General

  • Target

    0ee777f69f521afa903d2b653043870d_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240625-vwyj8avhnl

  • MD5

    0ee777f69f521afa903d2b653043870d

  • SHA1

    cff216b42d0c449a2a1c4d247d784431b62c3094

  • SHA256

    5af5c0779e6b7f3831708a9b7d41d390c7e0bfd531102013a5eb176ea309636f

  • SHA512

    c66edcc6ec7b0a5ff6c35445eda744434203fb9c5abb99027d2b79924cb891aca8309eb89e2136f37e3b4b8dd97fe00d3f7a2804fb01c0b803146ce71f736153

  • SSDEEP

    24576:e45ePpJ6YiRBm/Io81tJ2w5a9UOS9AwyI2S+tnBsck2jWKCKuIeH:eJRmCWLQUfaI2S+tWc7W3lIc

Score
9/10

Malware Config

Targets

    • Target

      0ee777f69f521afa903d2b653043870d_JaffaCakes118

    • Size

      1.2MB

    • MD5

      0ee777f69f521afa903d2b653043870d

    • SHA1

      cff216b42d0c449a2a1c4d247d784431b62c3094

    • SHA256

      5af5c0779e6b7f3831708a9b7d41d390c7e0bfd531102013a5eb176ea309636f

    • SHA512

      c66edcc6ec7b0a5ff6c35445eda744434203fb9c5abb99027d2b79924cb891aca8309eb89e2136f37e3b4b8dd97fe00d3f7a2804fb01c0b803146ce71f736153

    • SSDEEP

      24576:e45ePpJ6YiRBm/Io81tJ2w5a9UOS9AwyI2S+tnBsck2jWKCKuIeH:eJRmCWLQUfaI2S+tWc7W3lIc

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

MITRE ATT&CK Enterprise v15

Tasks