General

  • Target

    ef444087e631d1cc210f6f7a98ebd563_JaffaCakes118

  • Size

    3.4MB

  • Sample

    240412-gj25zsbb5v

  • MD5

    ef444087e631d1cc210f6f7a98ebd563

  • SHA1

    869379c1b3f350d2ef2f9bb47a3c7cc1f149eb40

  • SHA256

    86b7294626d232e36f0bddac446d6ccbb667c8699150d8b422272f62c385b9f2

  • SHA512

    d2757d894beea486e150f416f0e9b567acbf1a7805c99a1c01bb2be0afd9e6f40fceca60248771a5123075c95de74ecce9b695a0f09bda50aed892d69021a62b

  • SSDEEP

    98304:j63yGb4GZHf71+0Pc3a4g0EIUlQ7f9asiSZD5b+:0y+EYcq4Rd7f9USZD

Malware Config

Targets

    • Target

      ef444087e631d1cc210f6f7a98ebd563_JaffaCakes118

    • Size

      3.4MB

    • MD5

      ef444087e631d1cc210f6f7a98ebd563

    • SHA1

      869379c1b3f350d2ef2f9bb47a3c7cc1f149eb40

    • SHA256

      86b7294626d232e36f0bddac446d6ccbb667c8699150d8b422272f62c385b9f2

    • SHA512

      d2757d894beea486e150f416f0e9b567acbf1a7805c99a1c01bb2be0afd9e6f40fceca60248771a5123075c95de74ecce9b695a0f09bda50aed892d69021a62b

    • SSDEEP

      98304:j63yGb4GZHf71+0Pc3a4g0EIUlQ7f9asiSZD5b+:0y+EYcq4Rd7f9USZD

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks