16b2af1d2448bb6117cb906958971edfd12ed1dcb1aec34ce0ececa7f135e741 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

be16d5b256...18.exe

windows7-x64

7

be16d5b256...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

be16d5b2565de5fe7b2e2f060841c15f_JaffaCakes118
Size

37KB
Sample

240824-hlfv7szekp
MD5

be16d5b2565de5fe7b2e2f060841c15f
SHA1

61e087134b426f74f7b81429971a804fe14928f1
SHA256

16b2af1d2448bb6117cb906958971edfd12ed1dcb1aec34ce0ececa7f135e741
SHA512

d649d2882ba524e0011f45b1a6cabdf93badcf0b3feb5c940249e7c9af664803f75d3d81af65517bbd12dbedb1e1067034d24e88557dd88e7667d280c9be06bd
SSDEEP

768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyH:edILlknNU4rOobbLynH

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

be16d5b2565de5fe7b2e2f060841c15f_JaffaCakes118.exe

Resource

win7-20240729-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

be16d5b2565de5fe7b2e2f060841c15f_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  be16d5b2565de5fe7b2e2f060841c15f_JaffaCakes118
- Size
  
  37KB
- MD5
  
  be16d5b2565de5fe7b2e2f060841c15f
- SHA1
  
  61e087134b426f74f7b81429971a804fe14928f1
- SHA256
  
  16b2af1d2448bb6117cb906958971edfd12ed1dcb1aec34ce0ececa7f135e741
- SHA512
  
  d649d2882ba524e0011f45b1a6cabdf93badcf0b3feb5c940249e7c9af664803f75d3d81af65517bbd12dbedb1e1067034d24e88557dd88e7667d280c9be06bd
- SSDEEP
  
  768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyH:edILlknNU4rOobbLynH
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy