General

  • Target

    ee1c281e63a0af193ad29914c8c95eef_JaffaCakes118

  • Size

    2.7MB

  • Sample

    240411-xgyb1shh75

  • MD5

    ee1c281e63a0af193ad29914c8c95eef

  • SHA1

    42f49e1ac0960769289fd601aae4d8e8b33bcdd6

  • SHA256

    817b7f344146ad6fad0158e2c4659f486d12bd3972db87a4b440fab7eb9fde36

  • SHA512

    a35318712943e3372e98ca82fc888bf3b214cd4c9bbf693bb58e04b4db54683e31073c3dead095a98a01cb2d2918b73b7db78bb57d73ef65e09e5e5e93c65615

  • SSDEEP

    49152:RfWDytkZTX9DQMv3epsdZJEzMomJlUsbYmFku8yt/a+ZG0F8ZqWpm8cctuY:RfWD0wX5xeqzAmzUsbvFky9GJbm8VN

Score
7/10

Malware Config

Targets

    • Target

      ee1c281e63a0af193ad29914c8c95eef_JaffaCakes118

    • Size

      2.7MB

    • MD5

      ee1c281e63a0af193ad29914c8c95eef

    • SHA1

      42f49e1ac0960769289fd601aae4d8e8b33bcdd6

    • SHA256

      817b7f344146ad6fad0158e2c4659f486d12bd3972db87a4b440fab7eb9fde36

    • SHA512

      a35318712943e3372e98ca82fc888bf3b214cd4c9bbf693bb58e04b4db54683e31073c3dead095a98a01cb2d2918b73b7db78bb57d73ef65e09e5e5e93c65615

    • SSDEEP

      49152:RfWDytkZTX9DQMv3epsdZJEzMomJlUsbYmFku8yt/a+ZG0F8ZqWpm8cctuY:RfWD0wX5xeqzAmzUsbvFky9GJbm8VN

    Score
    7/10
    • Executes dropped EXE

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks