Overview

overview

7

Static

static

3

cf7e51ea07...18.exe

windows7-x64

7

cf7e51ea07...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    cf7e51ea072a6636d96dd18a40f4de02_JaffaCakes118

  • Size

    37KB

  • Sample

    240906-paf56avfjr

  • MD5

    cf7e51ea072a6636d96dd18a40f4de02

  • SHA1

    3681911308bedee9d8c7e4bbf071512bfa43298f

  • SHA256

    9f0e2d41e7f14118fb0b5053eac5225dcdcbb12060f44f2c21d70ddf858b5465

  • SHA512

    52282cab596009f9b73546a3544f0bbcfe8d2d413aaac8a1cd1628f50056a1c11cae53ca35640409b4afcf77c41e730e083b824f6236856bccada77568ffbbc5

  • SSDEEP

    768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMy6:edILlknNU4rOobbLyn6

Score
7/10
discovery

Malware Config

Targets

    • Target

      cf7e51ea072a6636d96dd18a40f4de02_JaffaCakes118

    • Size

      37KB

    • MD5

      cf7e51ea072a6636d96dd18a40f4de02

    • SHA1

      3681911308bedee9d8c7e4bbf071512bfa43298f

    • SHA256

      9f0e2d41e7f14118fb0b5053eac5225dcdcbb12060f44f2c21d70ddf858b5465

    • SHA512

      52282cab596009f9b73546a3544f0bbcfe8d2d413aaac8a1cd1628f50056a1c11cae53ca35640409b4afcf77c41e730e083b824f6236856bccada77568ffbbc5

    • SSDEEP

      768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMy6:edILlknNU4rOobbLyn6

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks