Overview

overview

10

Static

static

3

2ee921b305...18.exe

windows7-x64

10

2ee921b305...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2ee921b3054e3ca19ef6bc2b0a1f52a1_JaffaCakes118

  • Size

    14KB

  • Sample

    240330-abn5tsdc43

  • MD5

    2ee921b3054e3ca19ef6bc2b0a1f52a1

  • SHA1

    5034c1198a0b929dbaef92fe0044513d6ad953e6

  • SHA256

    915d419715eef666c30a7aa6f1530f90e755b66ca4ae0f95c3ced979ecff0b7d

  • SHA512

    120238fa3cde2d7cd64b876bec3770b5e65fa65951ae6bbe956280cd1a156182b945bb02f4a029ce4a51443a0a7a1a707a8c127be10cd9213f2ce4f31b9fcb47

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjK7aylryylFyylYLlmylylyy9lmplyEJy:v+dAURFxna4QAPQlYg7aylryylFyylYG

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      2ee921b3054e3ca19ef6bc2b0a1f52a1_JaffaCakes118

    • Size

      14KB

    • MD5

      2ee921b3054e3ca19ef6bc2b0a1f52a1

    • SHA1

      5034c1198a0b929dbaef92fe0044513d6ad953e6

    • SHA256

      915d419715eef666c30a7aa6f1530f90e755b66ca4ae0f95c3ced979ecff0b7d

    • SHA512

      120238fa3cde2d7cd64b876bec3770b5e65fa65951ae6bbe956280cd1a156182b945bb02f4a029ce4a51443a0a7a1a707a8c127be10cd9213f2ce4f31b9fcb47

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjK7aylryylFyylYLlmylylyy9lmplyEJy:v+dAURFxna4QAPQlYg7aylryylFyylYG

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks