Overview

overview

10

Static

static

5

fc2aee3465...18.exe

windows7-x64

10

fc2aee3465...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fc2aee34658e2cc0a75ff831df3ee9bb_JaffaCakes118

  • Size

    40KB

  • Sample

    240928-m6v8vasdlm

  • MD5

    fc2aee34658e2cc0a75ff831df3ee9bb

  • SHA1

    657c70f1ab5617ab39c817df57a6c5884a43bd1b

  • SHA256

    8d6df66fb65294f273c43e14860dbd57d6fd000bae14b945a3814971663964df

  • SHA512

    70e03cf73bc954b821665064183ec8a0db0c03150dd4ee25e130a36ff86dd3325f6e23fbd596717b93c271581c3df675f93e7297291574c7f692733b38136e7e

  • SSDEEP

    768:5t3XDC10vikfCYO+IdN3UQZFbDSXyTGdpJJ:5tXDE0v67+IdN3UQZJsmGdpD

Score
10/10
discoveryevasionexecutionpersistenceupx

Malware Config

Targets

    • Target

      fc2aee34658e2cc0a75ff831df3ee9bb_JaffaCakes118

    • Size

      40KB

    • MD5

      fc2aee34658e2cc0a75ff831df3ee9bb

    • SHA1

      657c70f1ab5617ab39c817df57a6c5884a43bd1b

    • SHA256

      8d6df66fb65294f273c43e14860dbd57d6fd000bae14b945a3814971663964df

    • SHA512

      70e03cf73bc954b821665064183ec8a0db0c03150dd4ee25e130a36ff86dd3325f6e23fbd596717b93c271581c3df675f93e7297291574c7f692733b38136e7e

    • SSDEEP

      768:5t3XDC10vikfCYO+IdN3UQZFbDSXyTGdpJJ:5tXDE0v67+IdN3UQZJsmGdpD

    Score
    10/10
    discoveryevasionexecutionpersistenceupx

    • Disables service(s)

      evasionexecution

    • Adds policy Run key to start application

      persistence

    • Drops file in Drivers directory

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks