Overview

overview

7

Static

static

1

4d63904a33...18.exe

windows7-x64

7

4d63904a33...18.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4d63904a3388618a87de1641adb3063b_JaffaCakes118

  • Size

    257KB

  • Sample

    240516-2qyrcscd6v

  • MD5

    4d63904a3388618a87de1641adb3063b

  • SHA1

    657978186960bd9cf79f3b6790ec1deac36af2d0

  • SHA256

    1459522ad904dbbc0726ba808a85adfa874098d0ab8dc45b96a3ce6950ab83cd

  • SHA512

    fc0f29f7f2e4cd4d67957bb5fe687d3e9187985b8741c62cbc66a9301292a4fd36eed65291186463c2290812622ca2f76ad997d580371f308ee2d834b0bd92dc

  • SSDEEP

    6144:pon0sbF+N6RjxfibTzTD5DiCUrZCelY8n86CN:ns8Y6bDDtivrw58n86CN

Score
7/10
discovery

Malware Config

Targets

    • Target

      4d63904a3388618a87de1641adb3063b_JaffaCakes118

    • Size

      257KB

    • MD5

      4d63904a3388618a87de1641adb3063b

    • SHA1

      657978186960bd9cf79f3b6790ec1deac36af2d0

    • SHA256

      1459522ad904dbbc0726ba808a85adfa874098d0ab8dc45b96a3ce6950ab83cd

    • SHA512

      fc0f29f7f2e4cd4d67957bb5fe687d3e9187985b8741c62cbc66a9301292a4fd36eed65291186463c2290812622ca2f76ad997d580371f308ee2d834b0bd92dc

    • SSDEEP

      6144:pon0sbF+N6RjxfibTzTD5DiCUrZCelY8n86CN:ns8Y6bDDtivrw58n86CN

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks