Overview

overview

10

Static

static

3

ba55feb1c3...18.exe

windows7-x64

10

ba55feb1c3...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ba55feb1c331c4191ecc0a20f0e61635_JaffaCakes118

  • Size

    393KB

  • Sample

    240823-ex7xaaxdpn

  • MD5

    ba55feb1c331c4191ecc0a20f0e61635

  • SHA1

    beb22be6d1f67cde97ca16b510321d7f8e0125ca

  • SHA256

    fc0d95727d494255f3062327f68e56c035b018ebff42d9987815128bce64d6f2

  • SHA512

    fec44896aba542ed97067d8437a9b57bcbac7d006cc288716d3cfc5bf1ec107eea936b05c21a461ae682007e1e666b5f6382b9b49f8b89071f4786e28add80e6

  • SSDEEP

    6144:a3tq6S1dGppg6gUmXepiZujTthY8fMccz907DP3dMKsucbTb9Vhpfn2BLuPbNNie:DdGppg0zj7Y8Sz96jdbsucLJUSBwe

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      ba55feb1c331c4191ecc0a20f0e61635_JaffaCakes118

    • Size

      393KB

    • MD5

      ba55feb1c331c4191ecc0a20f0e61635

    • SHA1

      beb22be6d1f67cde97ca16b510321d7f8e0125ca

    • SHA256

      fc0d95727d494255f3062327f68e56c035b018ebff42d9987815128bce64d6f2

    • SHA512

      fec44896aba542ed97067d8437a9b57bcbac7d006cc288716d3cfc5bf1ec107eea936b05c21a461ae682007e1e666b5f6382b9b49f8b89071f4786e28add80e6

    • SSDEEP

      6144:a3tq6S1dGppg6gUmXepiZujTthY8fMccz907DP3dMKsucbTb9Vhpfn2BLuPbNNie:DdGppg0zj7Y8Sz96jdbsucLJUSBwe

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks