General
-
Target
09bfc22b80cc5322a5f029c1b6330a5a_JaffaCakes118
-
Size
219KB
-
Sample
241002-kaj5lazepf
-
MD5
09bfc22b80cc5322a5f029c1b6330a5a
-
SHA1
06e541c7cb4fb3f34ee483ebef0aaa891bf2cf5c
-
SHA256
b979871933d75859b8d0ab05e27b083930fb3b005bd51244419d7151f6d25f7e
-
SHA512
790cda033ec02003e74e991dac16fc8571a3363840d4fd1d4be430663c68cf2d7b4476e378b42fb334f35f51e8fcceac6626fc8f4190b80887f01b0546625093
-
SSDEEP
6144:xsehzRFIRZgjX+WzdpUT5sdusBG0UwGayjkwB:xrSmjX+Qdpc5nn0UayR
Malware Config
Targets
-
-
Target
09bfc22b80cc5322a5f029c1b6330a5a_JaffaCakes118
-
Size
219KB
-
MD5
09bfc22b80cc5322a5f029c1b6330a5a
-
SHA1
06e541c7cb4fb3f34ee483ebef0aaa891bf2cf5c
-
SHA256
b979871933d75859b8d0ab05e27b083930fb3b005bd51244419d7151f6d25f7e
-
SHA512
790cda033ec02003e74e991dac16fc8571a3363840d4fd1d4be430663c68cf2d7b4476e378b42fb334f35f51e8fcceac6626fc8f4190b80887f01b0546625093
-
SSDEEP
6144:xsehzRFIRZgjX+WzdpUT5sdusBG0UwGayjkwB:xrSmjX+Qdpc5nn0UayR
Score8/10-
Stops running service(s)
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1