Overview

overview

7

Static

static

7

87bca183b6...18.exe

windows7-x64

7

87bca183b6...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    87bca183b6d78f225876c47dcb5c915b_JaffaCakes118

  • Size

    4.6MB

  • Sample

    240531-vpbf4sff49

  • MD5

    87bca183b6d78f225876c47dcb5c915b

  • SHA1

    154c08acd19a58834b7880e4b3b5167e8dbd43eb

  • SHA256

    0abca305056ea7da0e940de81a2aa5fff3a8ff17b141705026c3909342ceb3b2

  • SHA512

    de8480b5962ae4804771306b1c2f624392e754407ef786564b745fc9672a13c6b29de21b8bb030e7713077e1e5053347ab5ebd113cf993458b73f319b332e51b

  • SSDEEP

    98304:6l88ZVJX90viC6BtsLNtm6fP+I7O1UY2Qfs+Rp2+GwG:bOV190JysLNtmYX9TCp2+G1

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      87bca183b6d78f225876c47dcb5c915b_JaffaCakes118

    • Size

      4.6MB

    • MD5

      87bca183b6d78f225876c47dcb5c915b

    • SHA1

      154c08acd19a58834b7880e4b3b5167e8dbd43eb

    • SHA256

      0abca305056ea7da0e940de81a2aa5fff3a8ff17b141705026c3909342ceb3b2

    • SHA512

      de8480b5962ae4804771306b1c2f624392e754407ef786564b745fc9672a13c6b29de21b8bb030e7713077e1e5053347ab5ebd113cf993458b73f319b332e51b

    • SSDEEP

      98304:6l88ZVJX90viC6BtsLNtm6fP+I7O1UY2Qfs+Rp2+GwG:bOV190JysLNtmYX9TCp2+G1

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks