Overview

overview

7

Static

static

7

63dddbf851...18.exe

windows7-x64

7

63dddbf851...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63dddbf851109aabbaba99df0b4b3106_JaffaCakes118

  • Size

    2.2MB

  • Sample

    240521-tcsdesba55

  • MD5

    63dddbf851109aabbaba99df0b4b3106

  • SHA1

    2bd0e8db9ff4606eb5ee509b79d8fa5030425dfe

  • SHA256

    0ca99da4150dfdc2d7b55ec1baf001320e4a074528a1e945809dd5dce397293d

  • SHA512

    a9fea562d0a1db5642725ad524c54890457ee309bf05e00123f9554dd83cdae56b682425e3f076301252ee8d2f67e04a7f797045aa4bf377a60d3c1d3276b449

  • SSDEEP

    49152:iY179h6CLZLA7bW8lz/ppLzc9PvAopoLi7ESWjsX0wf8HUNr233FW06qH65vocN:7179hD9AnWcz/ppL49PvAI0b5sX0WAQF

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      63dddbf851109aabbaba99df0b4b3106_JaffaCakes118

    • Size

      2.2MB

    • MD5

      63dddbf851109aabbaba99df0b4b3106

    • SHA1

      2bd0e8db9ff4606eb5ee509b79d8fa5030425dfe

    • SHA256

      0ca99da4150dfdc2d7b55ec1baf001320e4a074528a1e945809dd5dce397293d

    • SHA512

      a9fea562d0a1db5642725ad524c54890457ee309bf05e00123f9554dd83cdae56b682425e3f076301252ee8d2f67e04a7f797045aa4bf377a60d3c1d3276b449

    • SSDEEP

      49152:iY179h6CLZLA7bW8lz/ppLzc9PvAopoLi7ESWjsX0wf8HUNr233FW06qH65vocN:7179hD9AnWcz/ppL49PvAI0b5sX0WAQF

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks