Overview

overview

7

Static

static

3

3f9c788be3...18.exe

windows7-x64

7

3f9c788be3...18.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3f9c788be34e49ea6ea5f036e9734bf7_JaffaCakes118

  • Size

    328KB

  • Sample

    241013-nplthsthmc

  • MD5

    3f9c788be34e49ea6ea5f036e9734bf7

  • SHA1

    ec65d8a1146a9ab2b6f2ff8a4216dc9d7304a27a

  • SHA256

    acb4713d21432674d92a50ab6791e3a4db14de5a0560d790cc98902646bf4d57

  • SHA512

    dabc80c5073a7c3c685a7a2d42764a59e29bfc0b753566a21bdc78953ae4c0fdf42c8e3cd513d67d0860f987faea5b3694619ac8e267d0e044f6b7ad8ab3f3c5

  • SSDEEP

    6144:zhCbxPHiYZcNH0A9etdzFr/C6CTeeVoJ9gB1vSAy946XOoC8IpEBlB:9LH01tXgVK9/Z+p8OEr

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      3f9c788be34e49ea6ea5f036e9734bf7_JaffaCakes118

    • Size

      328KB

    • MD5

      3f9c788be34e49ea6ea5f036e9734bf7

    • SHA1

      ec65d8a1146a9ab2b6f2ff8a4216dc9d7304a27a

    • SHA256

      acb4713d21432674d92a50ab6791e3a4db14de5a0560d790cc98902646bf4d57

    • SHA512

      dabc80c5073a7c3c685a7a2d42764a59e29bfc0b753566a21bdc78953ae4c0fdf42c8e3cd513d67d0860f987faea5b3694619ac8e267d0e044f6b7ad8ab3f3c5

    • SSDEEP

      6144:zhCbxPHiYZcNH0A9etdzFr/C6CTeeVoJ9gB1vSAy946XOoC8IpEBlB:9LH01tXgVK9/Z+p8OEr

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks