Overview

overview

7

Static

static

3

965f7eb76c...18.exe

windows7-x64

7

965f7eb76c...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    965f7eb76cae7902af7707385b3ff943_JaffaCakes118

  • Size

    313KB

  • Sample

    240814-q8tpks1ajm

  • MD5

    965f7eb76cae7902af7707385b3ff943

  • SHA1

    cb1a3ca09f252aa1243240c4d184b984251b5b3c

  • SHA256

    8cf9a535e0e9e93aaeacc3e4e5b9f59b7f1e338d7cf65abcf5e18d22d2d8d7e0

  • SHA512

    3876103b149446c00ac3169edfb2e61e198bff6968981b5ef078e3cf1f9439b6349c2db5c1d984a72005831008564d846550fb55dcebf18664ebb9e2d8569cbd

  • SSDEEP

    6144:HPH/wwALEUzYa1Qvq9bQDbafszUuXjncFTB91arSFGciNoixv4UOEs:HP/wP44KyxQbaUzUuXUfgrpciNoixv4H

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      965f7eb76cae7902af7707385b3ff943_JaffaCakes118

    • Size

      313KB

    • MD5

      965f7eb76cae7902af7707385b3ff943

    • SHA1

      cb1a3ca09f252aa1243240c4d184b984251b5b3c

    • SHA256

      8cf9a535e0e9e93aaeacc3e4e5b9f59b7f1e338d7cf65abcf5e18d22d2d8d7e0

    • SHA512

      3876103b149446c00ac3169edfb2e61e198bff6968981b5ef078e3cf1f9439b6349c2db5c1d984a72005831008564d846550fb55dcebf18664ebb9e2d8569cbd

    • SSDEEP

      6144:HPH/wwALEUzYa1Qvq9bQDbafszUuXjncFTB91arSFGciNoixv4UOEs:HP/wP44KyxQbaUzUuXUfgrpciNoixv4H

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks