Overview

overview

8

Static

static

3

0ecf3e61d4...18.exe

windows7-x64

8

0ecf3e61d4...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    0ecf3e61d45a07d5e95d83256a049526_JaffaCakes118

  • Size

    40KB

  • Sample

    241003-kjhm5athrr

  • MD5

    0ecf3e61d45a07d5e95d83256a049526

  • SHA1

    6dd520554bb53f82f276f8ced8d8bd67a069c469

  • SHA256

    d2cd1078a9806f3464c6273cd01455f45006aa373b33ca9a890efbecb19b7f70

  • SHA512

    d0113a4ae6556de52d9dcb734b02fb9e58664fd9896f3b80bcc973d00c425aae9fb3d605b0502d024243022d060f70e8b69d48da49875560cc4559f9369c53a6

  • SSDEEP

    768:zJM3znGecFlgZyiaCSedw1fpSmBEqxr6J4wtt:zJM3znJcFlgASdK/ZBStt

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      0ecf3e61d45a07d5e95d83256a049526_JaffaCakes118

    • Size

      40KB

    • MD5

      0ecf3e61d45a07d5e95d83256a049526

    • SHA1

      6dd520554bb53f82f276f8ced8d8bd67a069c469

    • SHA256

      d2cd1078a9806f3464c6273cd01455f45006aa373b33ca9a890efbecb19b7f70

    • SHA512

      d0113a4ae6556de52d9dcb734b02fb9e58664fd9896f3b80bcc973d00c425aae9fb3d605b0502d024243022d060f70e8b69d48da49875560cc4559f9369c53a6

    • SSDEEP

      768:zJM3znGecFlgZyiaCSedw1fpSmBEqxr6J4wtt:zJM3znJcFlgASdK/ZBStt

    Score
    8/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Deletes itself

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks