Overview

overview

10

Static

static

3

eab66f3e14...18.exe

windows7-x64

10

eab66f3e14...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eab66f3e149b1963342f1dacdc926746_JaffaCakes118

  • Size

    416KB

  • Sample

    240919-gnyy5atflb

  • MD5

    eab66f3e149b1963342f1dacdc926746

  • SHA1

    f664be1d6e5ba65bccb73c497fbaa1486051c351

  • SHA256

    dbc6b1c413a41265b797823ecec5554bb8853fa8488d01bc868adb5968d8ffc4

  • SHA512

    bede0b9e6595f766c39c337aa27f5d3d59fbcf413f2277516d21e4878436f319534f96d8d8e468de56188414acb4dc530108a500870ae5789d0e8ea7bd54f1cf

  • SSDEEP

    6144:9EIZp37z1YetMznIUJxlNu9J3wqA6DvKr8p2FurZ3IP9UVVv4OJ:9TrMzIU1NucHFurRln4

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      eab66f3e149b1963342f1dacdc926746_JaffaCakes118

    • Size

      416KB

    • MD5

      eab66f3e149b1963342f1dacdc926746

    • SHA1

      f664be1d6e5ba65bccb73c497fbaa1486051c351

    • SHA256

      dbc6b1c413a41265b797823ecec5554bb8853fa8488d01bc868adb5968d8ffc4

    • SHA512

      bede0b9e6595f766c39c337aa27f5d3d59fbcf413f2277516d21e4878436f319534f96d8d8e468de56188414acb4dc530108a500870ae5789d0e8ea7bd54f1cf

    • SSDEEP

      6144:9EIZp37z1YetMznIUJxlNu9J3wqA6DvKr8p2FurZ3IP9UVVv4OJ:9TrMzIU1NucHFurRln4

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks