Overview

overview

7

Static

static

3

251fc88ffb...18.exe

windows7-x64

7

251fc88ffb...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    251fc88ffb763925fc860ffde94cf9b0_JaffaCakes118

  • Size

    356KB

  • Sample

    241008-ze1qgaxhrc

  • MD5

    251fc88ffb763925fc860ffde94cf9b0

  • SHA1

    b1c31c6d2069c2fbb8830d331bf278a3348e1c94

  • SHA256

    25f714d1afcc851fe3761d40d639375eefc64bf03e7423d3d75de76fbd52c159

  • SHA512

    fb73edfb48a194b3144fbae984cc4dbaca340062ee4dc951e038f10b857a90bdec9bbdcd02c321bf53045519f486c74ecdedec7f65fc15862033475b439a94ec

  • SSDEEP

    6144:7vbx8O8A+buvc1zO7ySeIObnOY0o0MDJMR5VoIP2T4LWE9maZY:7/LoMeXAMCR5VoI2w9maZ

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      251fc88ffb763925fc860ffde94cf9b0_JaffaCakes118

    • Size

      356KB

    • MD5

      251fc88ffb763925fc860ffde94cf9b0

    • SHA1

      b1c31c6d2069c2fbb8830d331bf278a3348e1c94

    • SHA256

      25f714d1afcc851fe3761d40d639375eefc64bf03e7423d3d75de76fbd52c159

    • SHA512

      fb73edfb48a194b3144fbae984cc4dbaca340062ee4dc951e038f10b857a90bdec9bbdcd02c321bf53045519f486c74ecdedec7f65fc15862033475b439a94ec

    • SSDEEP

      6144:7vbx8O8A+buvc1zO7ySeIObnOY0o0MDJMR5VoIP2T4LWE9maZY:7/LoMeXAMCR5VoI2w9maZ

    Score
    7/10
    discoverypersistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks