bd8fae1dd44c85dbe490de39bbf362e62b5d05e09b8d5cfabf92964b958226d7 | Triage

Submit
Reports

Overview

overview

Static

static

5

157ecd0bbf...18.exe

windows7-x64

157ecd0bbf...18.exe

windows10-2004-x64

Sharing

General

Target

157ecd0bbfe6b65910880f7f9a374019_JaffaCakes118
Size

960KB
Sample

241005-azksbazbrb
MD5

157ecd0bbfe6b65910880f7f9a374019
SHA1

38828088dbf1992e52fa299b95d7e03f13068e56
SHA256

bd8fae1dd44c85dbe490de39bbf362e62b5d05e09b8d5cfabf92964b958226d7
SHA512

3f1bb5d5fd853ea4edf219e6fb11dafa359baecf44a313681246bf7e05c47b1a1d9f315f9da403106df6b95dd7d178f33f5360178e7fe0401ba31059840c8c35
SSDEEP

12288:X6Wq4aaE6KwyF5L0Y2D1PqLb6Wq4aaE6KwyF5L0Y2D1PqLx6Wq4aaE6KwyF5L0Ye:1thEVaPqLBthEVaPqLHthEVaPqLTthE

Score

10^/10

discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

157ecd0bbfe6b65910880f7f9a374019_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

157ecd0bbfe6b65910880f7f9a374019_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  157ecd0bbfe6b65910880f7f9a374019_JaffaCakes118
- Size
  
  960KB
- MD5
  
  157ecd0bbfe6b65910880f7f9a374019
- SHA1
  
  38828088dbf1992e52fa299b95d7e03f13068e56
- SHA256
  
  bd8fae1dd44c85dbe490de39bbf362e62b5d05e09b8d5cfabf92964b958226d7
- SHA512
  
  3f1bb5d5fd853ea4edf219e6fb11dafa359baecf44a313681246bf7e05c47b1a1d9f315f9da403106df6b95dd7d178f33f5360178e7fe0401ba31059840c8c35
- SSDEEP
  
  12288:X6Wq4aaE6KwyF5L0Y2D1PqLb6Wq4aaE6KwyF5L0Y2D1PqLx6Wq4aaE6KwyF5L0Ye:1thEVaPqLBthEVaPqLHthEVaPqLTthE
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy