Overview

overview

10

Static

static

3

ed14515c39...18.exe

windows7-x64

10

ed14515c39...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ed14515c39a9d9c9b0121c58480b05cc_JaffaCakes118

  • Size

    393KB

  • Sample

    240920-hzqbssthqd

  • MD5

    ed14515c39a9d9c9b0121c58480b05cc

  • SHA1

    afc946abcb35ecb0dcd01c68f848f1648e4b61a8

  • SHA256

    951519e21bb43ea7c53d8e3c4c80a8a70ffca2bf8f1d4dcd9b5e992f1b7a74e9

  • SHA512

    e5bec5dedd4e91a1f6b99ee7b6b616dc4c5f86af40c7d8d357a8568a74edde5d610fa8e4075884079ae485c3cd771db23c7f26ac4b475e602ad2fef7191d77db

  • SSDEEP

    6144:IRGxg7dUShNmPhlen1GJw9B1uqY1dZHhptjYUxevM79lWzuDRsxyYZvy0TDjM76h:+8g7dUmmLen1G6Lkjr7plWzuDRsVq6fJ

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      ed14515c39a9d9c9b0121c58480b05cc_JaffaCakes118

    • Size

      393KB

    • MD5

      ed14515c39a9d9c9b0121c58480b05cc

    • SHA1

      afc946abcb35ecb0dcd01c68f848f1648e4b61a8

    • SHA256

      951519e21bb43ea7c53d8e3c4c80a8a70ffca2bf8f1d4dcd9b5e992f1b7a74e9

    • SHA512

      e5bec5dedd4e91a1f6b99ee7b6b616dc4c5f86af40c7d8d357a8568a74edde5d610fa8e4075884079ae485c3cd771db23c7f26ac4b475e602ad2fef7191d77db

    • SSDEEP

      6144:IRGxg7dUShNmPhlen1GJw9B1uqY1dZHhptjYUxevM79lWzuDRsxyYZvy0TDjM76h:+8g7dUmmLen1G6Lkjr7plWzuDRsVq6fJ

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks