General

  • Target

    a7b44c0d9c649cac43b1a12d8fe4a766_JaffaCakes118

  • Size

    16.9MB

  • Sample

    240614-ctt5xawapk

  • MD5

    a7b44c0d9c649cac43b1a12d8fe4a766

  • SHA1

    729fdb481d421bc16a273ab666d435da68438396

  • SHA256

    f79fa1440801b100afd8077df3288620b1b5b2bbd6b218cff158fb08c814761a

  • SHA512

    273a7136334979c6a3a990822657d65cb998a52de15089c48e62111dc50f1702d061fc33b77661d749e4e462791b5ff5c90325080bbddcbc8ac30893a486c3a2

  • SSDEEP

    393216:/InpODDnHVpBxsBMFDVPQRSwjfXvggIEsLLXIcn1WEmClCHLf1xQcOPv5h7UPF:eY1pVyjPvggInYcnEEnlgf1xpsv5hYPF

Score
7/10

Malware Config

Targets

    • Target

      MacOS ? Linux/TLauncher-2.53.jar

    • Size

      2.7MB

    • MD5

      8d1c142208dc6f8f8544bf5d5244611d

    • SHA1

      5b92a977d7916bcd45adccc1ca1e621cee47188e

    • SHA256

      59fdbbb0cb54a93293f21970fae0d0cf29a329dddf9a4b7c2f26fc584a4d9813

    • SHA512

      255ffcfe801d21f733fa0923f5b0af1ac655ebcfce39a8ef5d64b4396fc5e7cbceb9a7b35f9781f22a53e24d6a3989161b04614321ebed2a28f3811052ce8320

    • SSDEEP

      49152:Vk1luo9f9mqBSYUOeofAQdRp8DQWwmloFqIivWBBD:6/9f9mqkYbaQ7psW/D

    Score
    7/10
    • Target

      Windows/TLauncher-2.53-Installer-0.4.8-mms.exe

    • Size

      14.7MB

    • MD5

      4acecc29e8197c877ac902b9a5d6f730

    • SHA1

      3b367d693706a7ecbe698984dcc2e6a3b0e34d5b

    • SHA256

      7ba8b3f770219bb98bd6ea5686116b31bc8e56c164935435f0a6170a6be7884b

    • SHA512

      425d6808ea4f347b7b936aea789396cea45bfd6d35d398d4b44a2bbd8538efb7ee6f0f6ae66eb578794652f1d0d442888a9686110cd94694b9215af397c9f6c1

    • SSDEEP

      393216:yVjSERy0k/fsD441ffz4e4oQL1fIiJbSmWIzAtdB7l+SMN3f/lk/l:So+1Hz4e4tgiJ+mlzuB7lpO3f/G/l

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks