8ec840cc30f378772b03b2f11cfbedf36e8ed61c7edf782033ee0b18aa5391f1 | Triage

Submit
Reports

Overview

overview

Static

static

3

edbf58654f...18.exe

windows7-x64

edbf58654f...18.exe

windows10-2004-x64

Sharing

General

Target

edbf58654f7603f4ade4de03399787a9_JaffaCakes118
Size

64KB
Sample

240411-swnnxaed35
MD5

edbf58654f7603f4ade4de03399787a9
SHA1

bb3b6435cebd8ffa817d0eaf6dc838a13a63ca1f
SHA256

8ec840cc30f378772b03b2f11cfbedf36e8ed61c7edf782033ee0b18aa5391f1
SHA512

85defd9ababba873d3d2a5c2be44bc404ca9cf25bd90ef0e57eb664c0a1ae71775855dfe37c2883b725628aa75d155bbcfca8c1977d865c23a06123070bf77ac
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/J/xKzi+5uhOIv:V3c1fP4AJJv45mKO+Upv

Score

10^/10

evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

edbf58654f7603f4ade4de03399787a9_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

edbf58654f7603f4ade4de03399787a9_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  edbf58654f7603f4ade4de03399787a9_JaffaCakes118
- Size
  
  64KB
- MD5
  
  edbf58654f7603f4ade4de03399787a9
- SHA1
  
  bb3b6435cebd8ffa817d0eaf6dc838a13a63ca1f
- SHA256
  
  8ec840cc30f378772b03b2f11cfbedf36e8ed61c7edf782033ee0b18aa5391f1
- SHA512
  
  85defd9ababba873d3d2a5c2be44bc404ca9cf25bd90ef0e57eb664c0a1ae71775855dfe37c2883b725628aa75d155bbcfca8c1977d865c23a06123070bf77ac
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/J/xKzi+5uhOIv:V3c1fP4AJJv45mKO+Upv
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy