Overview

overview

7

Static

static

7

3de761ac0a...18.exe

windows7-x64

7

3de761ac0a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3de761ac0afa18d4b118c6ab4753170d_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240514-e9r2labf42

  • MD5

    3de761ac0afa18d4b118c6ab4753170d

  • SHA1

    8628fa0afa9815fce9b37c46160dbc9ed6b28691

  • SHA256

    b82ba01705d4644cf6da2c47b33ee2d4a7fd13a986b9759b22791638a76aaea9

  • SHA512

    5b2023f69fdd70c9cebca113333020eac1caf30b549a3e54926ef9fc81fed27a5f603d9a7408d50801022f9774859bbd0b4fb9854d8341d74f7729ca36e6fdd1

  • SSDEEP

    98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1Mt:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNa

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      3de761ac0afa18d4b118c6ab4753170d_JaffaCakes118

    • Size

      4.7MB

    • MD5

      3de761ac0afa18d4b118c6ab4753170d

    • SHA1

      8628fa0afa9815fce9b37c46160dbc9ed6b28691

    • SHA256

      b82ba01705d4644cf6da2c47b33ee2d4a7fd13a986b9759b22791638a76aaea9

    • SHA512

      5b2023f69fdd70c9cebca113333020eac1caf30b549a3e54926ef9fc81fed27a5f603d9a7408d50801022f9774859bbd0b4fb9854d8341d74f7729ca36e6fdd1

    • SSDEEP

      98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1Mt:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNa

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks