Overview

overview

7

Static

static

7

d7081688b3...18.exe

windows7-x64

7

d7081688b3...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d7081688b354283a31cf1cd211de4150_JaffaCakes118

  • Size

    158KB

  • Sample

    240909-y355eszelb

  • MD5

    d7081688b354283a31cf1cd211de4150

  • SHA1

    6217fc3bfb34fa8ec19923598b7821b6d1894661

  • SHA256

    c1794e16368cd3ef152c6eeed64a3fd9cf149a8391087cad2236bd5fc6dd6b9c

  • SHA512

    d008d7324b09ff6f79ef9e3e4c9193a6edf8c32c861b84854ff6f3f9b9e9502492ad5a03cf6947747ba75e347a85436840bdb1359d7284357e3f231c4c620c82

  • SSDEEP

    3072:hA6Ucj4OV5/wqlltLqX9JZvfZLCY3Ioub4LQnG/aKqkcyhva:hA+j4WRlltLqNPvHvutG/aKqohC

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      d7081688b354283a31cf1cd211de4150_JaffaCakes118

    • Size

      158KB

    • MD5

      d7081688b354283a31cf1cd211de4150

    • SHA1

      6217fc3bfb34fa8ec19923598b7821b6d1894661

    • SHA256

      c1794e16368cd3ef152c6eeed64a3fd9cf149a8391087cad2236bd5fc6dd6b9c

    • SHA512

      d008d7324b09ff6f79ef9e3e4c9193a6edf8c32c861b84854ff6f3f9b9e9502492ad5a03cf6947747ba75e347a85436840bdb1359d7284357e3f231c4c620c82

    • SSDEEP

      3072:hA6Ucj4OV5/wqlltLqX9JZvfZLCY3Ioub4LQnG/aKqkcyhva:hA+j4WRlltLqNPvHvutG/aKqohC

    Score
    7/10
    discoverypersistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks