15572e87c3e16737e8f722ec23d24f46ae652cdcf8cb040df7351a4ace9c9520 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

05c206e544...18.exe

windows7-x64

7

05c206e544...18.exe

windows10-2004-x64

7

Sharing

General

Target

05c206e544bb9619590092d5ecd099b6_JaffaCakes118
Size

676KB
Sample

240428-wj5cnsdc25
MD5

05c206e544bb9619590092d5ecd099b6
SHA1

ae75c6d9607efd6dc4930a5b524cb9fdc1e0c143
SHA256

15572e87c3e16737e8f722ec23d24f46ae652cdcf8cb040df7351a4ace9c9520
SHA512

2110beff8d8df458d95320c50a70f24671e8e26659de0711361e0e0392187bd2af5fd38090c5691a4717d63495681d688bac4e85ee5ea55614865c9ee5e5b752
SSDEEP

12288:4Q+8YcSdcdp7GqDd7o4YINDz6/AAgYShiuFfIihBtwVabCMUA4+6vlF75:0iSmrpDd75d68hiuF5H8abCMUN+YlFV

Score

7^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

05c206e544bb9619590092d5ecd099b6_JaffaCakes118.exe

Resource

win7-20240419-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

05c206e544bb9619590092d5ecd099b6_JaffaCakes118.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  05c206e544bb9619590092d5ecd099b6_JaffaCakes118
- Size
  
  676KB
- MD5
  
  05c206e544bb9619590092d5ecd099b6
- SHA1
  
  ae75c6d9607efd6dc4930a5b524cb9fdc1e0c143
- SHA256
  
  15572e87c3e16737e8f722ec23d24f46ae652cdcf8cb040df7351a4ace9c9520
- SHA512
  
  2110beff8d8df458d95320c50a70f24671e8e26659de0711361e0e0392187bd2af5fd38090c5691a4717d63495681d688bac4e85ee5ea55614865c9ee5e5b752
- SSDEEP
  
  12288:4Q+8YcSdcdp7GqDd7o4YINDz6/AAgYShiuFfIihBtwVabCMUA4+6vlF75:0iSmrpDd75d68hiuF5H8abCMUN+YlFV
Score

7^/10

discovery upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy