Overview

overview

8

Static

static

7

52a914c02c...18.exe

windows7-x64

8

52a914c02c...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52a914c02c17ae26ec7ab67b9cd513a0_JaffaCakes118

  • Size

    54KB

  • Sample

    241017-t6vqmsyalj

  • MD5

    52a914c02c17ae26ec7ab67b9cd513a0

  • SHA1

    b37cf96bade2c4edad5a38cd9f63fc62b4db34c4

  • SHA256

    e76050cb38bc79c7ee17360049c29955dcf17eefcf6c9e3200e455256e94dc91

  • SHA512

    ed5f6ad5a2f9fd339e730afcd6244cfd3b44100e27228682f6bda4a4f3dd8d95bc1eb05a07caa8e7d8ed7d031ecd9cc636ee6982dd8ebb3139acc07616cb61e8

  • SSDEEP

    768:USlj6V/6OJxmtr7O/Uizd5ZwloxPOgEb9uNTkypxuha5n:Zj4yO6tr6t8oxmgouZ9aA

Score
8/10
aspackv2discoverypersistence

Malware Config

Targets

    • Target

      52a914c02c17ae26ec7ab67b9cd513a0_JaffaCakes118

    • Size

      54KB

    • MD5

      52a914c02c17ae26ec7ab67b9cd513a0

    • SHA1

      b37cf96bade2c4edad5a38cd9f63fc62b4db34c4

    • SHA256

      e76050cb38bc79c7ee17360049c29955dcf17eefcf6c9e3200e455256e94dc91

    • SHA512

      ed5f6ad5a2f9fd339e730afcd6244cfd3b44100e27228682f6bda4a4f3dd8d95bc1eb05a07caa8e7d8ed7d031ecd9cc636ee6982dd8ebb3139acc07616cb61e8

    • SSDEEP

      768:USlj6V/6OJxmtr7O/Uizd5ZwloxPOgEb9uNTkypxuha5n:Zj4yO6tr6t8oxmgouZ9aA

    Score
    8/10
    aspackv2persistencediscovery

    • Drops file in Drivers directory

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks