Overview

overview

7

Static

static

7

dd224c46d3...18.exe

windows7-x64

7

dd224c46d3...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    dd224c46d3ee13ef812586a70e1aeb93_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240912-11dnhaxdlj

  • MD5

    dd224c46d3ee13ef812586a70e1aeb93

  • SHA1

    211836f3c133f23d044dd47db05089260ab6caa1

  • SHA256

    e0a07f7a45e82909d054a7aa63f49cc56208a08901f260c7b9d4aa010ab2401c

  • SHA512

    2373ac7074f12756aad20f6510ef5b1d80e0e5ecdf6eef2b9ca4a60f2b83073d3d98e16982255c8341695110a659e18dad11f0a0328501ec18ff78321be73ef2

  • SSDEEP

    98304:N4POBl1A91R1ymTND2oELtX/6jh/FGZTI2qijLcq0imSTn+:K2Bl1wlNaAjhtGZTnjjLii3+

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      dd224c46d3ee13ef812586a70e1aeb93_JaffaCakes118

    • Size

      4.7MB

    • MD5

      dd224c46d3ee13ef812586a70e1aeb93

    • SHA1

      211836f3c133f23d044dd47db05089260ab6caa1

    • SHA256

      e0a07f7a45e82909d054a7aa63f49cc56208a08901f260c7b9d4aa010ab2401c

    • SHA512

      2373ac7074f12756aad20f6510ef5b1d80e0e5ecdf6eef2b9ca4a60f2b83073d3d98e16982255c8341695110a659e18dad11f0a0328501ec18ff78321be73ef2

    • SSDEEP

      98304:N4POBl1A91R1ymTND2oELtX/6jh/FGZTI2qijLcq0imSTn+:K2Bl1wlNaAjhtGZTnjjLii3+

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks