Overview

overview

7

Static

static

7

23a53c9e33...18.exe

windows7-x64

7

23a53c9e33...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23a53c9e333db353d77bf51072d8611c_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240508-hek7caab97

  • MD5

    23a53c9e333db353d77bf51072d8611c

  • SHA1

    2ca7b46549f170c5cbdfff67f1d0010a1eb18d88

  • SHA256

    e351b285931ae815664f9bfb1b7c1d737b7fb4c034b6f62ceb2594ca3c108f04

  • SHA512

    2049c27610ff2ff02f50a4d3a0857464c90d71da9f49535f1cb937dc7c2e63f3194eb51883fc33b835fd081b9fd9a3d1fb1b5a2b3d68261dd2d1314103af3b52

  • SSDEEP

    98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDt:yzDiNyiXfGDvn

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      23a53c9e333db353d77bf51072d8611c_JaffaCakes118

    • Size

      4.7MB

    • MD5

      23a53c9e333db353d77bf51072d8611c

    • SHA1

      2ca7b46549f170c5cbdfff67f1d0010a1eb18d88

    • SHA256

      e351b285931ae815664f9bfb1b7c1d737b7fb4c034b6f62ceb2594ca3c108f04

    • SHA512

      2049c27610ff2ff02f50a4d3a0857464c90d71da9f49535f1cb937dc7c2e63f3194eb51883fc33b835fd081b9fd9a3d1fb1b5a2b3d68261dd2d1314103af3b52

    • SSDEEP

      98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDt:yzDiNyiXfGDvn

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks