General

  • Target

    8992b90638695ee9bd2cb0c1a34fd736_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240601-gxz8jscd4v

  • MD5

    8992b90638695ee9bd2cb0c1a34fd736

  • SHA1

    813b310e6d7f2416982e979c2666926f83ccc139

  • SHA256

    57106f5352619574d2b4268cc3ec3a0228f4086fc3d3fcf0dd212aa11acbf57c

  • SHA512

    01f9cf06a15e8a8e3de3acf2484a37d3dc552d4e8e0b3668dc0d6ed0059bf7ec05af38994befc14a8d3e3feca01239cc73ef101eac2cdcd87517d849aca4f7e7

  • SSDEEP

    98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDF1:yzDiNyiXfGDvv1

Score
7/10

Malware Config

Targets

    • Target

      8992b90638695ee9bd2cb0c1a34fd736_JaffaCakes118

    • Size

      4.7MB

    • MD5

      8992b90638695ee9bd2cb0c1a34fd736

    • SHA1

      813b310e6d7f2416982e979c2666926f83ccc139

    • SHA256

      57106f5352619574d2b4268cc3ec3a0228f4086fc3d3fcf0dd212aa11acbf57c

    • SHA512

      01f9cf06a15e8a8e3de3acf2484a37d3dc552d4e8e0b3668dc0d6ed0059bf7ec05af38994befc14a8d3e3feca01239cc73ef101eac2cdcd87517d849aca4f7e7

    • SSDEEP

      98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDF1:yzDiNyiXfGDvv1

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks