Overview

overview

7

Static

static

7

741598c8ca...18.exe

windows7-x64

7

741598c8ca...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    741598c8ca33c637e54a65814b6485f2_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240526-c51rtscg26

  • MD5

    741598c8ca33c637e54a65814b6485f2

  • SHA1

    1e17f6f332dd32f6d4c7bd063afcd82244533efe

  • SHA256

    ad6321a85dd85148bceeec918dd675888a0a64d40f9d0562820a2e3d96e5b377

  • SHA512

    726af86cd53ded7b9ab2bcf6b2d97f4c7e559c3c77f776af2ba231aee15564a7d1dc01bcb7abc296579959e34250982c1dbe723bf338d113d1829aace3d4416b

  • SSDEEP

    98304:FkBgrxEvbBOhKZNKXPgIy9juZsNdFo/lRVke56cbbpULLSS:FkPvbFZoXPAduA3o9RVX56qbmCS

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      741598c8ca33c637e54a65814b6485f2_JaffaCakes118

    • Size

      4.7MB

    • MD5

      741598c8ca33c637e54a65814b6485f2

    • SHA1

      1e17f6f332dd32f6d4c7bd063afcd82244533efe

    • SHA256

      ad6321a85dd85148bceeec918dd675888a0a64d40f9d0562820a2e3d96e5b377

    • SHA512

      726af86cd53ded7b9ab2bcf6b2d97f4c7e559c3c77f776af2ba231aee15564a7d1dc01bcb7abc296579959e34250982c1dbe723bf338d113d1829aace3d4416b

    • SSDEEP

      98304:FkBgrxEvbBOhKZNKXPgIy9juZsNdFo/lRVke56cbbpULLSS:FkPvbFZoXPAduA3o9RVX56qbmCS

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks