Overview

overview

10

Static

static

3

a890fa29c7...18.exe

windows7-x64

10

a890fa29c7...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a890fa29c70d70f7c5791902e31195a9_JaffaCakes118

  • Size

    12KB

  • Sample

    240818-2yey8asglj

  • MD5

    a890fa29c70d70f7c5791902e31195a9

  • SHA1

    c4ac33d0e52b14d1582bb64f69e7b8541aa6491d

  • SHA256

    347577f6568889b7cf402b6e34ef7b66f30c2b1bef329477d547b6117da2c0a2

  • SHA512

    041b7a752401faaa31cf2760675f4025581528cc5b7cf2a097786a1001fd293409b63a0e89a35bafd44910ea39d554cb1d8a947961411e2c3218d3c37184c00c

  • SSDEEP

    384:cSETnMZr9Z1pq3Yh/nw3VNeSIF/99aUtX0om:cSmMZxd5SItpQ

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      a890fa29c70d70f7c5791902e31195a9_JaffaCakes118

    • Size

      12KB

    • MD5

      a890fa29c70d70f7c5791902e31195a9

    • SHA1

      c4ac33d0e52b14d1582bb64f69e7b8541aa6491d

    • SHA256

      347577f6568889b7cf402b6e34ef7b66f30c2b1bef329477d547b6117da2c0a2

    • SHA512

      041b7a752401faaa31cf2760675f4025581528cc5b7cf2a097786a1001fd293409b63a0e89a35bafd44910ea39d554cb1d8a947961411e2c3218d3c37184c00c

    • SSDEEP

      384:cSETnMZr9Z1pq3Yh/nw3VNeSIF/99aUtX0om:cSmMZxd5SItpQ

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks