Overview

overview

7

Static

static

3

eaca1834f5...18.exe

windows7-x64

7

eaca1834f5...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eaca1834f5c5342d308fc281845edb7a_JaffaCakes118

  • Size

    400KB

  • Sample

    240919-hkwj9swcrn

  • MD5

    eaca1834f5c5342d308fc281845edb7a

  • SHA1

    5583ca8f5dd2869e67a9933eaa56ba929e1c4d04

  • SHA256

    4f50cc696e9c2837b677353638d5f59f8bc0ca401d66b14c1d09af7f93c8d6da

  • SHA512

    7b61047cd386655d022911286dc7424ea25605f1e43d42f9c453fc24d885e2fae58a7571852bcbbf6c6d288708006e16139a723705a91c9c30b9970cb8a20380

  • SSDEEP

    6144:1sNkG7lUJa549EM6Ctij5o45Ew6nVlBRYWxhLu43rW6cEZt9ZnpkT4NySkNAuxG:18kGyafEtwHd6v4WvnzZt9ZpkMNYxG

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      eaca1834f5c5342d308fc281845edb7a_JaffaCakes118

    • Size

      400KB

    • MD5

      eaca1834f5c5342d308fc281845edb7a

    • SHA1

      5583ca8f5dd2869e67a9933eaa56ba929e1c4d04

    • SHA256

      4f50cc696e9c2837b677353638d5f59f8bc0ca401d66b14c1d09af7f93c8d6da

    • SHA512

      7b61047cd386655d022911286dc7424ea25605f1e43d42f9c453fc24d885e2fae58a7571852bcbbf6c6d288708006e16139a723705a91c9c30b9970cb8a20380

    • SSDEEP

      6144:1sNkG7lUJa549EM6Ctij5o45Ew6nVlBRYWxhLu43rW6cEZt9ZnpkT4NySkNAuxG:18kGyafEtwHd6v4WvnzZt9ZpkMNYxG

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks