Overview

overview

10

Static

static

10

c6c4dbbf04...18.exe

windows7-x64

10

c6c4dbbf04...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6c4dbbf044a73a8b67aa03dd946226f_JaffaCakes118

  • Size

    16KB

  • Sample

    240828-nqndqsycpr

  • MD5

    c6c4dbbf044a73a8b67aa03dd946226f

  • SHA1

    85e9ca5c49d725af304339b4542ef1c031f4c604

  • SHA256

    9e280b97b40b239b8af21a34608b64fb86e9ba8db3329295c4f1fed49a5fd145

  • SHA512

    07fb68ebb106597187087f15d49a9ddd3019e25257a31dfadf5fee9d023233f8e68340314be85c61bc66f1022f9560d903cada84d849273f538154999a4f24ac

  • SSDEEP

    384:yKxvDuPNItH19GTXjdh2SuujYcV6AUwJFZb:y44atV9Ah1fYcV6Dw9b

Score
10/10
loaderbotdiscoveryloaderminerpersistence

Malware Config

Targets

    • Target

      c6c4dbbf044a73a8b67aa03dd946226f_JaffaCakes118

    • Size

      16KB

    • MD5

      c6c4dbbf044a73a8b67aa03dd946226f

    • SHA1

      85e9ca5c49d725af304339b4542ef1c031f4c604

    • SHA256

      9e280b97b40b239b8af21a34608b64fb86e9ba8db3329295c4f1fed49a5fd145

    • SHA512

      07fb68ebb106597187087f15d49a9ddd3019e25257a31dfadf5fee9d023233f8e68340314be85c61bc66f1022f9560d903cada84d849273f538154999a4f24ac

    • SSDEEP

      384:yKxvDuPNItH19GTXjdh2SuujYcV6AUwJFZb:y44atV9Ah1fYcV6Dw9b

    Score
    10/10
    loaderbotdiscoveryloaderminerpersistence

    • LoaderBot

      LoaderBot is a loader written in .NET downloading and executing miners.

      loaderminerloaderbot

    • LoaderBot executable

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks