Overview

overview

10

Static

static

1

ea79e18826...18.exe

windows7-x64

10

ea79e18826...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea79e18826f29e3a6afffc7a06ad837a_JaffaCakes118

  • Size

    8.3MB

  • Sample

    240919-dpv23syarr

  • MD5

    ea79e18826f29e3a6afffc7a06ad837a

  • SHA1

    167dec2f7ca35894570f3cef53081ca35ac43416

  • SHA256

    af07a61b8f0a5c4b2490796589e5c3b10cd792dcb3ca7bedf5c9d3679fd5ff0b

  • SHA512

    795adc3039372d65b71c213a2939fa8577ca99bac6ee4073b845440cf4aa2e90ec11ec9581fa90b33d79a35e6b1ba8b264dead7886de9293cc33d953b24496ed

  • SSDEEP

    384:4/vmExlGqwd+43cWQ1jBwLz4Z/jUoA3I/:EmqBwd+4MdjBoz4Z/jf/

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ea79e18826f29e3a6afffc7a06ad837a_JaffaCakes118

    • Size

      8.3MB

    • MD5

      ea79e18826f29e3a6afffc7a06ad837a

    • SHA1

      167dec2f7ca35894570f3cef53081ca35ac43416

    • SHA256

      af07a61b8f0a5c4b2490796589e5c3b10cd792dcb3ca7bedf5c9d3679fd5ff0b

    • SHA512

      795adc3039372d65b71c213a2939fa8577ca99bac6ee4073b845440cf4aa2e90ec11ec9581fa90b33d79a35e6b1ba8b264dead7886de9293cc33d953b24496ed

    • SSDEEP

      384:4/vmExlGqwd+43cWQ1jBwLz4Z/jUoA3I/:EmqBwd+4MdjBoz4Z/jf/

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks