aed814df6f5361cd9bc05ba6e14b97f06981247133e7b48bce0d00a50ae8cf7f | Triage

Submit
Reports

Overview

overview

Static

static

3

0bc79b497e...18.exe

windows7-x64

0bc79b497e...18.exe

windows10-2004-x64

Sharing

General

Target

0bc79b497e88c890e753c22bf281a689_JaffaCakes118
Size

72KB
Sample

241002-v26ssaybpk
MD5

0bc79b497e88c890e753c22bf281a689
SHA1

a19664df0cbba8fb682f2370b9fd5999679d1a29
SHA256

aed814df6f5361cd9bc05ba6e14b97f06981247133e7b48bce0d00a50ae8cf7f
SHA512

278dcf8093b1726432af356d80dbb57d34e1c55285b60590ea93a607af40a686004c0cc29cda3ef7f37595c925fd715cf17eebf1d06bbfd208a3d2c9034aaf48
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf24:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPs

Score

10^/10

discovery evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0bc79b497e88c890e753c22bf281a689_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

0bc79b497e88c890e753c22bf281a689_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  0bc79b497e88c890e753c22bf281a689_JaffaCakes118
- Size
  
  72KB
- MD5
  
  0bc79b497e88c890e753c22bf281a689
- SHA1
  
  a19664df0cbba8fb682f2370b9fd5999679d1a29
- SHA256
  
  aed814df6f5361cd9bc05ba6e14b97f06981247133e7b48bce0d00a50ae8cf7f
- SHA512
  
  278dcf8093b1726432af356d80dbb57d34e1c55285b60590ea93a607af40a686004c0cc29cda3ef7f37595c925fd715cf17eebf1d06bbfd208a3d2c9034aaf48
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf24:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPs
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Time Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy