Overview

overview

10

Static

static

7

ee8cf8f966...18.exe

windows7-x64

10

ee8cf8f966...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee8cf8f9666059043b0bb49280dc9a9c_JaffaCakes118

  • Size

    36KB

  • Sample

    240920-2ewsmasblm

  • MD5

    ee8cf8f9666059043b0bb49280dc9a9c

  • SHA1

    87b94e0f1a4637815cf1ceb5ffa56d1a5cd5b0d6

  • SHA256

    4faadb8a92a2785f27b3965f38a7efb2478afa1bf47267af459fc6116ea80aff

  • SHA512

    7f382fe82c0cbe498c3d1ac0c21308f35b7e198d13003b94b9d50a38aa5c3288a2fb86796d0c4dd47d541e21534ecd2a6056bcdcab50c7e214bfc653b4b3cfa4

  • SSDEEP

    768:j9SL0aZNB0pOAL1xZ8gxXN6WdcwG/+u3bEAW44/Q9pB:j20a10Q+LZ7WccwGm0bEtfQ9pB

Score
10/10
discoveryevasionexecutionupx

Malware Config

Targets

    • Target

      ee8cf8f9666059043b0bb49280dc9a9c_JaffaCakes118

    • Size

      36KB

    • MD5

      ee8cf8f9666059043b0bb49280dc9a9c

    • SHA1

      87b94e0f1a4637815cf1ceb5ffa56d1a5cd5b0d6

    • SHA256

      4faadb8a92a2785f27b3965f38a7efb2478afa1bf47267af459fc6116ea80aff

    • SHA512

      7f382fe82c0cbe498c3d1ac0c21308f35b7e198d13003b94b9d50a38aa5c3288a2fb86796d0c4dd47d541e21534ecd2a6056bcdcab50c7e214bfc653b4b3cfa4

    • SSDEEP

      768:j9SL0aZNB0pOAL1xZ8gxXN6WdcwG/+u3bEAW44/Q9pB:j20a10Q+LZ7WccwGm0bEtfQ9pB

    Score
    10/10
    discoveryevasionexecutionupx

    • Disables service(s)

      evasionexecution

    • Stops running service(s)

      evasionexecution

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks