Overview

overview

7

Static

static

3

566e92627a...18.exe

windows7-x64

7

566e92627a...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    566e92627a8c9e060c2e2f06a98f14f6_JaffaCakes118

  • Size

    715KB

  • Sample

    241018-ke6t6axbme

  • MD5

    566e92627a8c9e060c2e2f06a98f14f6

  • SHA1

    dd4bb691b8ba8abd752308b0193a56676c6a9296

  • SHA256

    77a624733979f81efea9b13be258a60a918a3e55e7c7a40209e5700b7bf05dfa

  • SHA512

    731c6b15e4d4b458cfc5b5524d84867d624e8e6f6b33269b017fadc93c17db46d2f2da0e90cd75a14472218d63516829baed4faa9aa15cf822e6a6367329659c

  • SSDEEP

    12288:3vLEtde3N9Ln4ELsh9opovLNhBn1sbsyA3+5XPtyY7Iaupf0QEJ6Q+:3votde33b4ELsh9fFn1d+5tyY7IaupMm

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      566e92627a8c9e060c2e2f06a98f14f6_JaffaCakes118

    • Size

      715KB

    • MD5

      566e92627a8c9e060c2e2f06a98f14f6

    • SHA1

      dd4bb691b8ba8abd752308b0193a56676c6a9296

    • SHA256

      77a624733979f81efea9b13be258a60a918a3e55e7c7a40209e5700b7bf05dfa

    • SHA512

      731c6b15e4d4b458cfc5b5524d84867d624e8e6f6b33269b017fadc93c17db46d2f2da0e90cd75a14472218d63516829baed4faa9aa15cf822e6a6367329659c

    • SSDEEP

      12288:3vLEtde3N9Ln4ELsh9opovLNhBn1sbsyA3+5XPtyY7Iaupf0QEJ6Q+:3votde33b4ELsh9fFn1d+5tyY7IaupMm

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks