Overview

overview

10

Static

static

7

4cf061a791...18.exe

windows7-x64

10

4cf061a791...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4cf061a791717614b9de855edf762a55_JaffaCakes118

  • Size

    48KB

  • Sample

    240716-fyspeswfmq

  • MD5

    4cf061a791717614b9de855edf762a55

  • SHA1

    96d9b4367c16d2cc845586d61d972780c5def793

  • SHA256

    c78c1946c94582ab24923ab9b98acfc9ff9e4fd1765f11d0ce12a1f4ce2ba37c

  • SHA512

    b646b7c6edd8c0e7870267c5954fe3153b43ab0ee283caf7fb262eb6872552925571bc62912a440378672c895df879f7e46d12ce6278e1e20e76bf56d859e26c

  • SSDEEP

    768:3+aOeVlRcsKie17PgzJfZajwhOn9mBpAnGV14zzkWeFfM8mH/J5Nu:3+9olRTKx1rgkwh5SnU14zeAH/3Nu

Score
10/10
evasionspywarestealerupx

Malware Config

Targets

    • Target

      4cf061a791717614b9de855edf762a55_JaffaCakes118

    • Size

      48KB

    • MD5

      4cf061a791717614b9de855edf762a55

    • SHA1

      96d9b4367c16d2cc845586d61d972780c5def793

    • SHA256

      c78c1946c94582ab24923ab9b98acfc9ff9e4fd1765f11d0ce12a1f4ce2ba37c

    • SHA512

      b646b7c6edd8c0e7870267c5954fe3153b43ab0ee283caf7fb262eb6872552925571bc62912a440378672c895df879f7e46d12ce6278e1e20e76bf56d859e26c

    • SSDEEP

      768:3+aOeVlRcsKie17PgzJfZajwhOn9mBpAnGV14zzkWeFfM8mH/J5Nu:3+9olRTKx1rgkwh5SnU14zeAH/3Nu

    Score
    10/10
    evasionspywarestealerupx

    • Modifies firewall policy service

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks