General

  • Target

    ef45290762f90bfbe6f80c55489881db_JaffaCakes118

  • Size

    210KB

  • Sample

    240921-hnvgdazdrq

  • MD5

    ef45290762f90bfbe6f80c55489881db

  • SHA1

    b783702176425a103409fe67acc4d75d57bf7dc5

  • SHA256

    0d09307a388534d6930158a4be64ec1b974151484dd33a675d87659356288d68

  • SHA512

    c5acade721ca9918d3329f0f94bb784592ef520639b47a6f03be36c8280fbf46a7be328ae4e8f6694179aad84da507e4b1fc86d7460e4672ee648952652078a0

  • SSDEEP

    6144:yfGiQ6Hnv7Elgr6zYn2/77iI3xyhdOcqV+4:ylHAgd2KIzK4

Malware Config

Targets

    • Target

      ef45290762f90bfbe6f80c55489881db_JaffaCakes118

    • Size

      210KB

    • MD5

      ef45290762f90bfbe6f80c55489881db

    • SHA1

      b783702176425a103409fe67acc4d75d57bf7dc5

    • SHA256

      0d09307a388534d6930158a4be64ec1b974151484dd33a675d87659356288d68

    • SHA512

      c5acade721ca9918d3329f0f94bb784592ef520639b47a6f03be36c8280fbf46a7be328ae4e8f6694179aad84da507e4b1fc86d7460e4672ee648952652078a0

    • SSDEEP

      6144:yfGiQ6Hnv7Elgr6zYn2/77iI3xyhdOcqV+4:ylHAgd2KIzK4

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks