Overview

overview

8

Static

static

3

827637429e...18.exe

windows7-x64

8

827637429e...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    827637429ef879f33adff4e00e541de3_JaffaCakes118

  • Size

    22KB

  • Sample

    241031-kc7nnswmgq

  • MD5

    827637429ef879f33adff4e00e541de3

  • SHA1

    c0b57d516c709b090dc017d06cf1c97370718667

  • SHA256

    c93afe9a97b0745523fa62f731ead2bfd10e9f6176db58041a7790cb618e2ad8

  • SHA512

    f2f69f96dacddd080f6425c910cc0b79ac2bef66d72c40e667786811e19e4514731bb49bbc86c9112414bc4d40893f66eaab123afecbc0246b426151b9ad14bc

  • SSDEEP

    384:ciuFU5ua+NL7g0wMicZGOqhTXGqddm9eXDPMHk/IZmOWIuKe5DTbkM:cLeUv3sxm9MbMOIbWIuh9

Score
8/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      827637429ef879f33adff4e00e541de3_JaffaCakes118

    • Size

      22KB

    • MD5

      827637429ef879f33adff4e00e541de3

    • SHA1

      c0b57d516c709b090dc017d06cf1c97370718667

    • SHA256

      c93afe9a97b0745523fa62f731ead2bfd10e9f6176db58041a7790cb618e2ad8

    • SHA512

      f2f69f96dacddd080f6425c910cc0b79ac2bef66d72c40e667786811e19e4514731bb49bbc86c9112414bc4d40893f66eaab123afecbc0246b426151b9ad14bc

    • SSDEEP

      384:ciuFU5ua+NL7g0wMicZGOqhTXGqddm9eXDPMHk/IZmOWIuKe5DTbkM:cLeUv3sxm9MbMOIbWIuh9

    Score
    8/10
    defense_evasiondiscoverypersistence

    • Adds policy Run key to start application

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks