Overview

overview

10

Static

static

3

9526288069...18.exe

windows7-x64

10

9526288069...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    9526288069d1add702397763b62e2b6e_JaffaCakes118

  • Size

    384KB

  • Sample

    240814-japveavcml

  • MD5

    9526288069d1add702397763b62e2b6e

  • SHA1

    bad60df65f98596a1a0fbddec14b19ea53bc49df

  • SHA256

    86bce36fdbd37dc70063f65e401ad6d482a596ed1474a743a505ab0e52401009

  • SHA512

    c41b5355b75ba860a82b47b9d93106cf740c49a4f567785481ce2282e0863726bd03e45993777cfdcd7735c615b5077b0c5bcec5f36631889c25325b7d5719c6

  • SSDEEP

    6144:z2t9Rv55G5ke9MRs0On1SIFs7Bqwtj9kJ8c0IITjZ0N7/cYL9duz4hwOUu808Oh1:uR5GdCs0O1BkBqwtjFc0fTjZOT59ozI1

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      9526288069d1add702397763b62e2b6e_JaffaCakes118

    • Size

      384KB

    • MD5

      9526288069d1add702397763b62e2b6e

    • SHA1

      bad60df65f98596a1a0fbddec14b19ea53bc49df

    • SHA256

      86bce36fdbd37dc70063f65e401ad6d482a596ed1474a743a505ab0e52401009

    • SHA512

      c41b5355b75ba860a82b47b9d93106cf740c49a4f567785481ce2282e0863726bd03e45993777cfdcd7735c615b5077b0c5bcec5f36631889c25325b7d5719c6

    • SSDEEP

      6144:z2t9Rv55G5ke9MRs0On1SIFs7Bqwtj9kJ8c0IITjZ0N7/cYL9duz4hwOUu808Oh1:uR5GdCs0O1BkBqwtjFc0fTjZOT59ozI1

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks