Overview

overview

7

Static

static

3

a56fda529f...18.exe

windows7-x64

7

a56fda529f...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a56fda529f093cf708f64018ebad4bdc_JaffaCakes118

  • Size

    386KB

  • Sample

    240818-fdp3sswdmf

  • MD5

    a56fda529f093cf708f64018ebad4bdc

  • SHA1

    b46003d4f9f9f72239e7bfac1e671c3a60378ba9

  • SHA256

    d51f821fe057844b5489f82faf0400b4de78b9e2344b5b9dcb6f1c49a6bf16e8

  • SHA512

    d6f0436cd4cc160b3fd3395eef62d1b80395bd82128a668858e091ed083a3aa43e3377d8becfb0566a80b47d75ce7f1eeaa889928c2beaaf9b7aba27a4a9aa24

  • SSDEEP

    6144:fHEK7hRuRCRbhtUekwSFS/11dUhIMfu8/Bwqw8+CFBuh6333Ttr1ECmz2:PthvR9iPS/vSu8Mt4QhmHcCm

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      a56fda529f093cf708f64018ebad4bdc_JaffaCakes118

    • Size

      386KB

    • MD5

      a56fda529f093cf708f64018ebad4bdc

    • SHA1

      b46003d4f9f9f72239e7bfac1e671c3a60378ba9

    • SHA256

      d51f821fe057844b5489f82faf0400b4de78b9e2344b5b9dcb6f1c49a6bf16e8

    • SHA512

      d6f0436cd4cc160b3fd3395eef62d1b80395bd82128a668858e091ed083a3aa43e3377d8becfb0566a80b47d75ce7f1eeaa889928c2beaaf9b7aba27a4a9aa24

    • SSDEEP

      6144:fHEK7hRuRCRbhtUekwSFS/11dUhIMfu8/Bwqw8+CFBuh6333Ttr1ECmz2:PthvR9iPS/vSu8Mt4QhmHcCm

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks