Overview

overview

7

Static

static

3

f031778482...18.exe

windows7-x64

7

f031778482...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f03177848264ffa6527ed7f95caeb52c_JaffaCakes118

  • Size

    92KB

  • Sample

    240921-t1bqkssalf

  • MD5

    f03177848264ffa6527ed7f95caeb52c

  • SHA1

    757a9133eb627a834ad8c19c1620466c0430df1a

  • SHA256

    d253084a4c3ee06601393cfe2d373223983f5023d38d917bb8f2802c4bac43f6

  • SHA512

    76d5e70fe1d02845929f92e8b9f1815ad7f7087f48d9d4a9c6ac40585ebd8afeeba0d8d4200fec5442813d2c6cc8ad6f4ac2c6f1fa29d6bc91f4c247df34160b

  • SSDEEP

    1536:d8w+WaJ8TAsLAKOwKE4c0eHnq/QhrSoeIzq872KS+rSTURVL7MC2HU:o7EMeHnq/QhWoeoZ6KSHELX2

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      f03177848264ffa6527ed7f95caeb52c_JaffaCakes118

    • Size

      92KB

    • MD5

      f03177848264ffa6527ed7f95caeb52c

    • SHA1

      757a9133eb627a834ad8c19c1620466c0430df1a

    • SHA256

      d253084a4c3ee06601393cfe2d373223983f5023d38d917bb8f2802c4bac43f6

    • SHA512

      76d5e70fe1d02845929f92e8b9f1815ad7f7087f48d9d4a9c6ac40585ebd8afeeba0d8d4200fec5442813d2c6cc8ad6f4ac2c6f1fa29d6bc91f4c247df34160b

    • SSDEEP

      1536:d8w+WaJ8TAsLAKOwKE4c0eHnq/QhrSoeIzq872KS+rSTURVL7MC2HU:o7EMeHnq/QhWoeoZ6KSHELX2

    Score
    7/10
    discoverypersistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks