Overview

overview

6

Static

static

3

eacb96204c...18.exe

windows7-x64

6

eacb96204c...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eacb96204c37322d769015646e9c10b0_JaffaCakes118

  • Size

    5.7MB

  • Sample

    240919-hnbn9swbqg

  • MD5

    eacb96204c37322d769015646e9c10b0

  • SHA1

    64b26d2e138f8d461690f286679c49b8ce443608

  • SHA256

    bc1041efd88db7f9bcb03307d2b4171aed7ec7604ae9a1bf6ff1e65a9df12b0f

  • SHA512

    0ec53d683e45d707e8c6aeb45503a03d5198e7df0e346a01e82926f0fea7054f863f84fe904a32056009c71d29822de3aa3acfa629ce1cca5cff3ef3f9723b72

  • SSDEEP

    98304:9+g5wjPj633hO1YYjcMZXxuBIN73rt4MEs:IPjC3hO1YYYMA873p9

Score
6/10
discovery

Malware Config

Targets

    • Target

      eacb96204c37322d769015646e9c10b0_JaffaCakes118

    • Size

      5.7MB

    • MD5

      eacb96204c37322d769015646e9c10b0

    • SHA1

      64b26d2e138f8d461690f286679c49b8ce443608

    • SHA256

      bc1041efd88db7f9bcb03307d2b4171aed7ec7604ae9a1bf6ff1e65a9df12b0f

    • SHA512

      0ec53d683e45d707e8c6aeb45503a03d5198e7df0e346a01e82926f0fea7054f863f84fe904a32056009c71d29822de3aa3acfa629ce1cca5cff3ef3f9723b72

    • SSDEEP

      98304:9+g5wjPj633hO1YYjcMZXxuBIN73rt4MEs:IPjC3hO1YYYMA873p9

    Score
    6/10
    discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks