Overview

overview

9

Static

static

3

5559cfae01...18.exe

windows7-x64

9

5559cfae01...18.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5559cfae017bc44ab7c65687593289d0_JaffaCakes118

  • Size

    826KB

  • Sample

    241018-ehcslawbjh

  • MD5

    5559cfae017bc44ab7c65687593289d0

  • SHA1

    250e0a7355b8cab1d918442dd334551db23f78b0

  • SHA256

    e2d6bc858af63c4ac12ea417ad8c2b015a9a2b570aed322cb9c4e6da325879f6

  • SHA512

    eec96883f4d48f2876d8499b25d5c07c84716a3f34a8d23385518dc46df7a0a12d0d8970eff91d61670a98b3714d04e59922df9942403cc039bb0d88118138c9

  • SSDEEP

    12288:3tF/9Ra2JQaMGxFXRdcJoobhnzrUx07LDTP2:b1Ra2JQaTx9TMoIhnzJXP2

Score
9/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      5559cfae017bc44ab7c65687593289d0_JaffaCakes118

    • Size

      826KB

    • MD5

      5559cfae017bc44ab7c65687593289d0

    • SHA1

      250e0a7355b8cab1d918442dd334551db23f78b0

    • SHA256

      e2d6bc858af63c4ac12ea417ad8c2b015a9a2b570aed322cb9c4e6da325879f6

    • SHA512

      eec96883f4d48f2876d8499b25d5c07c84716a3f34a8d23385518dc46df7a0a12d0d8970eff91d61670a98b3714d04e59922df9942403cc039bb0d88118138c9

    • SSDEEP

      12288:3tF/9Ra2JQaMGxFXRdcJoobhnzrUx07LDTP2:b1Ra2JQaTx9TMoIhnzJXP2

    Score
    9/10
    discoveryevasionpersistence

    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

      evasion

    • Enumerates VirtualBox registry keys

      evasion

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks