Overview

overview

7

Static

static

7

654585212e...18.exe

windows7-x64

7

654585212e...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    654585212e60fc84015238d318b5be41_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240521-31ea5sec7x

  • MD5

    654585212e60fc84015238d318b5be41

  • SHA1

    c8a8d846ed9cd42dfcf045fd57826f9b1a2dfae0

  • SHA256

    960db95e59a663c2d3a5e7ef56605edc2e37a018d199c0818a8320a962506569

  • SHA512

    e7f3d1f8b93311326a0b6ff67e080596d52734ba3b5c226c7e6478a9410b38f97e9e0487778ba27507b7efe1525ff8c805b4dc1799b41b4e82d3fb0d5281cc52

  • SSDEEP

    98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDCX:yzDiNyiXfGDvAX

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      654585212e60fc84015238d318b5be41_JaffaCakes118

    • Size

      4.7MB

    • MD5

      654585212e60fc84015238d318b5be41

    • SHA1

      c8a8d846ed9cd42dfcf045fd57826f9b1a2dfae0

    • SHA256

      960db95e59a663c2d3a5e7ef56605edc2e37a018d199c0818a8320a962506569

    • SHA512

      e7f3d1f8b93311326a0b6ff67e080596d52734ba3b5c226c7e6478a9410b38f97e9e0487778ba27507b7efe1525ff8c805b4dc1799b41b4e82d3fb0d5281cc52

    • SSDEEP

      98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDCX:yzDiNyiXfGDvAX

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks