General

  • Target

    ee0adcbb4c9e73acff811a53a736a175_JaffaCakes118

  • Size

    262KB

  • Sample

    240920-vj9rqaxflr

  • MD5

    ee0adcbb4c9e73acff811a53a736a175

  • SHA1

    9d28c12722a4fcb3309911ee08ad0c30a8fbcbfd

  • SHA256

    a65d733a1b72befa4b7e458b5088c4429955300c4576adb964bf65e2b30b8ea5

  • SHA512

    bbafd6c51867ba8f484379d80c9d7a16af76d373698d079725af7f86c23a09a5e821789cdac8b6f9e950a2e4870b51cb8d0c4bc4fb6e13c9c2df9fd620c10bbe

  • SSDEEP

    6144:SX8Gp+df0afmVTRMd0dpn94sLrNXel9rb98+MAnN:g8YkfXf4TRM094svNuzrb9ZP

Malware Config

Targets

    • Target

      ee0adcbb4c9e73acff811a53a736a175_JaffaCakes118

    • Size

      262KB

    • MD5

      ee0adcbb4c9e73acff811a53a736a175

    • SHA1

      9d28c12722a4fcb3309911ee08ad0c30a8fbcbfd

    • SHA256

      a65d733a1b72befa4b7e458b5088c4429955300c4576adb964bf65e2b30b8ea5

    • SHA512

      bbafd6c51867ba8f484379d80c9d7a16af76d373698d079725af7f86c23a09a5e821789cdac8b6f9e950a2e4870b51cb8d0c4bc4fb6e13c9c2df9fd620c10bbe

    • SSDEEP

      6144:SX8Gp+df0afmVTRMd0dpn94sLrNXel9rb98+MAnN:g8YkfXf4TRM094svNuzrb9ZP

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks