Overview

overview

7

Static

static

7

2b4f7dd394...18.exe

windows7-x64

7

2b4f7dd394...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2b4f7dd394dcda3b60a03920c250c68c_JaffaCakes118

  • Size

    679KB

  • Sample

    240509-w5mprabe58

  • MD5

    2b4f7dd394dcda3b60a03920c250c68c

  • SHA1

    807b24a1708582dfd615b010c7ee40ecc6f708ce

  • SHA256

    240c3b24a70bd7f3defadc36b0b1867319d2ac8629b109e504c4ce078d430092

  • SHA512

    35d5245b71e533933f736090d80341aa068303df6881a744f1d3e34d2986843736d09a85911a48453e3869a4246f9fd02eda3921705e695c14e71e139335a871

  • SSDEEP

    12288:aPFs58L4KWjLllh1b50hl0cV8GGI1G4Kz4ktXkbomziYdIjVocXVp1tDUnNYEjC9:aPkHfehllXGeG4Kz4w6i/ocXV1UnaDs6

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2b4f7dd394dcda3b60a03920c250c68c_JaffaCakes118

    • Size

      679KB

    • MD5

      2b4f7dd394dcda3b60a03920c250c68c

    • SHA1

      807b24a1708582dfd615b010c7ee40ecc6f708ce

    • SHA256

      240c3b24a70bd7f3defadc36b0b1867319d2ac8629b109e504c4ce078d430092

    • SHA512

      35d5245b71e533933f736090d80341aa068303df6881a744f1d3e34d2986843736d09a85911a48453e3869a4246f9fd02eda3921705e695c14e71e139335a871

    • SSDEEP

      12288:aPFs58L4KWjLllh1b50hl0cV8GGI1G4Kz4ktXkbomziYdIjVocXVp1tDUnNYEjC9:aPkHfehllXGeG4Kz4w6i/ocXV1UnaDs6

    Score
    7/10
    discoveryupx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks