Overview

overview

7

Static

static

3

dce7ff4ab5...18.exe

windows7-x64

7

dce7ff4ab5...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dce7ff4ab542325ac31ce8b0254bb2da_JaffaCakes118

  • Size

    403KB

  • Sample

    240912-x7azea1aqe

  • MD5

    dce7ff4ab542325ac31ce8b0254bb2da

  • SHA1

    12797eb7857ab2ff0df28298675191cf29564847

  • SHA256

    af0e20447620ad599bb8456a42460009c54dfd83b43c8782cc18efc9ae51bf96

  • SHA512

    88196bc9b8b0d81af87ce3d7118c7b037dc1211b39e10f1d8b3040e3518dbf84f8ebc48f71dc264fb8718863f9565eb6e45ea4f8b19dad1ca45b228659a8877f

  • SSDEEP

    6144:Z6iqDO98V293jBB9QHY7JutekbWm82AACER+/92QLJuzz+Esth3Y63oPx7XoIVDC:BcETjqiutegWXVm+/Zr3t4Px7XoCD+j

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      dce7ff4ab542325ac31ce8b0254bb2da_JaffaCakes118

    • Size

      403KB

    • MD5

      dce7ff4ab542325ac31ce8b0254bb2da

    • SHA1

      12797eb7857ab2ff0df28298675191cf29564847

    • SHA256

      af0e20447620ad599bb8456a42460009c54dfd83b43c8782cc18efc9ae51bf96

    • SHA512

      88196bc9b8b0d81af87ce3d7118c7b037dc1211b39e10f1d8b3040e3518dbf84f8ebc48f71dc264fb8718863f9565eb6e45ea4f8b19dad1ca45b228659a8877f

    • SSDEEP

      6144:Z6iqDO98V293jBB9QHY7JutekbWm82AACER+/92QLJuzz+Esth3Y63oPx7XoIVDC:BcETjqiutegWXVm+/Zr3t4Px7XoCD+j

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks