bc039aab01423e8aabd061e2fdbb46d5e8392b11d7141b84b3b43f6100bbdaf3 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

d64a8db0d6...18.exe

windows7-x64

7

d64a8db0d6...18.exe

windows10-2004-x64

7

Sharing

General

Target

d64a8db0d6c990f5ca5c5d951a9c05ff_JaffaCakes118
Size

91KB
Sample

240909-pe75fazbpc
MD5

d64a8db0d6c990f5ca5c5d951a9c05ff
SHA1

3450bf85c79b9162116b7b3b960346291239d30f
SHA256

bc039aab01423e8aabd061e2fdbb46d5e8392b11d7141b84b3b43f6100bbdaf3
SHA512

ca0d6f68e864f65a560e8c8577fc6aca22f648c62e696973ee38b064e745cde03904c745ae1a745dbb168ed4b9de1779caa4bb554ef9ac09edb48a17a2564b4f
SSDEEP

1536:ZiDLG7z8p+SZjBHdEhIxBtS5Q5grdU3+kNS9Y/bmF6uIo6nX7mNeomBZzJ1J+B0j:ZifEzyPHdEaaQ5g2Ow2Y/bmF65NCNeoS

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d64a8db0d6c990f5ca5c5d951a9c05ff_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d64a8db0d6c990f5ca5c5d951a9c05ff_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  d64a8db0d6c990f5ca5c5d951a9c05ff_JaffaCakes118
- Size
  
  91KB
- MD5
  
  d64a8db0d6c990f5ca5c5d951a9c05ff
- SHA1
  
  3450bf85c79b9162116b7b3b960346291239d30f
- SHA256
  
  bc039aab01423e8aabd061e2fdbb46d5e8392b11d7141b84b3b43f6100bbdaf3
- SHA512
  
  ca0d6f68e864f65a560e8c8577fc6aca22f648c62e696973ee38b064e745cde03904c745ae1a745dbb168ed4b9de1779caa4bb554ef9ac09edb48a17a2564b4f
- SSDEEP
  
  1536:ZiDLG7z8p+SZjBHdEhIxBtS5Q5grdU3+kNS9Y/bmF6uIo6nX7mNeomBZzJ1J+B0j:ZifEzyPHdEaaQ5g2Ow2Y/bmF65NCNeoS
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy