Overview

overview

10

Static

static

3

eaae143b8f...18.exe

windows7-x64

10

eaae143b8f...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eaae143b8ffec3761fefa1907c04aba9_JaffaCakes118

  • Size

    334KB

  • Sample

    240919-f9elyatcmk

  • MD5

    eaae143b8ffec3761fefa1907c04aba9

  • SHA1

    1204404b7a96a1a409c2e809a8fa4cc470893416

  • SHA256

    9b53317f1b3ebf9a55c06a007a41e90102e8e0cac687e126a6eaa583d6060a02

  • SHA512

    2e74cb8751fb096f1e2853ac437f64ffb7e2e745b549c72b01f3b032ccd0e407c29d07aeba9965828af7e5fd56e22711a69e9bfd11750f7028179dc0630f04d5

  • SSDEEP

    6144:N5AXOZNyD7dzY6VnCRK0Nt1Koif1D+yfHXw2rh4Uy3Gw5j5sxu/0S3abHGuIGahj:CPVCI0rIoUpP/5rKFrV3aHGu1a/ES

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      eaae143b8ffec3761fefa1907c04aba9_JaffaCakes118

    • Size

      334KB

    • MD5

      eaae143b8ffec3761fefa1907c04aba9

    • SHA1

      1204404b7a96a1a409c2e809a8fa4cc470893416

    • SHA256

      9b53317f1b3ebf9a55c06a007a41e90102e8e0cac687e126a6eaa583d6060a02

    • SHA512

      2e74cb8751fb096f1e2853ac437f64ffb7e2e745b549c72b01f3b032ccd0e407c29d07aeba9965828af7e5fd56e22711a69e9bfd11750f7028179dc0630f04d5

    • SSDEEP

      6144:N5AXOZNyD7dzY6VnCRK0Nt1Koif1D+yfHXw2rh4Uy3Gw5j5sxu/0S3abHGuIGahj:CPVCI0rIoUpP/5rKFrV3aHGu1a/ES

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks