Overview

overview

8

Static

static

3

fc7597b0b8...18.exe

windows7-x64

8

fc7597b0b8...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fc7597b0b88a9618bda9696fff722f9b_JaffaCakes118

  • Size

    326KB

  • Sample

    240420-lltnvaec3v

  • MD5

    fc7597b0b88a9618bda9696fff722f9b

  • SHA1

    f10ae1044f66c7747334083c7befdc401d31380c

  • SHA256

    ec65ca847fd857634839b697fccd96e6ae94826fb856ea2c1574a2af4579fe09

  • SHA512

    9804953cd7df057bdc8eb6c33b3240c8bf78214a2f33463ec882202ac7e27fe649a3f33bf1284743a90bd8e19af86ba65dcf8661206b3ab550dd498151cfb971

  • SSDEEP

    6144:oaAybCNhxV09h/aFoaAQcH5dvGuyphKoo4OCPZ/kFl:oFFNhxmP/2RAQcvaIEOCPZY

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      fc7597b0b88a9618bda9696fff722f9b_JaffaCakes118

    • Size

      326KB

    • MD5

      fc7597b0b88a9618bda9696fff722f9b

    • SHA1

      f10ae1044f66c7747334083c7befdc401d31380c

    • SHA256

      ec65ca847fd857634839b697fccd96e6ae94826fb856ea2c1574a2af4579fe09

    • SHA512

      9804953cd7df057bdc8eb6c33b3240c8bf78214a2f33463ec882202ac7e27fe649a3f33bf1284743a90bd8e19af86ba65dcf8661206b3ab550dd498151cfb971

    • SSDEEP

      6144:oaAybCNhxV09h/aFoaAQcH5dvGuyphKoo4OCPZ/kFl:oFFNhxmP/2RAQcvaIEOCPZY

    Score
    8/10
    persistenceupx

    • Sets DLL path for service in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks