Overview

overview

10

Static

static

7

b4c7436652...18.dll

windows7-x64

10

b4c7436652...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b4c74366527a2b8293072a69bf50425e_JaffaCakes118

  • Size

    21KB

  • Sample

    240821-yd923swhrf

  • MD5

    b4c74366527a2b8293072a69bf50425e

  • SHA1

    d1d7593757773a1ab53e82420ff96712050e1b0a

  • SHA256

    9667f6d75201d530ca011bd41974f5296eba2fbc38ad197d7ceaee1d99ce51e3

  • SHA512

    2d5eb1074b9bac2789e0e3748d400966f45bd112d98aa90c3bf6fc54e6833bfd796d6aaa0122caa7453fbeb95807ebee3266aa0a2d7594aecb600fea4d7afe55

  • SSDEEP

    384:pVSzhUjY0HMXjQPIgCqqY+XrLLdtVPlhrdieI8Y8nswlGHpNjWJ2guZYSh:fSzhUjYFXjQPI+Rq33hlhJZM8nXwHqfc

Score
10/10
defense_evasiondiscoveryevasionupx

Malware Config

Targets

    • Target

      b4c74366527a2b8293072a69bf50425e_JaffaCakes118

    • Size

      21KB

    • MD5

      b4c74366527a2b8293072a69bf50425e

    • SHA1

      d1d7593757773a1ab53e82420ff96712050e1b0a

    • SHA256

      9667f6d75201d530ca011bd41974f5296eba2fbc38ad197d7ceaee1d99ce51e3

    • SHA512

      2d5eb1074b9bac2789e0e3748d400966f45bd112d98aa90c3bf6fc54e6833bfd796d6aaa0122caa7453fbeb95807ebee3266aa0a2d7594aecb600fea4d7afe55

    • SSDEEP

      384:pVSzhUjY0HMXjQPIgCqqY+XrLLdtVPlhrdieI8Y8nswlGHpNjWJ2guZYSh:fSzhUjYFXjQPI+Rq33hlhJZM8nXwHqfc

    Score
    10/10
    defense_evasiondiscoveryevasionupx

    • Modifies firewall policy service

      evasion

    • Impair Defenses: Safe Mode Boot

      defense_evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks