Overview

overview

10

Static

static

3

ee6f492824...18.exe

windows7-x64

10

ee6f492824...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee6f4928240b641a494aeec6c76a6c85_JaffaCakes118

  • Size

    408KB

  • Sample

    240920-z3lw8aybld

  • MD5

    ee6f4928240b641a494aeec6c76a6c85

  • SHA1

    c48a788e6cd3e54b2a72c250819c8d2a5becd09d

  • SHA256

    2b214634728b485cb60d3ec83c011bdb109b1123e4fb52aa8f634b08e2fd63cf

  • SHA512

    01efa330c5b2de8ba5db1835a92bf59029454eafbee6b6eedf09a391c01ff3ae344b31f12bbcaa8022807eee874cae0270059ad65e93b31064f7c61f9c866208

  • SSDEEP

    6144:fK7PL8TH+V8Ez9YJqAjsfITy3fSO0VtEIGhYYaCqhmHoEht6w4y+4ME5yb:SH8iVfB82BvsVtxXmHoEOA+VE5u

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      ee6f4928240b641a494aeec6c76a6c85_JaffaCakes118

    • Size

      408KB

    • MD5

      ee6f4928240b641a494aeec6c76a6c85

    • SHA1

      c48a788e6cd3e54b2a72c250819c8d2a5becd09d

    • SHA256

      2b214634728b485cb60d3ec83c011bdb109b1123e4fb52aa8f634b08e2fd63cf

    • SHA512

      01efa330c5b2de8ba5db1835a92bf59029454eafbee6b6eedf09a391c01ff3ae344b31f12bbcaa8022807eee874cae0270059ad65e93b31064f7c61f9c866208

    • SSDEEP

      6144:fK7PL8TH+V8Ez9YJqAjsfITy3fSO0VtEIGhYYaCqhmHoEht6w4y+4ME5yb:SH8iVfB82BvsVtxXmHoEOA+VE5u

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks