Overview

overview

10

Static

static

3

ed7c805265...18.exe

windows7-x64

3

ed7c805265...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ed7c805265135029e4df3e3cddbb1d79_JaffaCakes118

  • Size

    427KB

  • Sample

    240920-nlwvbathnr

  • MD5

    ed7c805265135029e4df3e3cddbb1d79

  • SHA1

    9f648274647f24c8d623ead78ceb61f13132df34

  • SHA256

    8b33a7121f36012b6984d96b2cb60baa51ab56356f35cd1084769d2a3419b9f2

  • SHA512

    7eb20c7a2b56b8210f2ea05501c89d308d906f7633f4660a452e86a93ef47b2c5fbf481b7865de28e1f3fcc2eca0ebe1f33b4692f9705ff7162198acccfa50eb

  • SSDEEP

    12288:L3xShFkJPOp2/Bo5iVZGrOqEiXq6rPJD5gDtwSJ:L3xeknZyi+rORz2otXJ

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ed7c805265135029e4df3e3cddbb1d79_JaffaCakes118

    • Size

      427KB

    • MD5

      ed7c805265135029e4df3e3cddbb1d79

    • SHA1

      9f648274647f24c8d623ead78ceb61f13132df34

    • SHA256

      8b33a7121f36012b6984d96b2cb60baa51ab56356f35cd1084769d2a3419b9f2

    • SHA512

      7eb20c7a2b56b8210f2ea05501c89d308d906f7633f4660a452e86a93ef47b2c5fbf481b7865de28e1f3fcc2eca0ebe1f33b4692f9705ff7162198acccfa50eb

    • SSDEEP

      12288:L3xShFkJPOp2/Bo5iVZGrOqEiXq6rPJD5gDtwSJ:L3xeknZyi+rORz2otXJ

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks