Overview

overview

10

Static

static

10

JaffaCakes...2c.exe

windows7-x64

6

JaffaCakes...2c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_dcf2ea033e19787b8d51f68906db222c

  • Size

    540KB

  • Sample

    250210-s6nrnawmhl

  • MD5

    dcf2ea033e19787b8d51f68906db222c

  • SHA1

    cba5862bc65604ad41084ad1acee16748145bb44

  • SHA256

    c551d2d7f4b20f04b48821c086fa75842f364e4910f5022e7179451913fadce3

  • SHA512

    ab1e95de35d0ee841f8e204ec9b480cd9cabaa811139bbf770086f81add257c67d12e0c0ae12a47efd1c3ca6dc93ea26a1b17ad64283d84cb08901d44942c2be

  • SSDEEP

    6144:2NkRKCtVWI93m/TEyvRFUozhbP1lURjExtcW4Y0ZqS/qVeNQqTSAfM8:FVL93mb9zzhBmRIxtV0quB

Score
10/10
ardamaxdiscoverypersistence

Malware Config

Targets

    • Target

      JaffaCakes118_dcf2ea033e19787b8d51f68906db222c

    • Size

      540KB

    • MD5

      dcf2ea033e19787b8d51f68906db222c

    • SHA1

      cba5862bc65604ad41084ad1acee16748145bb44

    • SHA256

      c551d2d7f4b20f04b48821c086fa75842f364e4910f5022e7179451913fadce3

    • SHA512

      ab1e95de35d0ee841f8e204ec9b480cd9cabaa811139bbf770086f81add257c67d12e0c0ae12a47efd1c3ca6dc93ea26a1b17ad64283d84cb08901d44942c2be

    • SSDEEP

      6144:2NkRKCtVWI93m/TEyvRFUozhbP1lURjExtcW4Y0ZqS/qVeNQqTSAfM8:FVL93mb9zzhBmRIxtV0quB

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks