Overview

overview

10

Static

static

7

b8384d985c...18.exe

windows7-x64

10

b8384d985c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b8384d985c17401ce0d1fabb4add0da7_JaffaCakes118

  • Size

    49KB

  • Sample

    240822-s753bsvfmc

  • MD5

    b8384d985c17401ce0d1fabb4add0da7

  • SHA1

    34b775d2d802f20f10bdaf29ba59919c209af2d6

  • SHA256

    7a0b890b3bbd6ab4826cebd057c15cf4d7901e0a4b51ed5100f0edadbb3e9a17

  • SHA512

    4dd826745e5f9a2b6bb37b776b3eafe82c5f95c35f873848eda8fc9a237021622a2d90fbfc86ae42bd1472312fc80801c688573107691fcd1d33c4e543f82585

  • SSDEEP

    1536:6IhFuxWSdf0mOguTLscb/HhK81lOc9Nu:Oxd8maLsbCl9Nu

Score
10/10
discoveryevasionspywarestealerupx

Malware Config

Targets

    • Target

      b8384d985c17401ce0d1fabb4add0da7_JaffaCakes118

    • Size

      49KB

    • MD5

      b8384d985c17401ce0d1fabb4add0da7

    • SHA1

      34b775d2d802f20f10bdaf29ba59919c209af2d6

    • SHA256

      7a0b890b3bbd6ab4826cebd057c15cf4d7901e0a4b51ed5100f0edadbb3e9a17

    • SHA512

      4dd826745e5f9a2b6bb37b776b3eafe82c5f95c35f873848eda8fc9a237021622a2d90fbfc86ae42bd1472312fc80801c688573107691fcd1d33c4e543f82585

    • SSDEEP

      1536:6IhFuxWSdf0mOguTLscb/HhK81lOc9Nu:Oxd8maLsbCl9Nu

    Score
    10/10
    discoveryevasionspywarestealerupx

    • Modifies firewall policy service

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks