Overview

overview

7

Static

static

3

b06c933ddf...18.exe

windows7-x64

7

b06c933ddf...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b06c933ddf5b36a71634217b71e77263_JaffaCakes118

  • Size

    384KB

  • Sample

    240820-xjn65axgrh

  • MD5

    b06c933ddf5b36a71634217b71e77263

  • SHA1

    4440d448eaf7582f4fa065c88f3cada8b9ab8aed

  • SHA256

    697998c32fc2fac71f4976d2b3a2b4ce1c5a1b6769bcdcb2de8c17c52ae1258b

  • SHA512

    a10798aea0916975652293c925ec7b540cee883fd668b8cd12e8121e07481978acd05a3e46003637a3bd4fb5a067c90a81f8463d0bfcfeabd826ae802b9206f3

  • SSDEEP

    6144:q5VzsTiTfq1GNhVxz26tDY/H+j84MN3LKWgW2ah7e7chq0Q9ew:q5VzdTfkGNhVVhBjj84otMaFhDw

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      b06c933ddf5b36a71634217b71e77263_JaffaCakes118

    • Size

      384KB

    • MD5

      b06c933ddf5b36a71634217b71e77263

    • SHA1

      4440d448eaf7582f4fa065c88f3cada8b9ab8aed

    • SHA256

      697998c32fc2fac71f4976d2b3a2b4ce1c5a1b6769bcdcb2de8c17c52ae1258b

    • SHA512

      a10798aea0916975652293c925ec7b540cee883fd668b8cd12e8121e07481978acd05a3e46003637a3bd4fb5a067c90a81f8463d0bfcfeabd826ae802b9206f3

    • SSDEEP

      6144:q5VzsTiTfq1GNhVxz26tDY/H+j84MN3LKWgW2ah7e7chq0Q9ew:q5VzdTfkGNhVVhBjj84otMaFhDw

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks