Overview

overview

7

Static

static

7

4bafd412da...18.exe

windows7-x64

7

4bafd412da...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4bafd412dac67d7b9e91c4b9dab3a377_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240516-sg2l8aad76

  • MD5

    4bafd412dac67d7b9e91c4b9dab3a377

  • SHA1

    2f827f2c0c6b4fd148cf18cadfb9d816ef000ffb

  • SHA256

    21d2450ab1a90949dfb6164e97f16c79e1a6f07656b820fdd8ad12f5a92e897e

  • SHA512

    bb72d9bd14007096b49c94f391ed2cb82316feb883fcf6278fcd09512cb4a3b4ea286cab0a260d3aa9cb353d8e245c90863353d1d5a490f316bc7d20b1ffcbcc

  • SSDEEP

    98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLy5:nCnyhkhBaxem1tPBn2uqs

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      4bafd412dac67d7b9e91c4b9dab3a377_JaffaCakes118

    • Size

      4.7MB

    • MD5

      4bafd412dac67d7b9e91c4b9dab3a377

    • SHA1

      2f827f2c0c6b4fd148cf18cadfb9d816ef000ffb

    • SHA256

      21d2450ab1a90949dfb6164e97f16c79e1a6f07656b820fdd8ad12f5a92e897e

    • SHA512

      bb72d9bd14007096b49c94f391ed2cb82316feb883fcf6278fcd09512cb4a3b4ea286cab0a260d3aa9cb353d8e245c90863353d1d5a490f316bc7d20b1ffcbcc

    • SSDEEP

      98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLy5:nCnyhkhBaxem1tPBn2uqs

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks