Overview

overview

7

Static

static

3

05ef818b9d...18.exe

windows7-x64

7

05ef818b9d...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    05ef818b9d4fee198dae38a0bf199c44_JaffaCakes118

  • Size

    463KB

  • Sample

    241001-qdstssvdrb

  • MD5

    05ef818b9d4fee198dae38a0bf199c44

  • SHA1

    e1efbf9f34cf30edfc0dc1139a0fe24be4f539fd

  • SHA256

    6e6c218351c3ac98b8071169219e84ee1b97cb104e09679368d9c3723daf2687

  • SHA512

    c967eaed3ceee59eb31e999c95aafa20eb87a029a5c6423dba8f3a443a5c587917b80403bf59fe15c593d283eb67a014c5ffce4c8702ee3f693963f1308eb276

  • SSDEEP

    12288:ywax+LBZJT9Z99ljxPh0UsIF5DBIQ7GX74h:19ZF9DfwrI/DBIQ7GXI

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      05ef818b9d4fee198dae38a0bf199c44_JaffaCakes118

    • Size

      463KB

    • MD5

      05ef818b9d4fee198dae38a0bf199c44

    • SHA1

      e1efbf9f34cf30edfc0dc1139a0fe24be4f539fd

    • SHA256

      6e6c218351c3ac98b8071169219e84ee1b97cb104e09679368d9c3723daf2687

    • SHA512

      c967eaed3ceee59eb31e999c95aafa20eb87a029a5c6423dba8f3a443a5c587917b80403bf59fe15c593d283eb67a014c5ffce4c8702ee3f693963f1308eb276

    • SSDEEP

      12288:ywax+LBZJT9Z99ljxPh0UsIF5DBIQ7GX74h:19ZF9DfwrI/DBIQ7GXI

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks