Overview

overview

10

Static

static

10

JaffaCakes...81.exe

windows7-x64

JaffaCakes...81.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_3b877d168f8a4c25d2e5b91b62cffc2ffbceb5c871c8c3edd36ae49f67f17181

  • Size

    380KB

  • Sample

    241221-ydhmtsxpbt

  • MD5

    7743a5fb9e1c07ced469d0509d15a699

  • SHA1

    fc3d8f125c0c431df7ea605a049f41680f2516e3

  • SHA256

    3b877d168f8a4c25d2e5b91b62cffc2ffbceb5c871c8c3edd36ae49f67f17181

  • SHA512

    05ea3019ee7faf69a3d37a3bb94de322d70fec92bba30475f4c68321e62289b25335185b350ac1cf28472abeb7f2f0383dcbdcfc3d6cf483de97bd99a79d66b5

  • SSDEEP

    6144:Udt56eh8ITcleMH9SDomjDBvMYos+CmDyZYIMsCIxl0J8k9MAO51gUtuzbgwuaGo:Udt56ehi/H9SDomjDBvMYojCmDu79dgp

Score
10/10
gcleaner

Malware Config

Extracted

Family

gcleaner

C2

208.67.104.97

85.31.46.167
Attributes
  • url_path

    ....!..../software.php

    ....!..../software.php

Targets

    • Target

      JaffaCakes118_3b877d168f8a4c25d2e5b91b62cffc2ffbceb5c871c8c3edd36ae49f67f17181

    • Size

      380KB

    • MD5

      7743a5fb9e1c07ced469d0509d15a699

    • SHA1

      fc3d8f125c0c431df7ea605a049f41680f2516e3

    • SHA256

      3b877d168f8a4c25d2e5b91b62cffc2ffbceb5c871c8c3edd36ae49f67f17181

    • SHA512

      05ea3019ee7faf69a3d37a3bb94de322d70fec92bba30475f4c68321e62289b25335185b350ac1cf28472abeb7f2f0383dcbdcfc3d6cf483de97bd99a79d66b5

    • SSDEEP

      6144:Udt56eh8ITcleMH9SDomjDBvMYos+CmDyZYIMsCIxl0J8k9MAO51gUtuzbgwuaGo:Udt56ehi/H9SDomjDBvMYojCmDu79dgp

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks