f179b5cb3874f4dab5342ccab403eb368ec9329b95c5b459539bc834a4840512 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

0c0c6a7895...18.dll

windows7-x64

8

0c0c6a7895...18.dll

windows10-2004-x64

5

Sharing

General

Target

0c0c6a7895cb5c434a0f01d39f0fe580_JaffaCakes118
Size

203KB
Sample

241002-xjrbgsvdrb
MD5

0c0c6a7895cb5c434a0f01d39f0fe580
SHA1

d24ef9db6a375211c0e6c05560274f26759dbbf5
SHA256

f179b5cb3874f4dab5342ccab403eb368ec9329b95c5b459539bc834a4840512
SHA512

530d800a95b4ec78dd64fd9cce05101e324f43c1f267ca48626ff764a959ff05eb1d85506e1ec73ad343bda9591fabc8eeccb833dd93fa373e65399985735acf
SSDEEP

3072:wcoKREiwi5zEOdFsgQsOS7DR4ov10ELJt41kcN/5VmSvigRZ8wnZVBtJUmzCWHo8:wcPRHzrSsL7TvHt4Wcxs4JtGcCOoS

Score

8^/10

discovery evasion upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0c0c6a7895cb5c434a0f01d39f0fe580_JaffaCakes118.dll

Resource

win7-20240729-en

discovery evasion upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

0c0c6a7895cb5c434a0f01d39f0fe580_JaffaCakes118.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  0c0c6a7895cb5c434a0f01d39f0fe580_JaffaCakes118
- Size
  
  203KB
- MD5
  
  0c0c6a7895cb5c434a0f01d39f0fe580
- SHA1
  
  d24ef9db6a375211c0e6c05560274f26759dbbf5
- SHA256
  
  f179b5cb3874f4dab5342ccab403eb368ec9329b95c5b459539bc834a4840512
- SHA512
  
  530d800a95b4ec78dd64fd9cce05101e324f43c1f267ca48626ff764a959ff05eb1d85506e1ec73ad343bda9591fabc8eeccb833dd93fa373e65399985735acf
- SSDEEP
  
  3072:wcoKREiwi5zEOdFsgQsOS7DR4ov10ELJt41kcN/5VmSvigRZ8wnZVBtJUmzCWHo8:wcPRHzrSsL7TvHt4Wcxs4JtGcCOoS
Score

8^/10

discovery evasion upx
- Disables Task Manager via registry modification
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

© 2018-2024

Terms | Privacy