Overview

overview

8

Static

static

3

e0fc593b57...18.exe

windows7-x64

8

e0fc593b57...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    e0fc593b57cca0bdd2c3eb692397d157_JaffaCakes118

  • Size

    107KB

  • Sample

    240914-zdzrsavcnm

  • MD5

    e0fc593b57cca0bdd2c3eb692397d157

  • SHA1

    35c0e2028cb1259b04542694e9f508785f0a7a64

  • SHA256

    997b1038e9fc9c2624c317f431da48027b459a3fe0cb47c22e94c3247a4f1a54

  • SHA512

    dce8b7136a0db883fdd4982673d6ff55af1ad2397ae876625927ad78bc81b91fc5ba22397bb7bb78b127c7ddc5787599f506fad01b1a6e9bc2b6afc0ee70e3f6

  • SSDEEP

    3072:5mT1jZnnSLi/aoleE0aeOaJK3Kbmn7NCK9dMQGP:cT1jZ4g0dmVnxJBGP

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      e0fc593b57cca0bdd2c3eb692397d157_JaffaCakes118

    • Size

      107KB

    • MD5

      e0fc593b57cca0bdd2c3eb692397d157

    • SHA1

      35c0e2028cb1259b04542694e9f508785f0a7a64

    • SHA256

      997b1038e9fc9c2624c317f431da48027b459a3fe0cb47c22e94c3247a4f1a54

    • SHA512

      dce8b7136a0db883fdd4982673d6ff55af1ad2397ae876625927ad78bc81b91fc5ba22397bb7bb78b127c7ddc5787599f506fad01b1a6e9bc2b6afc0ee70e3f6

    • SSDEEP

      3072:5mT1jZnnSLi/aoleE0aeOaJK3Kbmn7NCK9dMQGP:cT1jZ4g0dmVnxJBGP

    Score
    8/10
    discoverypersistence

    • Server Software Component: Terminal Services DLL

      persistence

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks