Overview

overview

10

Static

static

7

ec8fef7d11...18.exe

windows7-x64

10

ec8fef7d11...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec8fef7d1159872b8dc7100f9ccc71c8_JaffaCakes118

  • Size

    209KB

  • Sample

    240920-bq4pha1fld

  • MD5

    ec8fef7d1159872b8dc7100f9ccc71c8

  • SHA1

    224265950816223f701ea356c478dfbea4a451c1

  • SHA256

    83b26799a4dbb43e81390b503274cba2e26a23be885402276a141a131b14730e

  • SHA512

    bd9f42c2b3d3379cf8cf45f76bd0c389efaf9507cd0806528210cb9efc3af60d729ff5025669078a127bc7533984618d315985a37a27862d8440119f3c929af6

  • SSDEEP

    3072:8kFU2323MGVyI7XOcH9/2PnBDMntmBgBa2Q1l5BUts95Yvjp4HWmA/XmbjNm40zJ:8XQ23MOZX6nZWmBgWPHisbYLdEM4yF

Score
10/10
defense_evasiondiscoverypersistenceupx

Malware Config

Targets

    • Target

      ec8fef7d1159872b8dc7100f9ccc71c8_JaffaCakes118

    • Size

      209KB

    • MD5

      ec8fef7d1159872b8dc7100f9ccc71c8

    • SHA1

      224265950816223f701ea356c478dfbea4a451c1

    • SHA256

      83b26799a4dbb43e81390b503274cba2e26a23be885402276a141a131b14730e

    • SHA512

      bd9f42c2b3d3379cf8cf45f76bd0c389efaf9507cd0806528210cb9efc3af60d729ff5025669078a127bc7533984618d315985a37a27862d8440119f3c929af6

    • SSDEEP

      3072:8kFU2323MGVyI7XOcH9/2PnBDMntmBgBa2Q1l5BUts95Yvjp4HWmA/XmbjNm40zJ:8XQ23MOZX6nZWmBgWPHisbYLdEM4yF

    Score
    10/10
    defense_evasiondiscoverypersistenceupx

    • Modifies WinLogon for persistence

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Hide Artifacts: Hidden Files and Directories

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks