Overview

overview

7

Static

static

3

17c05a1ff9...18.exe

windows7-x64

7

17c05a1ff9...18.exe

windows10-2004-x64

7

DesktopLightning.exe

windows7-x64

6

DesktopLightning.exe

windows10-2004-x64

6

Uninstall.exe

windows7-x64

7

Uninstall.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    17c05a1ff9ffd443b91282aa0cb34d64_JaffaCakes118

  • Size

    747KB

  • Sample

    241006-mpzvpstfne

  • MD5

    17c05a1ff9ffd443b91282aa0cb34d64

  • SHA1

    904c68a8ef6c4c585792cd6be4911feaaee81fc3

  • SHA256

    7184a03a164ab3de897966073f42d70122f48d66b4c06dec20dbc7b28cb2518a

  • SHA512

    fa95f10326350864cbc2f2c7393a2dfc7245b63a008d0eafae4205e04517e1445097d777cc66c1a6510bbcd39deae1b9436979a265d5b2868937fa03b40feef3

  • SSDEEP

    12288:E+J0p6T06/rm6agttTknjkxCdDLAvzVXJYCgqtPTLTp8A3d+2AlND:Eym6H/SSjMyvzVZxgqtTvpnqlt

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      17c05a1ff9ffd443b91282aa0cb34d64_JaffaCakes118

    • Size

      747KB

    • MD5

      17c05a1ff9ffd443b91282aa0cb34d64

    • SHA1

      904c68a8ef6c4c585792cd6be4911feaaee81fc3

    • SHA256

      7184a03a164ab3de897966073f42d70122f48d66b4c06dec20dbc7b28cb2518a

    • SHA512

      fa95f10326350864cbc2f2c7393a2dfc7245b63a008d0eafae4205e04517e1445097d777cc66c1a6510bbcd39deae1b9436979a265d5b2868937fa03b40feef3

    • SSDEEP

      12288:E+J0p6T06/rm6agttTknjkxCdDLAvzVXJYCgqtPTLTp8A3d+2AlND:Eym6H/SSjMyvzVZxgqtTvpnqlt

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

    • Target

      DesktopLightning.exe

    • Size

      675KB

    • MD5

      51c20c8e3502c24dd2a938593348b96b

    • SHA1

      852264200d60a4c8a26689f2aa2ee0269ec633c9

    • SHA256

      dbba9a506ee06330970b41648fc61144eb199d52ed3bbe84d0ee904e13abda89

    • SHA512

      c2fbc7c3de35d287e62f4bf5134dd6ffde1e31641c1a212246976276c4fab8f0e9f276da319a0b724f783901f076572b19739a989704e6b8a14823c2f97aea92

    • SSDEEP

      12288:kJ0p6T06/rm6agttTknjkxCdDLAvzVXJYCgqtPTLTp8A3d+2AlN:km6H/SSjMyvzVZxgqtTvpnql

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral3behavioral4

    • Target

      Uninstall.exe

    • Size

      51KB

    • MD5

      6620afb9b057dbc24ca2ef2e9ebe96c8

    • SHA1

      372364a790826533a96e9a25d3c141d6fa394665

    • SHA256

      24af6f3386adc008f92d0282cfbf25a5d72f60203f92fcaf611a35f3ef9d2b03

    • SHA512

      32aaaf782a3252bd1579cf82684305b6b0c7dc90e206b2ce8d99703dab814f2b802c8163aae7de14eef746b813ba3500d58b4a2e25833bc9c24d05b8f8bd40a6

    • SSDEEP

      1536:ApgpHzb9dZVX9fHMvG0D3XJbgdLeAyN/8G:WgXdZt9P6D3XJbceAfG

    Score
    7/10
    discovery

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks