Overview

overview

7

Static

static

1

JaffaCakes...a8.exe

windows7-x64

7

JaffaCakes...a8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_e250f97064d910406a502beed47328a8

  • Size

    74KB

  • Sample

    250120-kxpzcs1rcq

  • MD5

    e250f97064d910406a502beed47328a8

  • SHA1

    79c035ea060b26dbe979fd19c5f258cfa25ad727

  • SHA256

    29239885afb3e8d877d0e8148b96e29c3a90942eab23ad24d0292c4ae399a202

  • SHA512

    cf4f50381de818f280a4fb08282e297eba07d12be29d1da7fcd6fec726fbd626e45209c26b692463b1447b383806d05827f2429a6df605a1892a24f0e8e6a9f3

  • SSDEEP

    1536:J5GJEhlcbW5sk1BlfLvveIbXWm+nwN6JMDs5ggfs1mmqCpaqJTImu1kC:DGu9BlfzWIbXWm+w0JN5PscXCpvRu1kC

Score
7/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      JaffaCakes118_e250f97064d910406a502beed47328a8

    • Size

      74KB

    • MD5

      e250f97064d910406a502beed47328a8

    • SHA1

      79c035ea060b26dbe979fd19c5f258cfa25ad727

    • SHA256

      29239885afb3e8d877d0e8148b96e29c3a90942eab23ad24d0292c4ae399a202

    • SHA512

      cf4f50381de818f280a4fb08282e297eba07d12be29d1da7fcd6fec726fbd626e45209c26b692463b1447b383806d05827f2429a6df605a1892a24f0e8e6a9f3

    • SSDEEP

      1536:J5GJEhlcbW5sk1BlfLvveIbXWm+nwN6JMDs5ggfs1mmqCpaqJTImu1kC:DGu9BlfzWIbXWm+w0JN5PscXCpvRu1kC

    Score
    7/10
    discoverypersistencedefense_evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks