Overview

overview

9

Static

static

7

351d8735db...18.exe

windows7-x64

9

351d8735db...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    351d8735dbab09c8237a9bc46e5a2c45_JaffaCakes118

  • Size

    466KB

  • Sample

    240710-rtw2tsvhjf

  • MD5

    351d8735dbab09c8237a9bc46e5a2c45

  • SHA1

    652b6627cf49cd71540f5fec4c63fcb99570e65d

  • SHA256

    b7e80fd57af4490345d48492ef94f2e16c33278a190d5b8a24b4ca70b2b59b1a

  • SHA512

    bf2d17368ae10f76a575e68456604a3ff6f6fd4d2be4d2a1917f81e9bdd1144845d4e44917c277f424be6f6c2a511c366eba42d4420a96af3f392cc94f18957d

  • SSDEEP

    6144:sMIAJz0r5mJ5x1KTfVm8/1mFwq1iftIDmzOJvZzVVt4E3tH4mGtTyN1pH+rTz:d29dfVXfAmzIZRVtz14n7T

Score
9/10
evasionupx

Malware Config

Targets

    • Target

      351d8735dbab09c8237a9bc46e5a2c45_JaffaCakes118

    • Size

      466KB

    • MD5

      351d8735dbab09c8237a9bc46e5a2c45

    • SHA1

      652b6627cf49cd71540f5fec4c63fcb99570e65d

    • SHA256

      b7e80fd57af4490345d48492ef94f2e16c33278a190d5b8a24b4ca70b2b59b1a

    • SHA512

      bf2d17368ae10f76a575e68456604a3ff6f6fd4d2be4d2a1917f81e9bdd1144845d4e44917c277f424be6f6c2a511c366eba42d4420a96af3f392cc94f18957d

    • SSDEEP

      6144:sMIAJz0r5mJ5x1KTfVm8/1mFwq1iftIDmzOJvZzVVt4E3tH4mGtTyN1pH+rTz:d29dfVXfAmzIZRVtz14n7T

    Score
    9/10
    evasionupx

    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

      evasion

    • Enumerates VirtualBox registry keys

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks