c0f8dddd2a4bf62d306aacd2fb69ea2f8170ebcc5876f76290bd2c3a00d27610 | Triage

Submit
Reports

Overview

overview

Static

static

5

ec835edab4...18.exe

windows7-x64

ec835edab4...18.exe

windows10-2004-x64

Sharing

General

Target

ec835edab4db0cd046ac0431d0031093_JaffaCakes118
Size

638KB
Sample

240920-a49bgazdrc
MD5

ec835edab4db0cd046ac0431d0031093
SHA1

0a548a3d415a56f3615e4d71def79d835add2c3f
SHA256

c0f8dddd2a4bf62d306aacd2fb69ea2f8170ebcc5876f76290bd2c3a00d27610
SHA512

f21d6050f436c336b15b3cfc60951116e4be0fb3102d349bf5a30b0246b2140bb3b491eb17c68d5a01ff893eb8930a7037074ca4fcc94394acb4d2117fef4a23
SSDEEP

12288:9hkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcbNyf:LRmJkcoQricOIQxiZY1WNyf

Score

10^/10

discovery evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ec835edab4db0cd046ac0431d0031093_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec835edab4db0cd046ac0431d0031093_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  ec835edab4db0cd046ac0431d0031093_JaffaCakes118
- Size
  
  638KB
- MD5
  
  ec835edab4db0cd046ac0431d0031093
- SHA1
  
  0a548a3d415a56f3615e4d71def79d835add2c3f
- SHA256
  
  c0f8dddd2a4bf62d306aacd2fb69ea2f8170ebcc5876f76290bd2c3a00d27610
- SHA512
  
  f21d6050f436c336b15b3cfc60951116e4be0fb3102d349bf5a30b0246b2140bb3b491eb17c68d5a01ff893eb8930a7037074ca4fcc94394acb4d2117fef4a23
- SSDEEP
  
  12288:9hkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcbNyf:LRmJkcoQricOIQxiZY1WNyf
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy