Overview

overview

10

Static

static

3

0ab51a4e0f...18.exe

windows7-x64

10

0ab51a4e0f...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0ab51a4e0f0330172ca29570ff5ed748_JaffaCakes118

  • Size

    13KB

  • Sample

    241002-pvvjaawepr

  • MD5

    0ab51a4e0f0330172ca29570ff5ed748

  • SHA1

    3c700cd41f9fcccef2a4cc7bc6dd72be4a94fe65

  • SHA256

    ef3a44b4c32e3f22403af92d9d234ba2b8215f82abf4f803e9b5ccda88c1bc83

  • SHA512

    209076879b4a839eeeef2ea1d6bfc05e738bee91c9125b28e19221133ac50bcacd2f6aa19c9ea2112cbd0b387003a34bd658b8e932d67fc660a0f217265b2984

  • SSDEEP

    384:ZI6cmgy16Ks8+T5LisENTzECprQ9Tl0x2S1buK:66cFy1BZcOtVzE6rQ92x2kaK

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      0ab51a4e0f0330172ca29570ff5ed748_JaffaCakes118

    • Size

      13KB

    • MD5

      0ab51a4e0f0330172ca29570ff5ed748

    • SHA1

      3c700cd41f9fcccef2a4cc7bc6dd72be4a94fe65

    • SHA256

      ef3a44b4c32e3f22403af92d9d234ba2b8215f82abf4f803e9b5ccda88c1bc83

    • SHA512

      209076879b4a839eeeef2ea1d6bfc05e738bee91c9125b28e19221133ac50bcacd2f6aa19c9ea2112cbd0b387003a34bd658b8e932d67fc660a0f217265b2984

    • SSDEEP

      384:ZI6cmgy16Ks8+T5LisENTzECprQ9Tl0x2S1buK:66cFy1BZcOtVzE6rQ92x2kaK

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks