Overview

overview

10

Static

static

3

cde72884f2...18.exe

windows7-x64

10

cde72884f2...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cde72884f2c4c79a38ebe184966bab3a_JaffaCakes118

  • Size

    392KB

  • Sample

    240901-a5r4ksvgqh

  • MD5

    cde72884f2c4c79a38ebe184966bab3a

  • SHA1

    31590f9379c1b22738a399b740486709806b151d

  • SHA256

    02da2ade37737e4fe6394913f0a2c359b4eecd912f72a7dc9607d0e39f4a858d

  • SHA512

    35c60b0cb26f7ad147e26d2c017299577d43dc7f067a8900c91936ced92f953e5b9b362f72ef25883055b195e3072c9acc163611cafb616acbb2d5841eb26e2c

  • SSDEEP

    6144:fwcEzY2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4+jzmmnT:CJjmwTZSihRQwJCi4zVWThBnmT

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      cde72884f2c4c79a38ebe184966bab3a_JaffaCakes118

    • Size

      392KB

    • MD5

      cde72884f2c4c79a38ebe184966bab3a

    • SHA1

      31590f9379c1b22738a399b740486709806b151d

    • SHA256

      02da2ade37737e4fe6394913f0a2c359b4eecd912f72a7dc9607d0e39f4a858d

    • SHA512

      35c60b0cb26f7ad147e26d2c017299577d43dc7f067a8900c91936ced92f953e5b9b362f72ef25883055b195e3072c9acc163611cafb616acbb2d5841eb26e2c

    • SSDEEP

      6144:fwcEzY2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4+jzmmnT:CJjmwTZSihRQwJCi4zVWThBnmT

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks