Overview

overview

10

Static

static

3

ecb9f8b123...18.exe

windows7-x64

10

ecb9f8b123...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ecb9f8b1239deec1143294720838257a_JaffaCakes118

  • Size

    31KB

  • Sample

    240920-dmx4nawcrn

  • MD5

    ecb9f8b1239deec1143294720838257a

  • SHA1

    0a5001045461556f74db8b4448f09f3f2300857f

  • SHA256

    2f241fde5bad63d65996b8bb219ec1894808e6e69ed15d9d99278f4924074a65

  • SHA512

    43c63ada9a277f2c26388001643b4880856a96d2184b7ea943941d510cce02e65f71a1ab0104416fcfc7bb7fe3a2b0edc61914cfa4d55ec568afde5e2ece1b39

  • SSDEEP

    384:kdBEBaqgfhzlJPLjivWsQiZ23O88AjLeY4g+pdfdo0qocz5XoecZAOZW9:kdAaZlbLjieSZ23O88ELypUoyFoecY

Score
10/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      ecb9f8b1239deec1143294720838257a_JaffaCakes118

    • Size

      31KB

    • MD5

      ecb9f8b1239deec1143294720838257a

    • SHA1

      0a5001045461556f74db8b4448f09f3f2300857f

    • SHA256

      2f241fde5bad63d65996b8bb219ec1894808e6e69ed15d9d99278f4924074a65

    • SHA512

      43c63ada9a277f2c26388001643b4880856a96d2184b7ea943941d510cce02e65f71a1ab0104416fcfc7bb7fe3a2b0edc61914cfa4d55ec568afde5e2ece1b39

    • SSDEEP

      384:kdBEBaqgfhzlJPLjivWsQiZ23O88AjLeY4g+pdfdo0qocz5XoecZAOZW9:kdAaZlbLjieSZ23O88ELypUoyFoecY

    Score
    10/10
    discoveryevasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Disables RegEdit via registry modification

      evasion

    • Disables use of System Restore points

      evasion

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks