Overview

overview

7

Static

static

3

a6e4816f5f...18.exe

windows7-x64

7

a6e4816f5f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a6e4816f5fb282d19dd9203ff92c6957_JaffaCakes118

  • Size

    368KB

  • Sample

    240818-q3wa8aygkp

  • MD5

    a6e4816f5fb282d19dd9203ff92c6957

  • SHA1

    239a0fbc2cd2c96b772222157828bb25a469df2a

  • SHA256

    3bf2966d08fb6468976d2bbe9a8e9f6880c81e1961c10c80b47e91012261535c

  • SHA512

    83dc93d7752579417f62ad3d3628720ca68383b2a67f7ada3761ee46c341de581ea55b10e55d6f54312fcbae838a73559e1140d150b6d32a391f5a48733bc3af

  • SSDEEP

    6144:NyJ0mhweaFVpX6pKuRWteORR74wxPgFSVzxcdn0LB9WfjLfMshaN8zx:kJ0mhwRv8K17R8wx4IVzKwX6jDMmaN8V

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      a6e4816f5fb282d19dd9203ff92c6957_JaffaCakes118

    • Size

      368KB

    • MD5

      a6e4816f5fb282d19dd9203ff92c6957

    • SHA1

      239a0fbc2cd2c96b772222157828bb25a469df2a

    • SHA256

      3bf2966d08fb6468976d2bbe9a8e9f6880c81e1961c10c80b47e91012261535c

    • SHA512

      83dc93d7752579417f62ad3d3628720ca68383b2a67f7ada3761ee46c341de581ea55b10e55d6f54312fcbae838a73559e1140d150b6d32a391f5a48733bc3af

    • SSDEEP

      6144:NyJ0mhweaFVpX6pKuRWteORR74wxPgFSVzxcdn0LB9WfjLfMshaN8zx:kJ0mhwRv8K17R8wx4IVzKwX6jDMmaN8V

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks