Overview

overview

7

Static

static

3

694361e48c...18.exe

windows7-x64

7

694361e48c...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    694361e48c77e07c119b751cb245aaf5_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240523-bpghksgd86

  • MD5

    694361e48c77e07c119b751cb245aaf5

  • SHA1

    782bfe5dfa4300b6428f19fccfce7a7a81047b7a

  • SHA256

    8d056b4b8513f3ea1caa57763426920ef7f91c6bcd4b7c3d270c01386a5e8a83

  • SHA512

    21e57c2e977e6018f8b7e59c6748fa24aa3dfaf11c3e22c90dcc178963a552d43aa22f261a39f73b26b0829baddda0d36fda4eb22820a2aa45d3c038d220799d

  • SSDEEP

    12288:PsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQq:0V4W8hqBYgnBLfVqx1WjkX

Score
7/10
discovery

Malware Config

Targets

    • Target

      694361e48c77e07c119b751cb245aaf5_JaffaCakes118

    • Size

      1.1MB

    • MD5

      694361e48c77e07c119b751cb245aaf5

    • SHA1

      782bfe5dfa4300b6428f19fccfce7a7a81047b7a

    • SHA256

      8d056b4b8513f3ea1caa57763426920ef7f91c6bcd4b7c3d270c01386a5e8a83

    • SHA512

      21e57c2e977e6018f8b7e59c6748fa24aa3dfaf11c3e22c90dcc178963a552d43aa22f261a39f73b26b0829baddda0d36fda4eb22820a2aa45d3c038d220799d

    • SSDEEP

      12288:PsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQq:0V4W8hqBYgnBLfVqx1WjkX

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks