Overview

overview

10

Static

static

3

JaffaCakes...cf.exe

windows7-x64

10

JaffaCakes...cf.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_0f344c18fc23977f87a5aeb2b3b9facf

  • Size

    204KB

  • Sample

    250106-fdt2raynhp

  • MD5

    0f344c18fc23977f87a5aeb2b3b9facf

  • SHA1

    83bc3be2d6e79a24a160a5fe0fb117e3cd499324

  • SHA256

    4003aec5835c1d1bc305ea92b82ec0837946d5a9272eca51fa303a7d45ab8cac

  • SHA512

    12493dc12c093e53259d05cd60237e68aa83937f6f65fc05626b7d0683286fe9836b9a94df4a78c35d19b00c88810317e1da508709740f2ea7077d99733ff772

  • SSDEEP

    3072:3Hjk+0oLnWFnzBHv/xWFsg8WatFBGFVWPE5ac0pG/1z+QVMbg1:Xo/BHng5HaVG4G/1z+QVMbg1

Score
10/10
vobfusdiscoverypersistenceworm

Malware Config

Targets

    • Target

      JaffaCakes118_0f344c18fc23977f87a5aeb2b3b9facf

    • Size

      204KB

    • MD5

      0f344c18fc23977f87a5aeb2b3b9facf

    • SHA1

      83bc3be2d6e79a24a160a5fe0fb117e3cd499324

    • SHA256

      4003aec5835c1d1bc305ea92b82ec0837946d5a9272eca51fa303a7d45ab8cac

    • SHA512

      12493dc12c093e53259d05cd60237e68aa83937f6f65fc05626b7d0683286fe9836b9a94df4a78c35d19b00c88810317e1da508709740f2ea7077d99733ff772

    • SSDEEP

      3072:3Hjk+0oLnWFnzBHv/xWFsg8WatFBGFVWPE5ac0pG/1z+QVMbg1:Xo/BHng5HaVG4G/1z+QVMbg1

    Score
    10/10
    vobfusdiscoverypersistenceworm

    • Vobfus

      A widespread worm which spreads via network drives and removable media.

      wormvobfus

    • Vobfus family

      vobfus

    • Adds policy Run key to start application

      persistence

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.