Overview

overview

10

Static

static

3

bdd09b21bb...18.exe

windows7-x64

10

bdd09b21bb...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bdd09b21bb5842c16c61a12fd2bcd1af_JaffaCakes118

  • Size

    408KB

  • Sample

    240824-cppdvssdnm

  • MD5

    bdd09b21bb5842c16c61a12fd2bcd1af

  • SHA1

    55ad65177fca5ad5a466d3870388a3fb03a425dd

  • SHA256

    61bf360d37b5416444df5e799630186e93379fd25daee91a7b89c284d18150d5

  • SHA512

    6ed6906e4d5b2e899c7e9949b57854b7c603d86652e05ea4ecc3c89f8e8197a18639cd3ff5bed9782b8c4e0cafe446a5326bccb5bdcf01b85c8f456dac165dec

  • SSDEEP

    6144:q7qmCW3NntZfHhKnARLebLEkAKqyMt5+lFNxLYe5vUeC0jPBn2KwTE0n0Yq0:q7qvWtp4EqLEAikFN1YocajBnAwGq0

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      bdd09b21bb5842c16c61a12fd2bcd1af_JaffaCakes118

    • Size

      408KB

    • MD5

      bdd09b21bb5842c16c61a12fd2bcd1af

    • SHA1

      55ad65177fca5ad5a466d3870388a3fb03a425dd

    • SHA256

      61bf360d37b5416444df5e799630186e93379fd25daee91a7b89c284d18150d5

    • SHA512

      6ed6906e4d5b2e899c7e9949b57854b7c603d86652e05ea4ecc3c89f8e8197a18639cd3ff5bed9782b8c4e0cafe446a5326bccb5bdcf01b85c8f456dac165dec

    • SSDEEP

      6144:q7qmCW3NntZfHhKnARLebLEkAKqyMt5+lFNxLYe5vUeC0jPBn2KwTE0n0Yq0:q7qvWtp4EqLEAikFN1YocajBnAwGq0

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks