Overview

overview

10

Static

static

3

c8e0efe285...18.exe

windows7-x64

10

c8e0efe285...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    c8e0efe285f6053d6838053edce63174_JaffaCakes118

  • Size

    342KB

  • Sample

    240829-qefkvsveqk

  • MD5

    c8e0efe285f6053d6838053edce63174

  • SHA1

    1a07dcf0e7564ab7cfae3f1e811930f090d1b652

  • SHA256

    742a9957a5aaf196b9331396bf4f719c4fb6fe5f12a0c4eca9499bae1af3722e

  • SHA512

    fdf31ea8c6d18333c2e8fb66158198b39720812228aab37cf1d77685ebb2ac8853ed8a84aa93a0f11fc97993de92f63f2fa6862f55c8099de0522f6475bc99f1

  • SSDEEP

    6144:7t42S9Beu7vLKU5m0+iiZHJoa5qT0Ag6oFFRBGnGCRxX6K+:XyBe2Y0+iiZpJNANCFRBGGcl6z

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      c8e0efe285f6053d6838053edce63174_JaffaCakes118

    • Size

      342KB

    • MD5

      c8e0efe285f6053d6838053edce63174

    • SHA1

      1a07dcf0e7564ab7cfae3f1e811930f090d1b652

    • SHA256

      742a9957a5aaf196b9331396bf4f719c4fb6fe5f12a0c4eca9499bae1af3722e

    • SHA512

      fdf31ea8c6d18333c2e8fb66158198b39720812228aab37cf1d77685ebb2ac8853ed8a84aa93a0f11fc97993de92f63f2fa6862f55c8099de0522f6475bc99f1

    • SSDEEP

      6144:7t42S9Beu7vLKU5m0+iiZHJoa5qT0Ag6oFFRBGnGCRxX6K+:XyBe2Y0+iiZpJNANCFRBGGcl6z

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks