Overview

overview

7

Static

static

7

efmm230.exe

windows7-x64

7

efmm230.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5a3fa520ec60dbea6afaf43a61716e49_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240719-drpyvatclb

  • MD5

    5a3fa520ec60dbea6afaf43a61716e49

  • SHA1

    de96da71ad6a73b0bbeee65434eba365992469a2

  • SHA256

    052ce0aef37537342850a662a5b670344551ee8c9cf017d0a5c5b5264899c6b7

  • SHA512

    2b427aaa1b377fe020573c5ef0df2a6cd749dd3dfe7ee6d16ce44b47542ce33d5aa7ad6193aa279844e8a8e7062475d6c6c95ed4852744ec4de467d0027ee147

  • SSDEEP

    24576:iKFBnx6ZWfClsLMqyEaDOSagu4yO/e/HgeKhOwIWELc:Pnx8yksIq0jaF4VyKhpz

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      efmm230.exe

    • Size

      1.1MB

    • MD5

      dfe0efebdf64469ccf7282b725adc003

    • SHA1

      ad6937e0b3a73e448711108a7b9f1c6be59b3970

    • SHA256

      e4ddd647667a2cd3294989a471593d32cd26cfa0ec8a04abc3f883cb847474c4

    • SHA512

      09deb6720334d29a7cf862a0c10529a7d993d134432ed50c80887c4b247cf89105dd692dc792b8cedbd3bdd4b9dfd81e77893a5115b6b40aad5e06599d361994

    • SSDEEP

      24576:LSvqga2VGuOEFSclcdGz3P7hHXa40eZH6onQpoxg:Wp0uOEFGdQ195lg

    Score
    7/10
    discoveryupx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks