Overview

overview

10

Static

static

3

c7ed2d1bc2...18.exe

windows7-x64

10

c7ed2d1bc2...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    c7ed2d1bc2e860c0bd00c5c616b2aefd_JaffaCakes118

  • Size

    392KB

  • Sample

    240829-avkxhswfkm

  • MD5

    c7ed2d1bc2e860c0bd00c5c616b2aefd

  • SHA1

    91d913088e7685225d56785f2a3ce12c7e4970ef

  • SHA256

    1fb2dff3ef215b21f14a5a4130ca724dcf4a78f06b0e13ac0696f55be07bbea3

  • SHA512

    a35f01fa99ce5163c612a965f5608800e2869a4675c08194044647c96b7d947909b716c987791407a67f4700dca303f51ac179f3e0a853c31eaad8826bbf7452

  • SSDEEP

    6144:GDh2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4mA4:TjmwTZSihRQwJCi4zVWThBmd

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      c7ed2d1bc2e860c0bd00c5c616b2aefd_JaffaCakes118

    • Size

      392KB

    • MD5

      c7ed2d1bc2e860c0bd00c5c616b2aefd

    • SHA1

      91d913088e7685225d56785f2a3ce12c7e4970ef

    • SHA256

      1fb2dff3ef215b21f14a5a4130ca724dcf4a78f06b0e13ac0696f55be07bbea3

    • SHA512

      a35f01fa99ce5163c612a965f5608800e2869a4675c08194044647c96b7d947909b716c987791407a67f4700dca303f51ac179f3e0a853c31eaad8826bbf7452

    • SSDEEP

      6144:GDh2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4mA4:TjmwTZSihRQwJCi4zVWThBmd

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks