Overview

overview

7

Static

static

3

a64b42904e...18.exe

windows7-x64

7

a64b42904e...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a64b42904edeaef6074fcfb7a214226a_JaffaCakes118

  • Size

    71KB

  • Sample

    240818-lq4pls1aqj

  • MD5

    a64b42904edeaef6074fcfb7a214226a

  • SHA1

    7d29ccec1e9b5110f0dba106c3849ad6b5d95e90

  • SHA256

    cc7fa80034e8a6875938df72ee59145bb77cbdd3bc097365715adf1c3e1a30af

  • SHA512

    d56302b37c4c42887fe4f9eb9cf4927529fc819c7fa142902069e4985ccbc71f06b6e5ac698d44b07e6916f63d46da1b2bfad24eb0f682adcdd9a8a08164cb63

  • SSDEEP

    1536:F4qY4QIWk7IDiE0Tuq52e9fERfnRybHDfN:64b7Inc99ORCHZ

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      a64b42904edeaef6074fcfb7a214226a_JaffaCakes118

    • Size

      71KB

    • MD5

      a64b42904edeaef6074fcfb7a214226a

    • SHA1

      7d29ccec1e9b5110f0dba106c3849ad6b5d95e90

    • SHA256

      cc7fa80034e8a6875938df72ee59145bb77cbdd3bc097365715adf1c3e1a30af

    • SHA512

      d56302b37c4c42887fe4f9eb9cf4927529fc819c7fa142902069e4985ccbc71f06b6e5ac698d44b07e6916f63d46da1b2bfad24eb0f682adcdd9a8a08164cb63

    • SSDEEP

      1536:F4qY4QIWk7IDiE0Tuq52e9fERfnRybHDfN:64b7Inc99ORCHZ

    Score
    7/10
    persistenceupxdiscovery

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks