Overview

overview

7

Static

static

3

048c5a6495...18.exe

windows7-x64

7

048c5a6495...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    048c5a6495bf4e60271ca27646bb1852_JaffaCakes118

  • Size

    208KB

  • Sample

    240428-gzgtzshg76

  • MD5

    048c5a6495bf4e60271ca27646bb1852

  • SHA1

    62d53899f4fac32ef2d90f0e813518676f3ebc04

  • SHA256

    dabcdd7b6ddd636727db9fc40497ea53098a43206bbf9d85da07b48cf7021823

  • SHA512

    31ce1aa9a5b5c1ac77ac3cf2dc9edaf470a5a91d9d492cc36c3bf91e2ee1145c6234de9556908b27de7e6df0c2acde66cecc5e07bae6b6c2c3516d847aa41719

  • SSDEEP

    3072:qlOmmjXa7d6ri9E1rpt2PCW3bM4tYmh9I5TrooO+8fACQ4pLthEjQT6j:qwDXrJ1ryPCZe+Vog847kEj1

Score
7/10

Malware Config

Targets

    • Target

      048c5a6495bf4e60271ca27646bb1852_JaffaCakes118

    • Size

      208KB

    • MD5

      048c5a6495bf4e60271ca27646bb1852

    • SHA1

      62d53899f4fac32ef2d90f0e813518676f3ebc04

    • SHA256

      dabcdd7b6ddd636727db9fc40497ea53098a43206bbf9d85da07b48cf7021823

    • SHA512

      31ce1aa9a5b5c1ac77ac3cf2dc9edaf470a5a91d9d492cc36c3bf91e2ee1145c6234de9556908b27de7e6df0c2acde66cecc5e07bae6b6c2c3516d847aa41719

    • SSDEEP

      3072:qlOmmjXa7d6ri9E1rpt2PCW3bM4tYmh9I5TrooO+8fACQ4pLthEjQT6j:qwDXrJ1ryPCZe+Vog847kEj1

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks