Overview

overview

6

Static

static

3

132feadce0...18.exe

windows7-x64

6

132feadce0...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    132feadce0b31aa930c607478e3922a1_JaffaCakes118

  • Size

    8KB

  • Sample

    241004-npme2s1gnn

  • MD5

    132feadce0b31aa930c607478e3922a1

  • SHA1

    b0b11f5f71b4ddc1f9aab33f07edc0a10bfd0cc9

  • SHA256

    c5e9b4336c6e023c45a5e17dc0d3f92c74dc0ff06ded18be44efe80b20a71616

  • SHA512

    aa79a9ddcd2219cbef366a0bea9e10b71ab8c331050f1d1d75baf39da738647c7a2229ab5c6c6cf922a4680dd98955352e1b4cbc49e5977ca7bbba6c1533e429

  • SSDEEP

    192:q4PwzaLI3H6k3niwBufEn+7DetH+Z+vsYJRI9szkrap:jQ6w3ninMn+7IH+ZWfQY

Score
6/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      132feadce0b31aa930c607478e3922a1_JaffaCakes118

    • Size

      8KB

    • MD5

      132feadce0b31aa930c607478e3922a1

    • SHA1

      b0b11f5f71b4ddc1f9aab33f07edc0a10bfd0cc9

    • SHA256

      c5e9b4336c6e023c45a5e17dc0d3f92c74dc0ff06ded18be44efe80b20a71616

    • SHA512

      aa79a9ddcd2219cbef366a0bea9e10b71ab8c331050f1d1d75baf39da738647c7a2229ab5c6c6cf922a4680dd98955352e1b4cbc49e5977ca7bbba6c1533e429

    • SSDEEP

      192:q4PwzaLI3H6k3niwBufEn+7DetH+Z+vsYJRI9szkrap:jQ6w3ninMn+7IH+ZWfQY

    Score
    6/10
    defense_evasiondiscoverypersistence

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks