7b47ecc1c1d662c5a4f9688207753352a3a3f7e0808eed76d77573716eb04c9e | Triage

Submit
Reports

Overview

overview

7

Static

static

5

3ac2f362b1...18.exe

windows7-x64

7

3ac2f362b1...18.exe

windows10-2004-x64

5

Sharing

General

Target

3ac2f362b191861052349ec275aa09c2_JaffaCakes118
Size

292KB
Sample

241012-sv4czaxdqb
MD5

3ac2f362b191861052349ec275aa09c2
SHA1

132e0f63441840d6dfae0302089801ae23fd4b7e
SHA256

7b47ecc1c1d662c5a4f9688207753352a3a3f7e0808eed76d77573716eb04c9e
SHA512

367ff9b0d58af40c9fcd6b6144d0b7634caf5426f2ee8066533870a4d9da7d34a1d868131ebaa592a853fe5dd1140fcbe28af0eb2fb81815e0f34e929a8e8f85
SSDEEP

6144:mAK0zQ+ak91oTfKOZzB6dzPu2buxS7Pcy1lhND6JBKIQFVFsB9lDw6wm:zDc+pgK46dDjrPL1d6qFkBjw6wm

Score

7^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3ac2f362b191861052349ec275aa09c2_JaffaCakes118.exe

Resource

win7-20241010-en

discovery persistence upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

3ac2f362b191861052349ec275aa09c2_JaffaCakes118.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  3ac2f362b191861052349ec275aa09c2_JaffaCakes118
- Size
  
  292KB
- MD5
  
  3ac2f362b191861052349ec275aa09c2
- SHA1
  
  132e0f63441840d6dfae0302089801ae23fd4b7e
- SHA256
  
  7b47ecc1c1d662c5a4f9688207753352a3a3f7e0808eed76d77573716eb04c9e
- SHA512
  
  367ff9b0d58af40c9fcd6b6144d0b7634caf5426f2ee8066533870a4d9da7d34a1d868131ebaa592a853fe5dd1140fcbe28af0eb2fb81815e0f34e929a8e8f85
- SSDEEP
  
  6144:mAK0zQ+ak91oTfKOZzB6dzPu2buxS7Pcy1lhND6JBKIQFVFsB9lDw6wm:zDc+pgK46dDjrPL1d6qFkBjw6wm
Score

7^/10

discovery persistence upx
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

© 2018-2025

Terms | Privacy