Overview

overview

10

Static

static

3

eb45742bd0...18.exe

windows7-x64

10

eb45742bd0...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    eb45742bd01e4c54013139244d3153d0_JaffaCakes118

  • Size

    408KB

  • Sample

    240919-nynz8swhja

  • MD5

    eb45742bd01e4c54013139244d3153d0

  • SHA1

    d3e62ee35c3291c9a900bfda9de5cb6889eb5a0d

  • SHA256

    d7e592deb528644c5ead6b60fa2d16fbf9842ee87c6e41326072cb300ae1b6fa

  • SHA512

    02b883f9c894dbb851dff3ade509e38d1f33ad889ff1ec214a8cec8519f6044fe3250064e8d4e959cf3b856c6028d5c786b90ebf4278da983b0ed7a38f77433a

  • SSDEEP

    6144:KFRjs8wUu+hIx/Vv9YVCPpX0ce/R4t6dYFGQdMqzox3YTGeC4sKphZPgHELi6zoX:KFh0Jx/V/i//RWVmqz23xR4hZ2Elowo

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      eb45742bd01e4c54013139244d3153d0_JaffaCakes118

    • Size

      408KB

    • MD5

      eb45742bd01e4c54013139244d3153d0

    • SHA1

      d3e62ee35c3291c9a900bfda9de5cb6889eb5a0d

    • SHA256

      d7e592deb528644c5ead6b60fa2d16fbf9842ee87c6e41326072cb300ae1b6fa

    • SHA512

      02b883f9c894dbb851dff3ade509e38d1f33ad889ff1ec214a8cec8519f6044fe3250064e8d4e959cf3b856c6028d5c786b90ebf4278da983b0ed7a38f77433a

    • SSDEEP

      6144:KFRjs8wUu+hIx/Vv9YVCPpX0ce/R4t6dYFGQdMqzox3YTGeC4sKphZPgHELi6zoX:KFh0Jx/V/i//RWVmqz23xR4hZ2Elowo

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks