cdf17172e29e2d1071a440864b8cb03a216bf7ac4e7a9f2d4f157a0b2b44ba2b | Triage

Submit
Reports

Overview

overview

7

Static

static

3

dbb14f2d53...18.exe

windows7-x64

7

dbb14f2d53...18.exe

windows10-2004-x64

3

Sharing

General

Target

dbb14f2d5335498ce43845311fb1e3a7_JaffaCakes118
Size

400KB
Sample

240912-dhdjfsxhjn
MD5

dbb14f2d5335498ce43845311fb1e3a7
SHA1

43659962faec20e99f3aec3feecca80c7b874f22
SHA256

cdf17172e29e2d1071a440864b8cb03a216bf7ac4e7a9f2d4f157a0b2b44ba2b
SHA512

dbcac8f0603295cc5adaad4aafe4198abdf68d7cc72b9a97aaaa5f48e80801795f1766c85874c0ddf417eda8d7188069da8dbdf990ab4a1d17a46dc089d0cac5
SSDEEP

12288:MJ50zOBTH7mVzos9tdNf2i8mQIHEWCe1XPpyRwg3U6:K50ObE1deiQ7yg

Score

7^/10

discovery persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dbb14f2d5335498ce43845311fb1e3a7_JaffaCakes118.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

dbb14f2d5335498ce43845311fb1e3a7_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  dbb14f2d5335498ce43845311fb1e3a7_JaffaCakes118
- Size
  
  400KB
- MD5
  
  dbb14f2d5335498ce43845311fb1e3a7
- SHA1
  
  43659962faec20e99f3aec3feecca80c7b874f22
- SHA256
  
  cdf17172e29e2d1071a440864b8cb03a216bf7ac4e7a9f2d4f157a0b2b44ba2b
- SHA512
  
  dbcac8f0603295cc5adaad4aafe4198abdf68d7cc72b9a97aaaa5f48e80801795f1766c85874c0ddf417eda8d7188069da8dbdf990ab4a1d17a46dc089d0cac5
- SSDEEP
  
  12288:MJ50zOBTH7mVzos9tdNf2i8mQIHEWCe1XPpyRwg3U6:K50ObE1deiQ7yg
Score

7^/10

discovery persistence upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

© 2018-2025

Terms | Privacy