Overview

overview

10

Static

static

7

ee98a8106c...18.exe

windows7-x64

10

ee98a8106c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee98a8106ced08c4bd967cf0819be688_JaffaCakes118

  • Size

    49KB

  • Sample

    240920-2yaz9ssgrb

  • MD5

    ee98a8106ced08c4bd967cf0819be688

  • SHA1

    57b18219c3870cbce6515299e96040ab63996f64

  • SHA256

    908b0754e44ac097184f007e466f0d7480ccfcf8129c0cefc7aa731f6c7a9ae7

  • SHA512

    cc8a11c4e0de2bab367eef14dd439821e1f2c5838404f906265b897594951a4d080075c4d2b029f8b06fbfc58a66404c6507387c5e5665abd4b3a0e36070d33e

  • SSDEEP

    768:y4y41BanN21UeaU8QWyC3rrgTIep6IQZMosPNut:y9mBanwOU8DzrrgTdxNu

Score
10/10
discoveryevasionspywarestealerupx

Malware Config

Targets

    • Target

      ee98a8106ced08c4bd967cf0819be688_JaffaCakes118

    • Size

      49KB

    • MD5

      ee98a8106ced08c4bd967cf0819be688

    • SHA1

      57b18219c3870cbce6515299e96040ab63996f64

    • SHA256

      908b0754e44ac097184f007e466f0d7480ccfcf8129c0cefc7aa731f6c7a9ae7

    • SHA512

      cc8a11c4e0de2bab367eef14dd439821e1f2c5838404f906265b897594951a4d080075c4d2b029f8b06fbfc58a66404c6507387c5e5665abd4b3a0e36070d33e

    • SSDEEP

      768:y4y41BanN21UeaU8QWyC3rrgTIep6IQZMosPNut:y9mBanwOU8DzrrgTdxNu

    Score
    10/10
    discoveryevasionspywarestealerupx

    • Modifies firewall policy service

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks