Overview

overview

10

Static

static

3

04171a66c2...18.dll

windows7-x64

10

04171a66c2...18.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    04171a66c2118b99264cfb1694a83922_JaffaCakes118

  • Size

    231KB

  • Sample

    241001-c8swdswhpp

  • MD5

    04171a66c2118b99264cfb1694a83922

  • SHA1

    3b862bff6c96a84f1dd02145a55cf4a390e1112e

  • SHA256

    bd6c17bdf6d9418fc5728a7497e68370440c09621b09917b1d78c65deddc6c5e

  • SHA512

    5899e30ddcfb4c03958f4d27522a9c2cb95b1ee8b4e5c8ad34aafdd91788d7382cd18bad4979d9507b4ef2578d2970ce5e60e27e63262dd70d251905680a6a5d

  • SSDEEP

    3072:zysX0WxnWd/IkmL+PViEbmzwtz/wk8YWbO:mskd/IkmuVfyWdMO

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      04171a66c2118b99264cfb1694a83922_JaffaCakes118

    • Size

      231KB

    • MD5

      04171a66c2118b99264cfb1694a83922

    • SHA1

      3b862bff6c96a84f1dd02145a55cf4a390e1112e

    • SHA256

      bd6c17bdf6d9418fc5728a7497e68370440c09621b09917b1d78c65deddc6c5e

    • SHA512

      5899e30ddcfb4c03958f4d27522a9c2cb95b1ee8b4e5c8ad34aafdd91788d7382cd18bad4979d9507b4ef2578d2970ce5e60e27e63262dd70d251905680a6a5d

    • SSDEEP

      3072:zysX0WxnWd/IkmL+PViEbmzwtz/wk8YWbO:mskd/IkmuVfyWdMO

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks