Overview

overview

10

Static

static

3

dd57edaa00...18.exe

windows7-x64

10

dd57edaa00...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    dd57edaa00d8f9de885e2b104191a53f_JaffaCakes118

  • Size

    393KB

  • Sample

    240913-a3eqgavfma

  • MD5

    dd57edaa00d8f9de885e2b104191a53f

  • SHA1

    edac805528bc255ed186c33aae96bd003de0ddad

  • SHA256

    bd512dd48f82d67a154041349c80ff0dd100eaa32d560ebac37228a879ad5c3a

  • SHA512

    4e717d697c4024e0e4287a0b8aa09f0823c7fb6e7ef6911ce67708a12cd46195713fab359b12f7bff5b077f03743c3ece75e2bf602f235a9b242b993006ef9d8

  • SSDEEP

    12288:53KpJI6xj1dV9fJcEXW4OYIb5IiENCaQa6zV0T:5Cb1dV9fJhXWGHNAaA4

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      dd57edaa00d8f9de885e2b104191a53f_JaffaCakes118

    • Size

      393KB

    • MD5

      dd57edaa00d8f9de885e2b104191a53f

    • SHA1

      edac805528bc255ed186c33aae96bd003de0ddad

    • SHA256

      bd512dd48f82d67a154041349c80ff0dd100eaa32d560ebac37228a879ad5c3a

    • SHA512

      4e717d697c4024e0e4287a0b8aa09f0823c7fb6e7ef6911ce67708a12cd46195713fab359b12f7bff5b077f03743c3ece75e2bf602f235a9b242b993006ef9d8

    • SSDEEP

      12288:53KpJI6xj1dV9fJcEXW4OYIb5IiENCaQa6zV0T:5Cb1dV9fJhXWGHNAaA4

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks