General

  • Target

    a3d39586eff28151eb6ac70d8d5a3ca3_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240613-e51g6sxgqq

  • MD5

    a3d39586eff28151eb6ac70d8d5a3ca3

  • SHA1

    59459a70a135da68745fb61638c6a47b3b5a74a6

  • SHA256

    924e79156b42874f7eeb15dfead46048ec48cb29f3d0a11151c19d48a1c418ad

  • SHA512

    f24d84f27e181768882e5b72771ba45ab74fef591d2ec32240808231a7a18bdcf73ac0429845b91b4361340cecb049b05139799438588aca7bbe56ae2478d57a

  • SSDEEP

    98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDk:yzDiNyiXfGDva

Score
7/10

Malware Config

Targets

    • Target

      a3d39586eff28151eb6ac70d8d5a3ca3_JaffaCakes118

    • Size

      4.7MB

    • MD5

      a3d39586eff28151eb6ac70d8d5a3ca3

    • SHA1

      59459a70a135da68745fb61638c6a47b3b5a74a6

    • SHA256

      924e79156b42874f7eeb15dfead46048ec48cb29f3d0a11151c19d48a1c418ad

    • SHA512

      f24d84f27e181768882e5b72771ba45ab74fef591d2ec32240808231a7a18bdcf73ac0429845b91b4361340cecb049b05139799438588aca7bbe56ae2478d57a

    • SSDEEP

      98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDk:yzDiNyiXfGDva

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks