Overview

overview

7

Static

static

7

9493df8b73...18.exe

windows7-x64

7

9493df8b73...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9493df8b736a8886588776e20d7b903c_JaffaCakes118

  • Size

    256KB

  • Sample

    240813-y15qwatgke

  • MD5

    9493df8b736a8886588776e20d7b903c

  • SHA1

    f2510b9b7e5f09ff4b6163ffa76e54e535a95b75

  • SHA256

    93a7ecc425e2a85bc20bf748f064ed9e54a7dbda789e9f31218e384b190de952

  • SHA512

    c2228dfae4695a302cff713d0d620f7973f0a5e5910feaa1b3e4a6d0b0eb56845bc56a8afeee3bb81fb2f2f5347cd85d07dee3ec553510ae90d8dee7e6dfcadd

  • SSDEEP

    6144:9k1RKOglsHAueGMgo41KjrhS0YVhiiIyb+JuFtzw9xB:90RKHyMg2jrhlYVIy+Ju/c

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      9493df8b736a8886588776e20d7b903c_JaffaCakes118

    • Size

      256KB

    • MD5

      9493df8b736a8886588776e20d7b903c

    • SHA1

      f2510b9b7e5f09ff4b6163ffa76e54e535a95b75

    • SHA256

      93a7ecc425e2a85bc20bf748f064ed9e54a7dbda789e9f31218e384b190de952

    • SHA512

      c2228dfae4695a302cff713d0d620f7973f0a5e5910feaa1b3e4a6d0b0eb56845bc56a8afeee3bb81fb2f2f5347cd85d07dee3ec553510ae90d8dee7e6dfcadd

    • SSDEEP

      6144:9k1RKOglsHAueGMgo41KjrhS0YVhiiIyb+JuFtzw9xB:90RKHyMg2jrhlYVIy+Ju/c

    Score
    7/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks