Overview

overview

10

Static

static

7

ee2ceaa75f...18.exe

windows7-x64

10

ee2ceaa75f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee2ceaa75f416c51eb77043522417354_JaffaCakes118

  • Size

    445KB

  • Sample

    240920-w1brpazhnc

  • MD5

    ee2ceaa75f416c51eb77043522417354

  • SHA1

    2ff0e4d317e784c051b7ef6f666ceddf4f103e58

  • SHA256

    d5696a3f5e0534744dfe6467bdd2cd5795ae5c36d641cbb5f6eddb0d09babafb

  • SHA512

    4f53a7f1f68b5736e709548493b8b37b04a18133cdb0df17fc9f34345d5f145e17c4ad1d0259a110cfabea37bf57be801ca58a292a1d9241c0537f37832e2394

  • SSDEEP

    12288:K5rspgs05GROGd3I3ugACvOwRCwWtDB7dUMJwdSSC:ys0kR5Y3NzviDB5UUw

Score
10/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      ee2ceaa75f416c51eb77043522417354_JaffaCakes118

    • Size

      445KB

    • MD5

      ee2ceaa75f416c51eb77043522417354

    • SHA1

      2ff0e4d317e784c051b7ef6f666ceddf4f103e58

    • SHA256

      d5696a3f5e0534744dfe6467bdd2cd5795ae5c36d641cbb5f6eddb0d09babafb

    • SHA512

      4f53a7f1f68b5736e709548493b8b37b04a18133cdb0df17fc9f34345d5f145e17c4ad1d0259a110cfabea37bf57be801ca58a292a1d9241c0537f37832e2394

    • SSDEEP

      12288:K5rspgs05GROGd3I3ugACvOwRCwWtDB7dUMJwdSSC:ys0kR5Y3NzviDB5UUw

    Score
    10/10
    discoverypersistenceupx

    • Modifies WinLogon for persistence

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks