Overview

overview

10

Static

static

10

f7dff6785e...18.exe

windows7-x64

10

f7dff6785e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f7dff6785ef31102f8ed744a1dc7f448_JaffaCakes118

  • Size

    16KB

  • Sample

    240926-jdcn9axgkc

  • MD5

    f7dff6785ef31102f8ed744a1dc7f448

  • SHA1

    66617c7218b59395f8513acc380533248c1fac2c

  • SHA256

    8164494754be6588f6082b82efb026f366f959373df4f6630ded4ab3f6ff3e6c

  • SHA512

    bdb98057782277baf6b0020e3560a676852a66b4f7f99d8fcae14bbe4fb838ba4fd6ca4be2b254ea819e87b1d3370b7352ba633ac6d8a7dc97d4734dc3c14674

  • SSDEEP

    384:fKxvDuPNItH19GTXjdhLruujYcV6AUwJFZb:f44atV9Ah3fYcV6Dw9b

Score
10/10
loaderbotdiscoveryloaderminerpersistence

Malware Config

Targets

    • Target

      f7dff6785ef31102f8ed744a1dc7f448_JaffaCakes118

    • Size

      16KB

    • MD5

      f7dff6785ef31102f8ed744a1dc7f448

    • SHA1

      66617c7218b59395f8513acc380533248c1fac2c

    • SHA256

      8164494754be6588f6082b82efb026f366f959373df4f6630ded4ab3f6ff3e6c

    • SHA512

      bdb98057782277baf6b0020e3560a676852a66b4f7f99d8fcae14bbe4fb838ba4fd6ca4be2b254ea819e87b1d3370b7352ba633ac6d8a7dc97d4734dc3c14674

    • SSDEEP

      384:fKxvDuPNItH19GTXjdhLruujYcV6AUwJFZb:f44atV9Ah3fYcV6Dw9b

    Score
    10/10
    loaderbotdiscoveryloaderminerpersistence

    • LoaderBot

      LoaderBot is a loader written in .NET downloading and executing miners.

      loaderminerloaderbot

    • LoaderBot executable

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks