Overview

overview

10

Static

static

3

fe99ed0c5f...18.exe

windows7-x64

10

fe99ed0c5f...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    fe99ed0c5ffe46f197e558185b171131_JaffaCakes118

  • Size

    304KB

  • Sample

    240929-qfmqkawapk

  • MD5

    fe99ed0c5ffe46f197e558185b171131

  • SHA1

    65e5036f68787f2e60f66ac6a7e33c32f1488df0

  • SHA256

    7b7d6f4d2fb2db2a975be4f417da32cc6fac193f43c13227c87578b6a7993a94

  • SHA512

    991b4f7f842096e72a71d0ba5e0c0e353087194ad501bf792999c721e8160be1909a18ddc3de15a273e1d34c917a7851c5485429f005cb87bf460f1fc1be76e5

  • SSDEEP

    1536:Yf1zwQVgFpOAuJEklS+bE5hkk+kF56wpcf1zwQVgvxd2+:Y1zwLF8AuJEGbEUk+k5p81zwLvx

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      fe99ed0c5ffe46f197e558185b171131_JaffaCakes118

    • Size

      304KB

    • MD5

      fe99ed0c5ffe46f197e558185b171131

    • SHA1

      65e5036f68787f2e60f66ac6a7e33c32f1488df0

    • SHA256

      7b7d6f4d2fb2db2a975be4f417da32cc6fac193f43c13227c87578b6a7993a94

    • SHA512

      991b4f7f842096e72a71d0ba5e0c0e353087194ad501bf792999c721e8160be1909a18ddc3de15a273e1d34c917a7851c5485429f005cb87bf460f1fc1be76e5

    • SSDEEP

      1536:Yf1zwQVgFpOAuJEklS+bE5hkk+kF56wpcf1zwQVgvxd2+:Y1zwLF8AuJEGbEUk+k5p81zwLvx

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks