Overview

overview

10

Static

static

10

7ab8de476c...18.exe

windows7-x64

10

7ab8de476c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7ab8de476c99b6ac150a7db8401ba4cf_JaffaCakes118

  • Size

    16KB

  • Sample

    240527-1573xada84

  • MD5

    7ab8de476c99b6ac150a7db8401ba4cf

  • SHA1

    e11ba5b1a2337f680e2090af68644f5fed808199

  • SHA256

    0a0c62998f76d1c6225f6d992a4897197cfbed34b6f6884658ab5feb3c57cade

  • SHA512

    ed05496e539a40e9cecb85da12911a638cd347772ec5dc0b9151b7a3d670e2566e127b9a8913e9c5814f5171cbf6049c4b3e8b804c0842dde92ae28b994120c2

  • SSDEEP

    384:qKxvDuPNItH19GTXjdhswuujYcV6AUwJFZb:q44atV9AhBfYcV6Dw9b

Score
10/10
loaderbotloaderminerpersistence

Malware Config

Targets

    • Target

      7ab8de476c99b6ac150a7db8401ba4cf_JaffaCakes118

    • Size

      16KB

    • MD5

      7ab8de476c99b6ac150a7db8401ba4cf

    • SHA1

      e11ba5b1a2337f680e2090af68644f5fed808199

    • SHA256

      0a0c62998f76d1c6225f6d992a4897197cfbed34b6f6884658ab5feb3c57cade

    • SHA512

      ed05496e539a40e9cecb85da12911a638cd347772ec5dc0b9151b7a3d670e2566e127b9a8913e9c5814f5171cbf6049c4b3e8b804c0842dde92ae28b994120c2

    • SSDEEP

      384:qKxvDuPNItH19GTXjdhswuujYcV6AUwJFZb:q44atV9AhBfYcV6Dw9b

    Score
    10/10
    loaderbotloaderminerpersistence

    • LoaderBot

      LoaderBot is a loader written in .NET downloading and executing miners.

      loaderminerloaderbot

    • LoaderBot executable

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scheduled Task/Job

1
T1053

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Scheduled Task/Job

1
T1053

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Scheduled Task/Job

1
T1053

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks