Overview

overview

7

Static

static

3

72b5b36496...18.exe

windows7-x64

7

72b5b36496...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72b5b3649666706ae8309c6b8ab19d60_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240525-vzexaacc63

  • MD5

    72b5b3649666706ae8309c6b8ab19d60

  • SHA1

    c90afdcd7a61085ce407994d3fa38d0ada7342d9

  • SHA256

    dc8c92f0249ef5cd59b9a4905cd712748b87ed3f6e42c7e49b4919e327f7d0e4

  • SHA512

    16cf44b3db1bbc4b4f27ca0f7dbc8a94e26e886620a37a9d5fe3071f85b6ae56ce4c3389c46e3175ba8a8b36ce78e01de4a7075bea2e548ea96a103e6d17b3a5

  • SSDEEP

    12288:PsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQq:0V4W8hqBYgnBLfVqx1WjkX

Score
7/10
discovery

Malware Config

Targets

    • Target

      72b5b3649666706ae8309c6b8ab19d60_JaffaCakes118

    • Size

      1.1MB

    • MD5

      72b5b3649666706ae8309c6b8ab19d60

    • SHA1

      c90afdcd7a61085ce407994d3fa38d0ada7342d9

    • SHA256

      dc8c92f0249ef5cd59b9a4905cd712748b87ed3f6e42c7e49b4919e327f7d0e4

    • SHA512

      16cf44b3db1bbc4b4f27ca0f7dbc8a94e26e886620a37a9d5fe3071f85b6ae56ce4c3389c46e3175ba8a8b36ce78e01de4a7075bea2e548ea96a103e6d17b3a5

    • SSDEEP

      12288:PsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQq:0V4W8hqBYgnBLfVqx1WjkX

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks