Overview

overview

7

Static

static

3

db98330305...18.exe

windows7-x64

7

db98330305...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db9833030584890b42448c8ef340d85d_JaffaCakes118

  • Size

    324KB

  • Sample

    240912-b4l2lsvbqr

  • MD5

    db9833030584890b42448c8ef340d85d

  • SHA1

    b4da489452adeab9663cd852c4e72d6cb53ea22a

  • SHA256

    905b71e2a9a799c558c6b280a85e50c43a5c8998476304eee0bed1a0077b227d

  • SHA512

    1fb0808d0f4b462d9295968a8c1eadd56980e9d1ab1696fc0da0795f647d7cdb79864a9540567a8ad461592a25eef7df79cd100d526c916649aef994c5cc41e7

  • SSDEEP

    6144:BDjJvvtwSxbLeXGuuZT9Bv698PkN3jFYvXTI2vRAoZi8MLuGxq37hDqc7:dNtx9guV9BS98PqFYvjIEG589hDR

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      db9833030584890b42448c8ef340d85d_JaffaCakes118

    • Size

      324KB

    • MD5

      db9833030584890b42448c8ef340d85d

    • SHA1

      b4da489452adeab9663cd852c4e72d6cb53ea22a

    • SHA256

      905b71e2a9a799c558c6b280a85e50c43a5c8998476304eee0bed1a0077b227d

    • SHA512

      1fb0808d0f4b462d9295968a8c1eadd56980e9d1ab1696fc0da0795f647d7cdb79864a9540567a8ad461592a25eef7df79cd100d526c916649aef994c5cc41e7

    • SSDEEP

      6144:BDjJvvtwSxbLeXGuuZT9Bv698PkN3jFYvXTI2vRAoZi8MLuGxq37hDqc7:dNtx9guV9BS98PqFYvjIEG589hDR

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks