Overview

overview

7

Static

static

3

28e8787314...18.exe

windows7-x64

7

28e8787314...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    28e8787314edb580a57efaa9a4fb3a56_JaffaCakes118

  • Size

    256KB

  • Sample

    240706-vfcb2syapc

  • MD5

    28e8787314edb580a57efaa9a4fb3a56

  • SHA1

    277efe9a15c2b918db46e2ea7a491e95d8b313e3

  • SHA256

    85dbeac40124365e84f4f4ff5eb904e9837d3dfac5105d052fdd4103b631907b

  • SHA512

    4436e66df4bb07497b9a5345f57c83964b44722982b373fe592e11accefd827668ff4dbc505434eb452e209ee930998e849d2884194d1a889426a10115dd7529

  • SSDEEP

    6144:bNbIRX2lwvVi912nhMOyy9yyryymyy7nCU:pkXPkehMOyy9yyryymyy7n

Score
7/10
persistence

Malware Config

Targets

    • Target

      28e8787314edb580a57efaa9a4fb3a56_JaffaCakes118

    • Size

      256KB

    • MD5

      28e8787314edb580a57efaa9a4fb3a56

    • SHA1

      277efe9a15c2b918db46e2ea7a491e95d8b313e3

    • SHA256

      85dbeac40124365e84f4f4ff5eb904e9837d3dfac5105d052fdd4103b631907b

    • SHA512

      4436e66df4bb07497b9a5345f57c83964b44722982b373fe592e11accefd827668ff4dbc505434eb452e209ee930998e849d2884194d1a889426a10115dd7529

    • SSDEEP

      6144:bNbIRX2lwvVi912nhMOyy9yyryymyy7nCU:pkXPkehMOyy9yyryymyy7n

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks