Overview

overview

10

Static

static

3

f595692037...18.exe

windows7-x64

10

f595692037...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    f59569203726c29439b5bd198fee507d_JaffaCakes118

  • Size

    424KB

  • Sample

    240925-j78zjsxgkc

  • MD5

    f59569203726c29439b5bd198fee507d

  • SHA1

    854c96d77a5c9ba028a51ec72ce53b0fc8a34635

  • SHA256

    f0e61f5f14d355ddcb31dede95e52d1c2e4b14554915717b54ba547fd407eec9

  • SHA512

    9ff94b961a3f7b012d421c1ac9321c90ae82de30c4dd01a5a967f201ce35d5f3e3cd31d08459ce595b8a0331e55933642a492dc6c8019eff596669751117e4b3

  • SSDEEP

    6144:HrEUeBv4b+8CScU6FrPxWs7hAh3LmUiafA8NFU6W4c5NzQ7usAtyK:Hrx7ObnGh3QafXfaTSyhD

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      f59569203726c29439b5bd198fee507d_JaffaCakes118

    • Size

      424KB

    • MD5

      f59569203726c29439b5bd198fee507d

    • SHA1

      854c96d77a5c9ba028a51ec72ce53b0fc8a34635

    • SHA256

      f0e61f5f14d355ddcb31dede95e52d1c2e4b14554915717b54ba547fd407eec9

    • SHA512

      9ff94b961a3f7b012d421c1ac9321c90ae82de30c4dd01a5a967f201ce35d5f3e3cd31d08459ce595b8a0331e55933642a492dc6c8019eff596669751117e4b3

    • SSDEEP

      6144:HrEUeBv4b+8CScU6FrPxWs7hAh3LmUiafA8NFU6W4c5NzQ7usAtyK:Hrx7ObnGh3QafXfaTSyhD

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks