Overview

overview

7

Static

static

7

101cafa021...18.exe

windows7-x64

7

101cafa021...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    101cafa0213235db1a43629e079c072d_JaffaCakes118

  • Size

    666KB

  • Sample

    240503-kmg6rsba4v

  • MD5

    101cafa0213235db1a43629e079c072d

  • SHA1

    442b1ce4a1af1f0b1c94bf1f15c0f67b23727833

  • SHA256

    5161caef4e73761ebc8b0dbb568e1a2c81d7caaf29f934ec4daa5d8b21c6b839

  • SHA512

    0b4264fe91d3b4c35f8a9f7cb1f4903aa1ecbf4560a5fb87f3e3619024ba85f97e4bb6a14d3afa4f6ad3207097787c1aab8b6a9e2a7fce98f4f1d380737b442e

  • SSDEEP

    12288:ibDqEkMs4q48IAeP0PifTEurPbvdqJplapLWTICNIYPKMTWN4t4OAUw91zRwIMfe:iXbs48LeP0P8E6dclWLi26KGOqMwIMW

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      101cafa0213235db1a43629e079c072d_JaffaCakes118

    • Size

      666KB

    • MD5

      101cafa0213235db1a43629e079c072d

    • SHA1

      442b1ce4a1af1f0b1c94bf1f15c0f67b23727833

    • SHA256

      5161caef4e73761ebc8b0dbb568e1a2c81d7caaf29f934ec4daa5d8b21c6b839

    • SHA512

      0b4264fe91d3b4c35f8a9f7cb1f4903aa1ecbf4560a5fb87f3e3619024ba85f97e4bb6a14d3afa4f6ad3207097787c1aab8b6a9e2a7fce98f4f1d380737b442e

    • SSDEEP

      12288:ibDqEkMs4q48IAeP0PifTEurPbvdqJplapLWTICNIYPKMTWN4t4OAUw91zRwIMfe:iXbs48LeP0P8E6dclWLi26KGOqMwIMW

    Score
    7/10
    discoveryupx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks