Overview

overview

7

Static

static

3

e9c7964fa9...18.exe

windows7-x64

7

e9c7964fa9...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9c7964fa9cf03ebac5dc49a4ef04a51_JaffaCakes118

  • Size

    427KB

  • Sample

    240409-mgbsxafh8x

  • MD5

    e9c7964fa9cf03ebac5dc49a4ef04a51

  • SHA1

    46ecc4897a5ea9f90a51beca89407189e92dd489

  • SHA256

    e366353e819ba1281e7c3c6ebc8f03e5e3fd443007dda00f5c881854c7e682d8

  • SHA512

    2f4e1c8f208a46d9fec3957595fcb028c95163c0731edabe5fc82ae2b73c2376dbe22f9d6bd34eff90a6d157ae39493bcd672ce52bc57e7b8ff53df93d281e74

  • SSDEEP

    12288:ig/xkJLiynXvqjggpl57rrpmNQp2YIGRY:eLrwlOuX

Score
7/10
upx

Malware Config

Targets

    • Target

      e9c7964fa9cf03ebac5dc49a4ef04a51_JaffaCakes118

    • Size

      427KB

    • MD5

      e9c7964fa9cf03ebac5dc49a4ef04a51

    • SHA1

      46ecc4897a5ea9f90a51beca89407189e92dd489

    • SHA256

      e366353e819ba1281e7c3c6ebc8f03e5e3fd443007dda00f5c881854c7e682d8

    • SHA512

      2f4e1c8f208a46d9fec3957595fcb028c95163c0731edabe5fc82ae2b73c2376dbe22f9d6bd34eff90a6d157ae39493bcd672ce52bc57e7b8ff53df93d281e74

    • SSDEEP

      12288:ig/xkJLiynXvqjggpl57rrpmNQp2YIGRY:eLrwlOuX

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks