Overview

overview

7

Static

static

7

cf522c9851...18.exe

windows7-x64

7

cf522c9851...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf522c98516993cddecfa3a587cfaf09_JaffaCakes118

  • Size

    3.8MB

  • Sample

    240906-mc1aps1bjk

  • MD5

    cf522c98516993cddecfa3a587cfaf09

  • SHA1

    7a694b8ceeb78876b7f6ed1a5ee05e60123fa0f9

  • SHA256

    281753a3968196ef241c610baff911f2ac97302ba07611418db576c4c8ff3c08

  • SHA512

    42817e4348dc36fb22fab8cc83fd3098322d3586444a94f94c6d3e6fe4aade2a42b3ff613a2e457af0a720a9d105421c456c845b70b914358f3cf9ec691dcf00

  • SSDEEP

    98304:YYCW7AZ+lOXgwaNxFXQM+KZTAVfWn6VGgreSX:WZXwNNPgM+KKfo6VGgrTX

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      cf522c98516993cddecfa3a587cfaf09_JaffaCakes118

    • Size

      3.8MB

    • MD5

      cf522c98516993cddecfa3a587cfaf09

    • SHA1

      7a694b8ceeb78876b7f6ed1a5ee05e60123fa0f9

    • SHA256

      281753a3968196ef241c610baff911f2ac97302ba07611418db576c4c8ff3c08

    • SHA512

      42817e4348dc36fb22fab8cc83fd3098322d3586444a94f94c6d3e6fe4aade2a42b3ff613a2e457af0a720a9d105421c456c845b70b914358f3cf9ec691dcf00

    • SSDEEP

      98304:YYCW7AZ+lOXgwaNxFXQM+KZTAVfWn6VGgreSX:WZXwNNPgM+KKfo6VGgrTX

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks