Overview

overview

7

Static

static

7

fd98436375...18.exe

windows7-x64

7

fd98436375...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd9843637537395f9f95ccb4e8be319d_JaffaCakes118

  • Size

    2.8MB

  • Sample

    240420-zdvstshh5x

  • MD5

    fd9843637537395f9f95ccb4e8be319d

  • SHA1

    c9f7a02ea01eb4686a46015713eda9caac5f1d04

  • SHA256

    fb1d8ea7fbb900c1606d55f7e8c6c3aec00c6896179977ba7af721a846353dac

  • SHA512

    9c48c434b03b0a09a79ea4539eafa360a0cbb813688b474e50339175dff49426020a4d6a7f803ef4292407379023c000f30dc78f80199955df4490715e8186f5

  • SSDEEP

    24576:no8Nu/tvj5J95Fg97HYm5NiHabHigrIQBDRe+PugJt1WpKAni6f82by1UBE3IKl3:rvNjpRypZwFWV1+Pez4yVM

Score
7/10
aspackv2

Malware Config

Targets

    • Target

      fd9843637537395f9f95ccb4e8be319d_JaffaCakes118

    • Size

      2.8MB

    • MD5

      fd9843637537395f9f95ccb4e8be319d

    • SHA1

      c9f7a02ea01eb4686a46015713eda9caac5f1d04

    • SHA256

      fb1d8ea7fbb900c1606d55f7e8c6c3aec00c6896179977ba7af721a846353dac

    • SHA512

      9c48c434b03b0a09a79ea4539eafa360a0cbb813688b474e50339175dff49426020a4d6a7f803ef4292407379023c000f30dc78f80199955df4490715e8186f5

    • SSDEEP

      24576:no8Nu/tvj5J95Fg97HYm5NiHabHigrIQBDRe+PugJt1WpKAni6f82by1UBE3IKl3:rvNjpRypZwFWV1+Pez4yVM

    Score
    7/10

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks