Overview

overview

8

Static

static

3

b122a3a857...18.exe

windows7-x64

8

b122a3a857...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b122a3a8578ecdf75a6343441e1e804d_JaffaCakes118

  • Size

    39KB

  • Sample

    240820-2mw4csxbpg

  • MD5

    b122a3a8578ecdf75a6343441e1e804d

  • SHA1

    761e0c91c9bcfff977f0bc61b78d1a0278134868

  • SHA256

    89fa499b45546a9a9e71a5cafc9c743decc52dab52139ed0c08182a9f450cbbb

  • SHA512

    72a7c2e781359979051ea41ae5e3980c425e856e627c91a2cf59f7b99f1c91d2bb6ade0214a66238344d5a6e9718a093cadf6e69dea67a86506394eb661ad9bb

  • SSDEEP

    768:nM9DFuNKOXaT+Mo8GPM6vBLI+3TjmmxdmGQX6QugeVJp4zJ8Q:M9UNKOBtMc5/O2mGQXV2VJpwqQ

Score
8/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      b122a3a8578ecdf75a6343441e1e804d_JaffaCakes118

    • Size

      39KB

    • MD5

      b122a3a8578ecdf75a6343441e1e804d

    • SHA1

      761e0c91c9bcfff977f0bc61b78d1a0278134868

    • SHA256

      89fa499b45546a9a9e71a5cafc9c743decc52dab52139ed0c08182a9f450cbbb

    • SHA512

      72a7c2e781359979051ea41ae5e3980c425e856e627c91a2cf59f7b99f1c91d2bb6ade0214a66238344d5a6e9718a093cadf6e69dea67a86506394eb661ad9bb

    • SSDEEP

      768:nM9DFuNKOXaT+Mo8GPM6vBLI+3TjmmxdmGQX6QugeVJp4zJ8Q:M9UNKOBtMc5/O2mGQXV2VJpwqQ

    Score
    8/10
    defense_evasiondiscoverypersistence

    • Event Triggered Execution: Image File Execution Options Injection

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Indicator Removal: Clear Persistence

      remove IFEO.

      defense_evasion

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks