7428f2db7b6a069cb3910fc9926b51de47cae2adaf6428f57a19f4fe650134c9 | Triage

Submit
Reports

Overview

overview

7

Static

static

5

JaffaCakes...30.exe

windows10-2004-x64

7

JaffaCakes...30.exe

windows11-21h2-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

JaffaCakes118_1e633d8e8b8cfcf42ecd3e37e0e69a30
Size

7.8MB
Sample

250706-f8nhfsslz7
MD5

1e633d8e8b8cfcf42ecd3e37e0e69a30
SHA1

1e6e5b7efd77f48f112a5449842e11da29c36f7b
SHA256

7428f2db7b6a069cb3910fc9926b51de47cae2adaf6428f57a19f4fe650134c9
SHA512

388b06fee91fd85603bb573ac6821395a070b13446ef689ea9bd17e621e24cc34c54f9cf8bdb42b1a5d039dc4890aa6036a092f19934e0ed01e381c8c8ecc48a
SSDEEP

196608:WudGzLqws5APVzLqm/8WyNzLqws5APVzLqZqyfzLqws5APVzLqm/8WyNzLqws5Ac:Mzw58zeLNzw58zvGzw58zeLNzw58z

Score

7^/10

discovery execution persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_1e633d8e8b8cfcf42ecd3e37e0e69a30.exe

Resource

win10v2004-20250619-en

discovery execution persistence upx

windows10-2004-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_1e633d8e8b8cfcf42ecd3e37e0e69a30.exe

Resource

win11-20250619-en

discovery execution persistence upx

windows11-21h2-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_1e633d8e8b8cfcf42ecd3e37e0e69a30
- Size
  
  7.8MB
- MD5
  
  1e633d8e8b8cfcf42ecd3e37e0e69a30
- SHA1
  
  1e6e5b7efd77f48f112a5449842e11da29c36f7b
- SHA256
  
  7428f2db7b6a069cb3910fc9926b51de47cae2adaf6428f57a19f4fe650134c9
- SHA512
  
  388b06fee91fd85603bb573ac6821395a070b13446ef689ea9bd17e621e24cc34c54f9cf8bdb42b1a5d039dc4890aa6036a092f19934e0ed01e381c8c8ecc48a
- SSDEEP
  
  196608:WudGzLqws5APVzLqm/8WyNzLqws5APVzLqZqyfzLqws5APVzLqm/8WyNzLqws5Ac:Mzw58zeLNzw58zvGzw58zeLNzw58z
Score

7^/10

discovery execution persistence upx
- Deletes itself
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecutionpersistenceupx

behavioral2

discoveryexecutionpersistenceupx

© 2018-2025

Terms | Privacy