Overview

overview

7

Static

static

3

f6edf414b1...18.exe

windows7-x64

7

f6edf414b1...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    f6edf414b1489eb03fb046c4195e5862_JaffaCakes118

  • Size

    15KB

  • Sample

    240925-1r91cazcnr

  • MD5

    f6edf414b1489eb03fb046c4195e5862

  • SHA1

    024c4d327d339fed5099acce29d98c634a02c2b4

  • SHA256

    4879205c36cf74a414e824c7ce70bcf0546a488ab3dcbc9c8f05898f2e9e424d

  • SHA512

    ad900a945d522884c94042d92954379d8570b42e9c1df114f26d54e1a7173149fd3a08f0d3da60df0bc8fc517ebf4e7da774324403084020af6714e9814b83e8

  • SSDEEP

    384:97mfy1lAIUa6MDwQBl2BmDW4YJ92rOvlHbZ9DKkn6EAt:9CfyTMdMDwsVDWgrO9XDpnAt

Score
7/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      f6edf414b1489eb03fb046c4195e5862_JaffaCakes118

    • Size

      15KB

    • MD5

      f6edf414b1489eb03fb046c4195e5862

    • SHA1

      024c4d327d339fed5099acce29d98c634a02c2b4

    • SHA256

      4879205c36cf74a414e824c7ce70bcf0546a488ab3dcbc9c8f05898f2e9e424d

    • SHA512

      ad900a945d522884c94042d92954379d8570b42e9c1df114f26d54e1a7173149fd3a08f0d3da60df0bc8fc517ebf4e7da774324403084020af6714e9814b83e8

    • SSDEEP

      384:97mfy1lAIUa6MDwQBl2BmDW4YJ92rOvlHbZ9DKkn6EAt:9CfyTMdMDwsVDWgrO9XDpnAt

    Score
    7/10
    defense_evasiondiscoverypersistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks