Overview

overview

7

Static

static

7

ae6202d3c5...18.exe

windows7-x64

7

ae6202d3c5...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ae6202d3c590f39effb9b3fb00374754_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240615-pfhk6stfrr

  • MD5

    ae6202d3c590f39effb9b3fb00374754

  • SHA1

    3a05c250251958a47b4131162789c88ec468e375

  • SHA256

    8909d8a11ceee55bafd7a2f4321494b01ea7e392dd96f4931a9c32c04ebf7f33

  • SHA512

    7ba05feea973f2bbc5de8ce6d0d53d877dae3c4c77d3bac8968a0f8cbb4763141257758dadbbe7d9745d59dc0207e651e6884efcbf0a2cbfd39f5a936e3c4c20

  • SSDEEP

    98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHD7:yzDiNyiXfGDvh

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      ae6202d3c590f39effb9b3fb00374754_JaffaCakes118

    • Size

      4.7MB

    • MD5

      ae6202d3c590f39effb9b3fb00374754

    • SHA1

      3a05c250251958a47b4131162789c88ec468e375

    • SHA256

      8909d8a11ceee55bafd7a2f4321494b01ea7e392dd96f4931a9c32c04ebf7f33

    • SHA512

      7ba05feea973f2bbc5de8ce6d0d53d877dae3c4c77d3bac8968a0f8cbb4763141257758dadbbe7d9745d59dc0207e651e6884efcbf0a2cbfd39f5a936e3c4c20

    • SSDEEP

      98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHD7:yzDiNyiXfGDvh

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks