12eea2303be31b629daf8cb7c5de0fb0336bbaa6153133a0acd5244f7af2dcf7 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

8bcc4d1cbe...18.exe

windows7-x64

9

8bcc4d1cbe...18.exe

windows10-2004-x64

9

Sharing

General

Target

8bcc4d1cbecad4721136b590d03a0b6e_JaffaCakes118
Size

624KB
Sample

240601-z1vrcafb2s
MD5

8bcc4d1cbecad4721136b590d03a0b6e
SHA1

705dfb38710b8cd90957b485cb8477259057e981
SHA256

12eea2303be31b629daf8cb7c5de0fb0336bbaa6153133a0acd5244f7af2dcf7
SHA512

fb9f256da109ab4d06089b1794e09d349374ec1f606b5cc435caf7a7d365a3012b154053d273d3a6e3d81562bccc5c626c435be7073770f13f283d13343e4769
SSDEEP

12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM8I:mdZTX7S05tmqrShHPYxbTw3NM8I

Score

9^/10

evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8bcc4d1cbecad4721136b590d03a0b6e_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

8bcc4d1cbecad4721136b590d03a0b6e_JaffaCakes118.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  8bcc4d1cbecad4721136b590d03a0b6e_JaffaCakes118
- Size
  
  624KB
- MD5
  
  8bcc4d1cbecad4721136b590d03a0b6e
- SHA1
  
  705dfb38710b8cd90957b485cb8477259057e981
- SHA256
  
  12eea2303be31b629daf8cb7c5de0fb0336bbaa6153133a0acd5244f7af2dcf7
- SHA512
  
  fb9f256da109ab4d06089b1794e09d349374ec1f606b5cc435caf7a7d365a3012b154053d273d3a6e3d81562bccc5c626c435be7073770f13f283d13343e4769
- SSDEEP
  
  12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM8I:mdZTX7S05tmqrShHPYxbTw3NM8I
Score

9^/10

evasion
- Identifies VirtualBox via ACPI registry values (likely anti-VM)
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy