Overview

overview

10

Static

static

3

3d0a495b35...18.exe

windows7-x64

10

3d0a495b35...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3d0a495b352a73e2361df387140fd8d7_JaffaCakes118

  • Size

    13KB

  • Sample

    241013-bq3gfawdrl

  • MD5

    3d0a495b352a73e2361df387140fd8d7

  • SHA1

    a016ec3fab6bb7f451dc42e8cb573ef6e14b3b9c

  • SHA256

    d7da39e460637330662f181c3481800658582d4728114023d803fca8d65538dc

  • SHA512

    44e5e75667dcdf7a35140c9939b3c8655b9be999b3006967cafc1ea09719ad32846b90bf59c1a973d82c322248fcb7a431f7f5ea223a01628cd0823181930ab7

  • SSDEEP

    384:JSETnMZEj5MZINTMKg6Bb7QbmuDWMFCiSsLB:JSmMZEAAT9Bb7Q3BxLB

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      3d0a495b352a73e2361df387140fd8d7_JaffaCakes118

    • Size

      13KB

    • MD5

      3d0a495b352a73e2361df387140fd8d7

    • SHA1

      a016ec3fab6bb7f451dc42e8cb573ef6e14b3b9c

    • SHA256

      d7da39e460637330662f181c3481800658582d4728114023d803fca8d65538dc

    • SHA512

      44e5e75667dcdf7a35140c9939b3c8655b9be999b3006967cafc1ea09719ad32846b90bf59c1a973d82c322248fcb7a431f7f5ea223a01628cd0823181930ab7

    • SSDEEP

      384:JSETnMZEj5MZINTMKg6Bb7QbmuDWMFCiSsLB:JSmMZEAAT9Bb7Q3BxLB

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks