General

  • Target

    933e28bf7e7d0d53cdef570227d3a349_JaffaCakes118

  • Size

    3.4MB

  • Sample

    240604-bjt7gsgf97

  • MD5

    933e28bf7e7d0d53cdef570227d3a349

  • SHA1

    1ad19dab2b3727edc659f5dec7194889fb42b55b

  • SHA256

    975682236ce4296dec49a50c144279d39c7ddc3eb16416c996ce52c4798a21af

  • SHA512

    e0e04647545bcc805ba764ed6b453ca607c144569a7deb0c73c3fba76c13d949048cc34a2cff7fb06102f0b972d47f73911851721a761bb9ab46551f01311fdf

  • SSDEEP

    98304:Bzr0juFriv+ys5laVQtuu6wiyj42u4zSeSTnq:VuWzHwE9LiyDiq

Score
7/10

Malware Config

Targets

    • Target

      933e28bf7e7d0d53cdef570227d3a349_JaffaCakes118

    • Size

      3.4MB

    • MD5

      933e28bf7e7d0d53cdef570227d3a349

    • SHA1

      1ad19dab2b3727edc659f5dec7194889fb42b55b

    • SHA256

      975682236ce4296dec49a50c144279d39c7ddc3eb16416c996ce52c4798a21af

    • SHA512

      e0e04647545bcc805ba764ed6b453ca607c144569a7deb0c73c3fba76c13d949048cc34a2cff7fb06102f0b972d47f73911851721a761bb9ab46551f01311fdf

    • SSDEEP

      98304:Bzr0juFriv+ys5laVQtuu6wiyj42u4zSeSTnq:VuWzHwE9LiyDiq

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks