Overview

overview

7

Static

static

7

2a451e4d8e...18.exe

windows7-x64

7

2a451e4d8e...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a451e4d8e7bf6cd19846eb1df739fe1_JaffaCakes118

  • Size

    6.6MB

  • Sample

    240509-q7pn8sch3x

  • MD5

    2a451e4d8e7bf6cd19846eb1df739fe1

  • SHA1

    e3f07a0febcd3778844eb09f64020781b4311787

  • SHA256

    392f8bad10661d87c269927eea14881b21616079be96987447b6c47d8ca3ad82

  • SHA512

    17af9acc1545f104361c20647a72740928a23f2a882f45dcaecf3b894d363aa390f60c0dc5f34ba7ba259d02ecf0b9d999d904ebac61c88b85a6d916fcb6c6e3

  • SSDEEP

    98304:W7P47GdJByw8B+Rihm1H8aQgO34VvjhL2qAPCP9lHQnz5SwXOq25219zPY1:aP4KYjINp5VvdAXS5219zPY1

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2a451e4d8e7bf6cd19846eb1df739fe1_JaffaCakes118

    • Size

      6.6MB

    • MD5

      2a451e4d8e7bf6cd19846eb1df739fe1

    • SHA1

      e3f07a0febcd3778844eb09f64020781b4311787

    • SHA256

      392f8bad10661d87c269927eea14881b21616079be96987447b6c47d8ca3ad82

    • SHA512

      17af9acc1545f104361c20647a72740928a23f2a882f45dcaecf3b894d363aa390f60c0dc5f34ba7ba259d02ecf0b9d999d904ebac61c88b85a6d916fcb6c6e3

    • SSDEEP

      98304:W7P47GdJByw8B+Rihm1H8aQgO34VvjhL2qAPCP9lHQnz5SwXOq25219zPY1:aP4KYjINp5VvdAXS5219zPY1

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks