Overview

overview

8

Static

static

3

289d0201dc...18.exe

windows7-x64

8

289d0201dc...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    289d0201dc375d490e5f35b2ee7bbe53_JaffaCakes118

  • Size

    184KB

  • Sample

    240509-grdscsdf4w

  • MD5

    289d0201dc375d490e5f35b2ee7bbe53

  • SHA1

    3b54d96e4a0967fb966f498edb4fa41ec293bd9c

  • SHA256

    ca175a06f93dd9d3a0e8c56d24dbecaec86b14c248413d9b17225a404a8355d7

  • SHA512

    f57c6816dabc6aff6e5bac9bda45f62a07a2b1ea8f500da98ee6d1f91e2b20afbb27121a9b623330199f634b6c0b75654df8e19b7816dcd203eb0e61250e3797

  • SSDEEP

    3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3L:/7BSH8zUB+nGESaaRvoB7FJNndn+

Score
8/10
execution

Malware Config

Targets

    • Target

      289d0201dc375d490e5f35b2ee7bbe53_JaffaCakes118

    • Size

      184KB

    • MD5

      289d0201dc375d490e5f35b2ee7bbe53

    • SHA1

      3b54d96e4a0967fb966f498edb4fa41ec293bd9c

    • SHA256

      ca175a06f93dd9d3a0e8c56d24dbecaec86b14c248413d9b17225a404a8355d7

    • SHA512

      f57c6816dabc6aff6e5bac9bda45f62a07a2b1ea8f500da98ee6d1f91e2b20afbb27121a9b623330199f634b6c0b75654df8e19b7816dcd203eb0e61250e3797

    • SSDEEP

      3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3L:/7BSH8zUB+nGESaaRvoB7FJNndn+

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks