7e75260fac5013f3518

  • SHA256

    5849d76c1356274a7397e19ad714160a1b9a9ebe7e0fa751d16cbb2edcec89f7

  • SHA512

    11298d86a43ea1196f18c44a84b2c0ac6f1e431fa8aa106926572bea431528f796add23e3e49df6c32dd2d578d74349269294d2edafb2fd2b75b48f25ad560b8

  • SSDEEP

    384:9OXAquAB93rLC41sZB5wLWsSssx7xmMq83R3WA/VbrVLx0WSelbnpsI:9O3uAB1r241s/5wLWCsFAUh3Z/lViWVa

Score
10/10
defense_evasiondiscoveryevasionupx

Malware Config

Targets

    • Target

      943385d9b28f967a5f55f7f12885d561_JaffaCakes118

    • Size

      23KB

    • MD5

      943385d9b28f967a5f55f7f12885d561

    • SHA1

      36c48df3afb70f04428cf7e75260fac5013f3518

    • SHA256

      5849d76c1356274a7397e19ad714160a1b9a9ebe7e0fa751d16cbb2edcec89f7

    • SHA512

      11298d86a43ea1196f18c44a84b2c0ac6f1e431fa8aa106926572bea431528f796add23e3e49df6c32dd2d578d74349269294d2edafb2fd2b75b48f25ad560b8

    • SSDEEP

      384:9OXAquAB93rLC41sZB5wLWsSssx7xmMq83R3WA/VbrVLx0WSelbnpsI:9O3uAB1r241s/5wLWCsFAUh3Z/lViWVa

    Score
    10/10
    defense_evasiondiscoveryevasionupx

    • Modifies firewall policy service

      evasion

    • Impair Defenses: Safe Mode Boot

      defense_evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks