15cfbb10c7d57ac85561df428563b1cd2438bac48862bbf3036e3700e7e36745 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

27c916afa6...18.exe

windows7-x64

7

27c916afa6...18.exe

windows10-2004-x64

7

Sharing

General

Target

27c916afa6ee3bdc238da286659e20ba_JaffaCakes118
Size

79KB
Sample

240706-jm2pqsteje
MD5

27c916afa6ee3bdc238da286659e20ba
SHA1

c4313e35bdf6d17f11c31f67e966544b26261263
SHA256

15cfbb10c7d57ac85561df428563b1cd2438bac48862bbf3036e3700e7e36745
SHA512

334e2ed6083f388dfe15f23d7de4a5140acb0be751e57c02da01e78ecb62b19bc236e41762cd216e35751d28abc5f4652b154c811ced80a0f890b47d08844fd0
SSDEEP

1536:IHTdVjDMIeEwHGgR92mIA7pt50IPHUlgc1oSmcqbHbuhYU5jZc57s6gQMe:ITM2wmoe+tL/iVNmG3jZcS6VMe

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

27c916afa6ee3bdc238da286659e20ba_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

27c916afa6ee3bdc238da286659e20ba_JaffaCakes118.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  27c916afa6ee3bdc238da286659e20ba_JaffaCakes118
- Size
  
  79KB
- MD5
  
  27c916afa6ee3bdc238da286659e20ba
- SHA1
  
  c4313e35bdf6d17f11c31f67e966544b26261263
- SHA256
  
  15cfbb10c7d57ac85561df428563b1cd2438bac48862bbf3036e3700e7e36745
- SHA512
  
  334e2ed6083f388dfe15f23d7de4a5140acb0be751e57c02da01e78ecb62b19bc236e41762cd216e35751d28abc5f4652b154c811ced80a0f890b47d08844fd0
- SSDEEP
  
  1536:IHTdVjDMIeEwHGgR92mIA7pt50IPHUlgc1oSmcqbHbuhYU5jZc57s6gQMe:ITM2wmoe+tL/iVNmG3jZcS6VMe
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy