Overview

overview

10

Static

static

3

eabeb3d579...18.exe

windows7-x64

10

eabeb3d579...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eabeb3d579959fe441177ee13cebafae_JaffaCakes118

  • Size

    393KB

  • Sample

    240919-g13g3svbnf

  • MD5

    eabeb3d579959fe441177ee13cebafae

  • SHA1

    edbe47610d8e80819c54903cabbd1a219d6df3fe

  • SHA256

    f841eb459bd774e42c9c93a48ba337df1dce47b4bd69b476dc2ba54c0caae4d3

  • SHA512

    151ba6030b5de6e7931617167d81c019943ace5b72f50e70f6c936e97f76eac20a1b7f9ac3412951882d7f0edd73ad1110febe384c2e8f5fdffb6f1c7ad8dd45

  • SSDEEP

    12288:iyJY9pdmxwRWwcVGzWd0f6nZU4hZo8ydktttttttttttttDD9UM:iyJOfWwWGzUrbOYDz

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      eabeb3d579959fe441177ee13cebafae_JaffaCakes118

    • Size

      393KB

    • MD5

      eabeb3d579959fe441177ee13cebafae

    • SHA1

      edbe47610d8e80819c54903cabbd1a219d6df3fe

    • SHA256

      f841eb459bd774e42c9c93a48ba337df1dce47b4bd69b476dc2ba54c0caae4d3

    • SHA512

      151ba6030b5de6e7931617167d81c019943ace5b72f50e70f6c936e97f76eac20a1b7f9ac3412951882d7f0edd73ad1110febe384c2e8f5fdffb6f1c7ad8dd45

    • SSDEEP

      12288:iyJY9pdmxwRWwcVGzWd0f6nZU4hZo8ydktttttttttttttDD9UM:iyJOfWwWGzUrbOYDz

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks