Overview

overview

10

Static

static

3

a47b94dac8...18.exe

windows7-x64

10

a47b94dac8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a47b94dac838ab5b6032826d23466629_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240817-2yctvssbmc

  • MD5

    a47b94dac838ab5b6032826d23466629

  • SHA1

    c1d52b4ec32fda05f0e527a7e2a84670bd8ccc54

  • SHA256

    23e2664c2ee2644725ddcacad5c057331f8dbc906c4a86f4aa09bde8f08973bf

  • SHA512

    18ce1ef78cd74c9f015f293f0679bdb5942c65b130f5abd4c62011e676798a97d894c2570e6751648f9379a276e7a8361dacfdc09c4256cb124323f08b2dcc24

  • SSDEEP

    24576:RhLXNg5YRHuoDzLm6vJ9OAvGZjQ6+Lz9yJAaNOVlGhOSjem:RhLmuBz/q49wsfkJAaUlkOG

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      a47b94dac838ab5b6032826d23466629_JaffaCakes118

    • Size

      1.3MB

    • MD5

      a47b94dac838ab5b6032826d23466629

    • SHA1

      c1d52b4ec32fda05f0e527a7e2a84670bd8ccc54

    • SHA256

      23e2664c2ee2644725ddcacad5c057331f8dbc906c4a86f4aa09bde8f08973bf

    • SHA512

      18ce1ef78cd74c9f015f293f0679bdb5942c65b130f5abd4c62011e676798a97d894c2570e6751648f9379a276e7a8361dacfdc09c4256cb124323f08b2dcc24

    • SSDEEP

      24576:RhLXNg5YRHuoDzLm6vJ9OAvGZjQ6+Lz9yJAaNOVlGhOSjem:RhLmuBz/q49wsfkJAaUlkOG

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks