f015be3e959f74410712a5cbb42bacda0623b6433c8ab00b4a29319bdece0354 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dcc91b786a...18.exe

windows7-x64

7

dcc91b786a...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

dcc91b786af6d5e98862cdbf7c1b32c4_JaffaCakes118
Size

3.8MB
Sample

240912-wvyn9sxdjc
MD5

dcc91b786af6d5e98862cdbf7c1b32c4
SHA1

f27d0f09dd39ba23e334126e9407f8558bf2b0c0
SHA256

f015be3e959f74410712a5cbb42bacda0623b6433c8ab00b4a29319bdece0354
SHA512

d8181ca27becfbd8a61b3ae64287de83d00375834d4a59de5e5feeb9c137abd751e0bacd3ff0589ac10a1bbbb4e21020af8f0921216aee0f4af4dd13f736fb9c
SSDEEP

98304:uZuarCtWyX0p+tUFHtrXCDHGkSn8b+vPdz:uZHrzyG+2aDHGkS8C1

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dcc91b786af6d5e98862cdbf7c1b32c4_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

dcc91b786af6d5e98862cdbf7c1b32c4_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  dcc91b786af6d5e98862cdbf7c1b32c4_JaffaCakes118
- Size
  
  3.8MB
- MD5
  
  dcc91b786af6d5e98862cdbf7c1b32c4
- SHA1
  
  f27d0f09dd39ba23e334126e9407f8558bf2b0c0
- SHA256
  
  f015be3e959f74410712a5cbb42bacda0623b6433c8ab00b4a29319bdece0354
- SHA512
  
  d8181ca27becfbd8a61b3ae64287de83d00375834d4a59de5e5feeb9c137abd751e0bacd3ff0589ac10a1bbbb4e21020af8f0921216aee0f4af4dd13f736fb9c
- SSDEEP
  
  98304:uZuarCtWyX0p+tUFHtrXCDHGkSn8b+vPdz:uZHrzyG+2aDHGkS8C1
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy