Overview

overview

8

Static

static

3

b44bccfc05...18.exe

windows7-x64

8

b44bccfc05...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b44bccfc05d692ca5d9132416b999e7e_JaffaCakes118

  • Size

    291KB

  • Sample

    240821-vl3festenp

  • MD5

    b44bccfc05d692ca5d9132416b999e7e

  • SHA1

    c57d1694136ac493de62a93819db3e579db60cff

  • SHA256

    b76a9d24f970121441044bc4968f4f87eb0f50a3ce845cf1a2588b8b636f54b5

  • SHA512

    23cef07b48caab208040cbf4dee68f4c7184500d804f8bab3157a473e1448e025c7c312ce317df87b534c10c29f116a2dffdcea91cee48a29349133e5e37f9c4

  • SSDEEP

    6144:NtKe6YiDdv3m3mgKHIl7bNIFltbjJ2LujMwm2cRKa5G3tdPQ3G2:NtKe6Zv23YdRjJsNXn75AN2

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      b44bccfc05d692ca5d9132416b999e7e_JaffaCakes118

    • Size

      291KB

    • MD5

      b44bccfc05d692ca5d9132416b999e7e

    • SHA1

      c57d1694136ac493de62a93819db3e579db60cff

    • SHA256

      b76a9d24f970121441044bc4968f4f87eb0f50a3ce845cf1a2588b8b636f54b5

    • SHA512

      23cef07b48caab208040cbf4dee68f4c7184500d804f8bab3157a473e1448e025c7c312ce317df87b534c10c29f116a2dffdcea91cee48a29349133e5e37f9c4

    • SSDEEP

      6144:NtKe6YiDdv3m3mgKHIl7bNIFltbjJ2LujMwm2cRKa5G3tdPQ3G2:NtKe6Zv23YdRjJsNXn75AN2

    Score
    8/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks