Overview

overview

10

Static

static

3

af737cd28a...18.exe

windows7-x64

10

af737cd28a...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    af737cd28ae3da7b7499bca3f9d89944_JaffaCakes118

  • Size

    436KB

  • Sample

    240820-qzejasydkn

  • MD5

    af737cd28ae3da7b7499bca3f9d89944

  • SHA1

    6764288f3943388c734a922883d494ec803ad176

  • SHA256

    fe45e2271b7f7377bf57895e330ae1f1c4e1f99bd6908dc8b3bb9110239b0504

  • SHA512

    69d7ac1dd40f77fe622653ea92c19d5a5b0813d05453017ebe177a2d9e4afee7c3bfce101a18c142d7d718ef6220a2b3fa51838a37f1e989c1fc0df29f321407

  • SSDEEP

    6144:y6pz5554r/0+5/xxp+wlO95Fn46RgAGhaNpx88dEfZ0g/J+0:yG5gpbpE5O6RVGsbicg/J+

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      af737cd28ae3da7b7499bca3f9d89944_JaffaCakes118

    • Size

      436KB

    • MD5

      af737cd28ae3da7b7499bca3f9d89944

    • SHA1

      6764288f3943388c734a922883d494ec803ad176

    • SHA256

      fe45e2271b7f7377bf57895e330ae1f1c4e1f99bd6908dc8b3bb9110239b0504

    • SHA512

      69d7ac1dd40f77fe622653ea92c19d5a5b0813d05453017ebe177a2d9e4afee7c3bfce101a18c142d7d718ef6220a2b3fa51838a37f1e989c1fc0df29f321407

    • SSDEEP

      6144:y6pz5554r/0+5/xxp+wlO95Fn46RgAGhaNpx88dEfZ0g/J+0:yG5gpbpE5O6RVGsbicg/J+

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks