Overview

overview

10

Static

static

3

JaffaCakes...54.dll

windows7-x64

10

JaffaCakes...54.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_2704c6fab698d1b402a4782a0a7ebd54

  • Size

    538KB

  • Sample

    241231-tkg8esxrbv

  • MD5

    2704c6fab698d1b402a4782a0a7ebd54

  • SHA1

    b17f9009c27fdd40bea3e824033a5279022d786c

  • SHA256

    d704e7823e94548dc72aec27bd98acd97ba3374ba68f3606c0f0fe59543cf92e

  • SHA512

    f4e677b43e817c0f7e09977e6871a61e60317838b87a0acbcbd679be28395dd8ca1a051f1a761e88cfd478a74eaecff1c6d3a3cbd023ac6c1f692001b5009e05

  • SSDEEP

    12288:x5uCK9y+fJYzgiiUl8KbcoV6lXbBu+yvIgLQJ0x6YarFtoG:x4Ci8giiUl8KbckmwIgLQJ0x6KG

Score
10/10
bazarloaderdropperloader

Malware Config

Targets

    • Target

      JaffaCakes118_2704c6fab698d1b402a4782a0a7ebd54

    • Size

      538KB

    • MD5

      2704c6fab698d1b402a4782a0a7ebd54

    • SHA1

      b17f9009c27fdd40bea3e824033a5279022d786c

    • SHA256

      d704e7823e94548dc72aec27bd98acd97ba3374ba68f3606c0f0fe59543cf92e

    • SHA512

      f4e677b43e817c0f7e09977e6871a61e60317838b87a0acbcbd679be28395dd8ca1a051f1a761e88cfd478a74eaecff1c6d3a3cbd023ac6c1f692001b5009e05

    • SSDEEP

      12288:x5uCK9y+fJYzgiiUl8KbcoV6lXbBu+yvIgLQJ0x6YarFtoG:x4Ci8giiUl8KbckmwIgLQJ0x6KG

    Score
    10/10
    bazarloaderdropperloader

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

      loaderdropperbazarloader

    • Bazarloader family

      bazarloader

    • Bazar/Team9 Loader payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks