Overview

overview

7

Static

static

7

269914ad9e...18.exe

windows7-x64

7

269914ad9e...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    269914ad9ed8f20c00b52dc59b07c5ad_JaffaCakes118

  • Size

    74KB

  • Sample

    240704-3affhsvfml

  • MD5

    269914ad9ed8f20c00b52dc59b07c5ad

  • SHA1

    fba71008dcfdd3887cdc0198036dbf70d6d5bca3

  • SHA256

    8576920ee073f6400f98d1b86e2ff46dccfda9abcfad0055f0d48980a68884c5

  • SHA512

    2f8a157c52e6c3aaf4ee329eef39089888134dd3e8cef962f7652be92f53318c4a5033bebb94e671f6682725a41f066b608c72ed63a216d12cffcfb035987fca

  • SSDEEP

    1536:/OaP0Su5IdbE66FFr8J7/P41sP+KYewDHn/7/:hUWdgFr8hHX+KGDHT/

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      269914ad9ed8f20c00b52dc59b07c5ad_JaffaCakes118

    • Size

      74KB

    • MD5

      269914ad9ed8f20c00b52dc59b07c5ad

    • SHA1

      fba71008dcfdd3887cdc0198036dbf70d6d5bca3

    • SHA256

      8576920ee073f6400f98d1b86e2ff46dccfda9abcfad0055f0d48980a68884c5

    • SHA512

      2f8a157c52e6c3aaf4ee329eef39089888134dd3e8cef962f7652be92f53318c4a5033bebb94e671f6682725a41f066b608c72ed63a216d12cffcfb035987fca

    • SSDEEP

      1536:/OaP0Su5IdbE66FFr8J7/P41sP+KYewDHn/7/:hUWdgFr8hHX+KGDHT/

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks