Overview

overview

7

Static

static

3

36d4e6a312...18.exe

windows7-x64

7

36d4e6a312...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    36d4e6a3123818105f4d68a503d5fb6d_JaffaCakes118

  • Size

    186KB

  • Sample

    240710-3grgcswckl

  • MD5

    36d4e6a3123818105f4d68a503d5fb6d

  • SHA1

    9963e10db0e4fae8c3ce8fecce8610ac32435c0c

  • SHA256

    450023c3a643fd0503449f8f0e32526d4964451cb05c9087703c98ad5ac16db0

  • SHA512

    72b0d8f2022d9a0307abde9e1a58ae88bcf86226dcc0d50393f510d4ca5a47fff3065a1a1f7307f11a3413d9ac5c3e1da1b184c6dd27f67847893c5ad2fa8ad1

  • SSDEEP

    3072:w6NMnwX86OcpXCV19Z2rLnahuycC72hwK0xxX4BVZW6iHuJUFKAbJRJ/JAXjlbcH:w6NMnws6R0V1rsna0Fh63yVc59JRJBAa

Score
7/10
upx

Malware Config

Targets

    • Target

      36d4e6a3123818105f4d68a503d5fb6d_JaffaCakes118

    • Size

      186KB

    • MD5

      36d4e6a3123818105f4d68a503d5fb6d

    • SHA1

      9963e10db0e4fae8c3ce8fecce8610ac32435c0c

    • SHA256

      450023c3a643fd0503449f8f0e32526d4964451cb05c9087703c98ad5ac16db0

    • SHA512

      72b0d8f2022d9a0307abde9e1a58ae88bcf86226dcc0d50393f510d4ca5a47fff3065a1a1f7307f11a3413d9ac5c3e1da1b184c6dd27f67847893c5ad2fa8ad1

    • SSDEEP

      3072:w6NMnwX86OcpXCV19Z2rLnahuycC72hwK0xxX4BVZW6iHuJUFKAbJRJ/JAXjlbcH:w6NMnws6R0V1rsna0Fh63yVc59JRJBAa

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks