Overview

overview

7

Static

static

7

057c59dd00...18.exe

windows7-x64

7

057c59dd00...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    057c59dd00367b822f8085cbc083e455_JaffaCakes118

  • Size

    6.6MB

  • Sample

    240428-sqa6maah8t

  • MD5

    057c59dd00367b822f8085cbc083e455

  • SHA1

    93197188f31c95750b02a03f439e0b40840d2885

  • SHA256

    8654ee1fdf1c8ba22b9cd26f3f38c69956d6e5a7a25f23cfc1493f501d5fdd33

  • SHA512

    ba706f73cba20a2d817ae9ab57bab9d67088b95572c096cdef252bce1fd1973203154c1145833e29f28c80545e62f9220e9fd7cc0b26ce0a8fcaa7e08f66da4f

  • SSDEEP

    98304:W7P47GdJByw8B+Rihm1H8aQgO34VvjhL2qAPCP9lHQnz5SwXOq25219zPS:aP4KYjINp5VvdAXS5219zPS

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      057c59dd00367b822f8085cbc083e455_JaffaCakes118

    • Size

      6.6MB

    • MD5

      057c59dd00367b822f8085cbc083e455

    • SHA1

      93197188f31c95750b02a03f439e0b40840d2885

    • SHA256

      8654ee1fdf1c8ba22b9cd26f3f38c69956d6e5a7a25f23cfc1493f501d5fdd33

    • SHA512

      ba706f73cba20a2d817ae9ab57bab9d67088b95572c096cdef252bce1fd1973203154c1145833e29f28c80545e62f9220e9fd7cc0b26ce0a8fcaa7e08f66da4f

    • SSDEEP

      98304:W7P47GdJByw8B+Rihm1H8aQgO34VvjhL2qAPCP9lHQnz5SwXOq25219zPS:aP4KYjINp5VvdAXS5219zPS

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks