Overview

overview

7

Static

static

7

61717fd7b8...18.exe

windows7-x64

7

61717fd7b8...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    61717fd7b8eae5b44dbc9439b05add9b_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240521-apwf3acf4w

  • MD5

    61717fd7b8eae5b44dbc9439b05add9b

  • SHA1

    fbab4b9b4092270fc255fb64ce9b99f4e07eb57a

  • SHA256

    27b37f6fe3f4f881ecf553b82b0ffb43abe2b99bca2a6d86b4eea32e42a3dd63

  • SHA512

    73bf6333f85fb61a4b7f1fb572dc5020d5b2ec4ead0aef837655b7e29d4f817fb9506417365e39a5e7b52a7f5ff802ef823023f502e19fd579b393975d6c8ea8

  • SSDEEP

    98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyC:nCnyhkhBaxem1tPBn2uqD

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      61717fd7b8eae5b44dbc9439b05add9b_JaffaCakes118

    • Size

      4.7MB

    • MD5

      61717fd7b8eae5b44dbc9439b05add9b

    • SHA1

      fbab4b9b4092270fc255fb64ce9b99f4e07eb57a

    • SHA256

      27b37f6fe3f4f881ecf553b82b0ffb43abe2b99bca2a6d86b4eea32e42a3dd63

    • SHA512

      73bf6333f85fb61a4b7f1fb572dc5020d5b2ec4ead0aef837655b7e29d4f817fb9506417365e39a5e7b52a7f5ff802ef823023f502e19fd579b393975d6c8ea8

    • SSDEEP

      98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyC:nCnyhkhBaxem1tPBn2uqD

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks