Overview

overview

7

Static

static

7

226fa8e324...18.exe

windows7-x64

7

226fa8e324...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    226fa8e324b7c4953a99177018423327_JaffaCakes118

  • Size

    13.0MB

  • Sample

    240703-p4bgrswejb

  • MD5

    226fa8e324b7c4953a99177018423327

  • SHA1

    74da3cdbc096a84c274748818f4ac088ef8f761b

  • SHA256

    03383c43b8967bf4102b04165a5096eff9c4050591506c71d43d61c22b607c32

  • SHA512

    e43f7b15d07c2efb92b3392d59ecc98e84129fa348309d4855fe5130df88051024f8383693bdd11a517c23446fdd3f701f2e82848ea0a05527f93dbd4b0a8dba

  • SSDEEP

    6144:hKG1IH2gZ778+JB2u9TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTY:h/JgRjJG

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      226fa8e324b7c4953a99177018423327_JaffaCakes118

    • Size

      13.0MB

    • MD5

      226fa8e324b7c4953a99177018423327

    • SHA1

      74da3cdbc096a84c274748818f4ac088ef8f761b

    • SHA256

      03383c43b8967bf4102b04165a5096eff9c4050591506c71d43d61c22b607c32

    • SHA512

      e43f7b15d07c2efb92b3392d59ecc98e84129fa348309d4855fe5130df88051024f8383693bdd11a517c23446fdd3f701f2e82848ea0a05527f93dbd4b0a8dba

    • SSDEEP

      6144:hKG1IH2gZ778+JB2u9TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTY:h/JgRjJG

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks