Overview

overview

7

Static

static

7

03862e9420...18.exe

windows7-x64

7

03862e9420...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    03862e9420daf7fcf568c86c897e3de6_JaffaCakes118

  • Size

    30KB

  • Sample

    240620-gxv9laxeqm

  • MD5

    03862e9420daf7fcf568c86c897e3de6

  • SHA1

    52629bd04e06f6197a33e65f3f976360cea1a61d

  • SHA256

    8642381442a29194522d3fc71a651fe1de3cdb785a72025cee31b5e147166289

  • SHA512

    6979bac479d63f7fed2c40832c857bda68916747d54e992acff17080232130b4fa567230ef2f92004029613491f4dc9e31b3c42fc2cbcfdd51b9deb9c168952e

  • SSDEEP

    768:4YHatzHhVyUXFYx5NTAwHFtQ9v7253m12ZGX:4QatlVvYx5N0wHe6W2cX

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      03862e9420daf7fcf568c86c897e3de6_JaffaCakes118

    • Size

      30KB

    • MD5

      03862e9420daf7fcf568c86c897e3de6

    • SHA1

      52629bd04e06f6197a33e65f3f976360cea1a61d

    • SHA256

      8642381442a29194522d3fc71a651fe1de3cdb785a72025cee31b5e147166289

    • SHA512

      6979bac479d63f7fed2c40832c857bda68916747d54e992acff17080232130b4fa567230ef2f92004029613491f4dc9e31b3c42fc2cbcfdd51b9deb9c168952e

    • SSDEEP

      768:4YHatzHhVyUXFYx5NTAwHFtQ9v7253m12ZGX:4QatlVvYx5N0wHe6W2cX

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks