Overview

overview

10

Static

static

3

ec8738d10a...18.exe

windows7-x64

10

ec8738d10a...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec8738d10a383d6fe5fcd86d4ffcc0b0_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240920-bb8d5szgpg

  • MD5

    ec8738d10a383d6fe5fcd86d4ffcc0b0

  • SHA1

    23f3d904b07cab86fb8ba745616d4a9a15db0a4d

  • SHA256

    c08b3ed48589197bf564818076661c08fddeeb0de542120a1ffd149f0d2f2fa6

  • SHA512

    9bb9488a73649b89e8ae750168b0871790b73c8956e41b61e12b772deab669bc1d033902d41e0d98af6423506fa0529c4c63bfed4733c0c04808b75e992c2d3f

  • SSDEEP

    1536:5XTSHQ+AWwXpPhttIf1zwQVgv/qflVkSkwNegiYaZ9:5jG4pPhLI1zwLv/2IfwNegin9

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ec8738d10a383d6fe5fcd86d4ffcc0b0_JaffaCakes118

    • Size

      1.2MB

    • MD5

      ec8738d10a383d6fe5fcd86d4ffcc0b0

    • SHA1

      23f3d904b07cab86fb8ba745616d4a9a15db0a4d

    • SHA256

      c08b3ed48589197bf564818076661c08fddeeb0de542120a1ffd149f0d2f2fa6

    • SHA512

      9bb9488a73649b89e8ae750168b0871790b73c8956e41b61e12b772deab669bc1d033902d41e0d98af6423506fa0529c4c63bfed4733c0c04808b75e992c2d3f

    • SSDEEP

      1536:5XTSHQ+AWwXpPhttIf1zwQVgv/qflVkSkwNegiYaZ9:5jG4pPhLI1zwLv/2IfwNegin9

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks