Overview

overview

7

Static

static

3

0e4350ed87...18.exe

windows7-x64

7

0e4350ed87...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0e4350ed87dbb180b7b74f0c2fe02f42_JaffaCakes118

  • Size

    388KB

  • Sample

    240625-qt8vyssgje

  • MD5

    0e4350ed87dbb180b7b74f0c2fe02f42

  • SHA1

    d9ecee0d9ed754a22c4eede70535e75b252a8c2f

  • SHA256

    05a800bb0a40700fdfadd866a56da4b5e9a47f93af214a18665b3abf904bfaa8

  • SHA512

    9519f9b97f4b9694292a305af55ed5f1e7c42ca316ed23d618dd5a14d3997ce344d95b84bea9102a2908f961e05baf51161071016ea2ce323054541058d8861b

  • SSDEEP

    6144:6ZFhtnLFj1IXxOW9jedM+25RISoh9b3TbU1fgIOg2Y9RGHZDYK:oSHedM+25RsUfgTQI

Score
7/10
persistence

Malware Config

Targets

    • Target

      0e4350ed87dbb180b7b74f0c2fe02f42_JaffaCakes118

    • Size

      388KB

    • MD5

      0e4350ed87dbb180b7b74f0c2fe02f42

    • SHA1

      d9ecee0d9ed754a22c4eede70535e75b252a8c2f

    • SHA256

      05a800bb0a40700fdfadd866a56da4b5e9a47f93af214a18665b3abf904bfaa8

    • SHA512

      9519f9b97f4b9694292a305af55ed5f1e7c42ca316ed23d618dd5a14d3997ce344d95b84bea9102a2908f961e05baf51161071016ea2ce323054541058d8861b

    • SSDEEP

      6144:6ZFhtnLFj1IXxOW9jedM+25RISoh9b3TbU1fgIOg2Y9RGHZDYK:oSHedM+25RsUfgTQI

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks