13a2916ebcfc056c920022e0dfb9bd4cba299f166865c524aec8e946ece8c9f6 | Triage

Submit
Reports

Overview

overview

Static

static

3

edf13b7b27...18.exe

windows7-x64

edf13b7b27...18.exe

windows10-2004-x64

Sharing

General

Target

edf13b7b27885244d111316a0364cae1_JaffaCakes118
Size

64KB
Sample

240411-vs7cysgb48
MD5

edf13b7b27885244d111316a0364cae1
SHA1

a2b7f3b89e1c240cbb707128d8e7057cb2597933
SHA256

13a2916ebcfc056c920022e0dfb9bd4cba299f166865c524aec8e946ece8c9f6
SHA512

550a038a75ae407182049cfe47960f91ee18def275af350ec7f427fff11e4fddbf3e44b12d9a731c95a2076000be53bc17e335c225dca316452c2417ac83086c
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEG:V3c1fP4AJJv45sCcx7JBb/EG

Score

10^/10

evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

edf13b7b27885244d111316a0364cae1_JaffaCakes118.exe

Resource

win7-20240319-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

edf13b7b27885244d111316a0364cae1_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  edf13b7b27885244d111316a0364cae1_JaffaCakes118
- Size
  
  64KB
- MD5
  
  edf13b7b27885244d111316a0364cae1
- SHA1
  
  a2b7f3b89e1c240cbb707128d8e7057cb2597933
- SHA256
  
  13a2916ebcfc056c920022e0dfb9bd4cba299f166865c524aec8e946ece8c9f6
- SHA512
  
  550a038a75ae407182049cfe47960f91ee18def275af350ec7f427fff11e4fddbf3e44b12d9a731c95a2076000be53bc17e335c225dca316452c2417ac83086c
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEG:V3c1fP4AJJv45sCcx7JBb/EG
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy