Overview

overview

7

Static

static

3

ab7a9105f1...18.exe

windows7-x64

7

ab7a9105f1...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ab7a9105f1ba1d16ec093e75a806b0c0_JaffaCakes118

  • Size

    396KB

  • Sample

    240819-sdctpa1bkg

  • MD5

    ab7a9105f1ba1d16ec093e75a806b0c0

  • SHA1

    397aa4261d48c5ab0c46b2564f24e855626fb9f5

  • SHA256

    aff31ca763399ff63c870d57ed8c36104ca9907fad8bb3cfcd3719712fb87777

  • SHA512

    c391b5ec679f92adc78b8a999b3ef2bcffb8830223b17ad5e7f9d4dcb752e05151a6c6fcfef0ecf6dc7f3eb26f950c571ede318d952948bd883b1b5359d04a7d

  • SSDEEP

    12288:C3BrINV/hNoHM4dhE7bJEbmJH+lKkObiGeJ:tZzNEmcv

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      ab7a9105f1ba1d16ec093e75a806b0c0_JaffaCakes118

    • Size

      396KB

    • MD5

      ab7a9105f1ba1d16ec093e75a806b0c0

    • SHA1

      397aa4261d48c5ab0c46b2564f24e855626fb9f5

    • SHA256

      aff31ca763399ff63c870d57ed8c36104ca9907fad8bb3cfcd3719712fb87777

    • SHA512

      c391b5ec679f92adc78b8a999b3ef2bcffb8830223b17ad5e7f9d4dcb752e05151a6c6fcfef0ecf6dc7f3eb26f950c571ede318d952948bd883b1b5359d04a7d

    • SSDEEP

      12288:C3BrINV/hNoHM4dhE7bJEbmJH+lKkObiGeJ:tZzNEmcv

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks