Overview

overview

10

Static

static

3

e14cc93930...18.exe

windows7-x64

10

e14cc93930...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e14cc93930ceed352a4fea70162f8264_JaffaCakes118

  • Size

    444KB

  • Sample

    240915-aac16svanm

  • MD5

    e14cc93930ceed352a4fea70162f8264

  • SHA1

    ea7441318a0dc10fc0ca893b0c1fb4ff62f2695d

  • SHA256

    dea590f8edcc02b0e000377483db28e037a9f1c30878a36cb7496ef709bb897c

  • SHA512

    f3afeae5fe3da6e9f925b4119905954341568b462f457ce64b2f945c7c34d14287c7f89b8b6a33032cf85508266f7faaa4e268ad9db6fffcb87fdf18fa54345c

  • SSDEEP

    12288:LHUdw59W2UqpktJXAZ/cOG0W/gMre0Kiyze9EiMj1e1:L0K59W2UXtBscOGwManiyiGj1e1

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      e14cc93930ceed352a4fea70162f8264_JaffaCakes118

    • Size

      444KB

    • MD5

      e14cc93930ceed352a4fea70162f8264

    • SHA1

      ea7441318a0dc10fc0ca893b0c1fb4ff62f2695d

    • SHA256

      dea590f8edcc02b0e000377483db28e037a9f1c30878a36cb7496ef709bb897c

    • SHA512

      f3afeae5fe3da6e9f925b4119905954341568b462f457ce64b2f945c7c34d14287c7f89b8b6a33032cf85508266f7faaa4e268ad9db6fffcb87fdf18fa54345c

    • SSDEEP

      12288:LHUdw59W2UqpktJXAZ/cOG0W/gMre0Kiyze9EiMj1e1:L0K59W2UXtBscOGwManiyiGj1e1

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks