Overview

overview

8

Static

static

3

0842967279...18.exe

windows7-x64

8

0842967279...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0842967279ef33c22dfac76b5ee08606_JaffaCakes118

  • Size

    160KB

  • Sample

    241002-bw3pdszhjp

  • MD5

    0842967279ef33c22dfac76b5ee08606

  • SHA1

    29ac0ef7a157b2fb6c1942e701fc647e57836f67

  • SHA256

    1cbbd840982ed01175e9aa048fcefc3de6a835e8fcc93876a61bdbd3deb6a0ef

  • SHA512

    b6d675a0118f3dfd2cf75b9e2fdda1be12ee1e1afa598aa9f5c52cd79e7ad390dd576a96983742893a17ff723c4cf1b35dffce11ce3e3f4bcc97a6d4e8e5f797

  • SSDEEP

    1536:MBY5xKzh6ENYEGMkH/UUy6mGQdEZ9Pfm2kmk4txZhwOkS2KoF1goVlccI7O+u:OYKz16EGMUXAETfqmXXQ/goEcIy

Score
8/10
defense_evasiondiscoveryevasionpersistence

Malware Config

Targets

    • Target

      0842967279ef33c22dfac76b5ee08606_JaffaCakes118

    • Size

      160KB

    • MD5

      0842967279ef33c22dfac76b5ee08606

    • SHA1

      29ac0ef7a157b2fb6c1942e701fc647e57836f67

    • SHA256

      1cbbd840982ed01175e9aa048fcefc3de6a835e8fcc93876a61bdbd3deb6a0ef

    • SHA512

      b6d675a0118f3dfd2cf75b9e2fdda1be12ee1e1afa598aa9f5c52cd79e7ad390dd576a96983742893a17ff723c4cf1b35dffce11ce3e3f4bcc97a6d4e8e5f797

    • SSDEEP

      1536:MBY5xKzh6ENYEGMkH/UUy6mGQdEZ9Pfm2kmk4txZhwOkS2KoF1goVlccI7O+u:OYKz16EGMUXAETfqmXXQ/goEcIy

    Score
    8/10
    defense_evasiondiscoveryevasionpersistence

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks