General

  • Target

    8993c4b21763e78ec493a1b58cb7d1b9_JaffaCakes118

  • Size

    6.1MB

  • Sample

    240601-gzhfhscd7w

  • MD5

    8993c4b21763e78ec493a1b58cb7d1b9

  • SHA1

    1c1a6c910d80ca8ccee5a8bffa792720e9285b22

  • SHA256

    1d7b115e28be2b5b92f03745e9b33f849eaa2427c935e8f54710f978eaf327e4

  • SHA512

    b3e088d98ee2b7491205adc7caab2451c944c1a2276a0e4ca6324fed85d8a5cf92f57984e0d243aa70bce08e01357b51f662f462b6b521c96cf1ef18acf593dc

  • SSDEEP

    98304:oAwzZHd5CU4G9KwYAOujNkIIp/sPuYvko1dup0Wy2k1bRNQLhA4OolahKAHW7rYX:2Zh4GkrAOuqnpEPxvkTb+A9akAHiEX

Score
7/10

Malware Config

Targets

    • Target

      8993c4b21763e78ec493a1b58cb7d1b9_JaffaCakes118

    • Size

      6.1MB

    • MD5

      8993c4b21763e78ec493a1b58cb7d1b9

    • SHA1

      1c1a6c910d80ca8ccee5a8bffa792720e9285b22

    • SHA256

      1d7b115e28be2b5b92f03745e9b33f849eaa2427c935e8f54710f978eaf327e4

    • SHA512

      b3e088d98ee2b7491205adc7caab2451c944c1a2276a0e4ca6324fed85d8a5cf92f57984e0d243aa70bce08e01357b51f662f462b6b521c96cf1ef18acf593dc

    • SSDEEP

      98304:oAwzZHd5CU4G9KwYAOujNkIIp/sPuYvko1dup0Wy2k1bRNQLhA4OolahKAHW7rYX:2Zh4GkrAOuqnpEPxvkTb+A9akAHiEX

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks