General

  • Target

    8472116ab19bb6d59dc06569fac4326e_JaffaCakes118

  • Size

    340KB

  • Sample

    240530-rmpn6sbd4s

  • MD5

    8472116ab19bb6d59dc06569fac4326e

  • SHA1

    186422d2977a959b34ef1d6d22ba4f716798109e

  • SHA256

    fa9100974eee48fb354bff0bd3d10d6b5d6ff64f44938b39f85c17d99a3a2591

  • SHA512

    aa67ba9c809a55f7a471a72cb5ab3ba9aaad2dcb7bc19b7802b3190b37fdc666a901dcd2d7cf3525e5cb62d3af480a4c8b2ebe4fc544f676c66cddae2cb1740c

  • SSDEEP

    3072:F4i+9QCJHNEQ05AxsN5quPFKlAE81s7xa8FT18jgUyAt2DFQQ1iLRSBApJxVXhCg:h+9QW4r7FGAE8oh8jyGQ1PAjXYMQC

Score
7/10

Malware Config

Targets

    • Target

      8472116ab19bb6d59dc06569fac4326e_JaffaCakes118

    • Size

      340KB

    • MD5

      8472116ab19bb6d59dc06569fac4326e

    • SHA1

      186422d2977a959b34ef1d6d22ba4f716798109e

    • SHA256

      fa9100974eee48fb354bff0bd3d10d6b5d6ff64f44938b39f85c17d99a3a2591

    • SHA512

      aa67ba9c809a55f7a471a72cb5ab3ba9aaad2dcb7bc19b7802b3190b37fdc666a901dcd2d7cf3525e5cb62d3af480a4c8b2ebe4fc544f676c66cddae2cb1740c

    • SSDEEP

      3072:F4i+9QCJHNEQ05AxsN5quPFKlAE81s7xa8FT18jgUyAt2DFQQ1iLRSBApJxVXhCg:h+9QW4r7FGAE8oh8jyGQ1PAjXYMQC

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks