Overview

overview

10

Static

static

7

421433ee00...18.exe

windows7-x64

10

421433ee00...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    421433ee000753bdbe2c701a0a812220_JaffaCakes118

  • Size

    18.0MB

  • Sample

    240713-rv3k1awgpf

  • MD5

    421433ee000753bdbe2c701a0a812220

  • SHA1

    a9b6d6843b017f1c3f9beea3b66a9eac5e0fb67c

  • SHA256

    bcb5e2199b2696fb756b1f775ca14c0cf1f3444e1e6a0780be092193208c8b06

  • SHA512

    7cdaa6530c71da9bc9f75c26b079b3bb79ffc15a0385fffe4adee878100fc8ef92e019ed15d90152a2968e0cdcff7ec17e284167ece3fa515202b19fb69a88eb

  • SSDEEP

    3072:Zmdar7uI34zJsYgSL6oXn9H3EVdCAqao+zKd3:Zmsr7o9s6B0V4AqaN

Score
10/10
evasionspywarestealerupx

Malware Config

Targets

    • Target

      421433ee000753bdbe2c701a0a812220_JaffaCakes118

    • Size

      18.0MB

    • MD5

      421433ee000753bdbe2c701a0a812220

    • SHA1

      a9b6d6843b017f1c3f9beea3b66a9eac5e0fb67c

    • SHA256

      bcb5e2199b2696fb756b1f775ca14c0cf1f3444e1e6a0780be092193208c8b06

    • SHA512

      7cdaa6530c71da9bc9f75c26b079b3bb79ffc15a0385fffe4adee878100fc8ef92e019ed15d90152a2968e0cdcff7ec17e284167ece3fa515202b19fb69a88eb

    • SSDEEP

      3072:Zmdar7uI34zJsYgSL6oXn9H3EVdCAqao+zKd3:Zmsr7o9s6B0V4AqaN

    Score
    10/10
    evasionspywarestealerupx

    • Modifies firewall policy service

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks