94706a6be6c2945c6241d7edfdc75a2966edb83100cb3214ce07602fbc0e335a | Triage

Submit
Reports

Overview

overview

Static

static

5

17145d8d05...18.exe

windows7-x64

17145d8d05...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

17145d8d05df32c2d52f171dac8eb0cf_JaffaCakes118
Size

298KB
Sample

241005-k7q96s1fja
MD5

17145d8d05df32c2d52f171dac8eb0cf
SHA1

743152cb87672085366ccd975ce007df792638ba
SHA256

94706a6be6c2945c6241d7edfdc75a2966edb83100cb3214ce07602fbc0e335a
SHA512

479b97db694c5ddbc7115edbb2d1c911e7204d3e06d7dd683e4176683ad8fe76760376b8611b44ef954af93221fa2b114c5111b53aa54e79375f0a5f45b345c7
SSDEEP

6144:EuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIY4:v6Wq4aaE6KwyF5L0Y2D1PqLt

Score

10^/10

discovery evasion upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

17145d8d05df32c2d52f171dac8eb0cf_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

17145d8d05df32c2d52f171dac8eb0cf_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  17145d8d05df32c2d52f171dac8eb0cf_JaffaCakes118
- Size
  
  298KB
- MD5
  
  17145d8d05df32c2d52f171dac8eb0cf
- SHA1
  
  743152cb87672085366ccd975ce007df792638ba
- SHA256
  
  94706a6be6c2945c6241d7edfdc75a2966edb83100cb3214ce07602fbc0e335a
- SHA512
  
  479b97db694c5ddbc7115edbb2d1c911e7204d3e06d7dd683e4176683ad8fe76760376b8611b44ef954af93221fa2b114c5111b53aa54e79375f0a5f45b345c7
- SSDEEP
  
  6144:EuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIY4:v6Wq4aaE6KwyF5L0Y2D1PqLt
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy