Overview

overview

10

Static

static

3

95502f335e...18.exe

windows7-x64

10

95502f335e...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    95502f335e3c0609811f24bd3ee51542_JaffaCakes118

  • Size

    376KB

  • Sample

    240814-kagdpssbma

  • MD5

    95502f335e3c0609811f24bd3ee51542

  • SHA1

    b658c98e7c8e9f9cfdb95785748d6a4d822aec90

  • SHA256

    e08ad21838d667b38c5cd2ccc0d377cc61288736e1f7c98a13b7d7cb662ac15e

  • SHA512

    ce90f155efedbb5b5d20f0a0b215946b458867dfc3cb8c0625d71d915cab4608477cd6e42a1df52d8fd1082318320c754034cbcf7b5b688c7ab11ceeaa9af1f1

  • SSDEEP

    6144:KwqSyM5LElOB2l0X110L7lMweciNVTXv/5L1y+LetOyfXJXgp/yK++9xXu2RO:KVSB5glpl0FAxecAVT3yyetz5XyyelO

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      95502f335e3c0609811f24bd3ee51542_JaffaCakes118

    • Size

      376KB

    • MD5

      95502f335e3c0609811f24bd3ee51542

    • SHA1

      b658c98e7c8e9f9cfdb95785748d6a4d822aec90

    • SHA256

      e08ad21838d667b38c5cd2ccc0d377cc61288736e1f7c98a13b7d7cb662ac15e

    • SHA512

      ce90f155efedbb5b5d20f0a0b215946b458867dfc3cb8c0625d71d915cab4608477cd6e42a1df52d8fd1082318320c754034cbcf7b5b688c7ab11ceeaa9af1f1

    • SSDEEP

      6144:KwqSyM5LElOB2l0X110L7lMweciNVTXv/5L1y+LetOyfXJXgp/yK++9xXu2RO:KVSB5glpl0FAxecAVT3yyetz5XyyelO

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks