Overview

overview

7

Static

static

3

1c34e55682...18.exe

windows7-x64

7

1c34e55682...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1c34e55682487dee9ae784ea85358ce8_JaffaCakes118

  • Size

    132KB

  • Sample

    240701-x2t54avdle

  • MD5

    1c34e55682487dee9ae784ea85358ce8

  • SHA1

    e19147fd923b21d4c5fe731530717bfda714b094

  • SHA256

    3469b1569431213677204c57097bfeee881e1f3b66bdffaa2f1c99f2fc0bd8e5

  • SHA512

    c02cb9347ec837a0c365caada8106f811eeb5b43c27b399ca26decab459d9936a478420b988d65c48841015924262a560e2564b0794d2f5a419f524248f25979

  • SSDEEP

    3072:FwD0Kmitz9vVbTjEVDf2xU9P5tKzGB3j7PrzXpj/d:icitBVLb0lpj

Score
7/10
upx

Malware Config

Targets

    • Target

      1c34e55682487dee9ae784ea85358ce8_JaffaCakes118

    • Size

      132KB

    • MD5

      1c34e55682487dee9ae784ea85358ce8

    • SHA1

      e19147fd923b21d4c5fe731530717bfda714b094

    • SHA256

      3469b1569431213677204c57097bfeee881e1f3b66bdffaa2f1c99f2fc0bd8e5

    • SHA512

      c02cb9347ec837a0c365caada8106f811eeb5b43c27b399ca26decab459d9936a478420b988d65c48841015924262a560e2564b0794d2f5a419f524248f25979

    • SSDEEP

      3072:FwD0Kmitz9vVbTjEVDf2xU9P5tKzGB3j7PrzXpj/d:icitBVLb0lpj

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks