Overview

overview

7

Static

static

3

32e736174e...18.exe

windows7-x64

3

32e736174e...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    32e736174e3fea58e7112000de79de8a_JaffaCakes118

  • Size

    30KB

  • Sample

    240710-cjfjrssbqh

  • MD5

    32e736174e3fea58e7112000de79de8a

  • SHA1

    0f89d34476149125c058a19245023c4b66e91733

  • SHA256

    a37d589c95d31a5635ce73a3be1b96a02788bf22a49cdfeab622dfdff67d2f17

  • SHA512

    b1a1c1be3e533572470deeea51aad5ea4e2ba5f5c0ca94fbfd8d51ae657206f4e2ca4c4a40b2de5863a3cad6ca2dfae6269e945c84819d929e75282df5c3703d

  • SSDEEP

    384:wFyH905eSH8E1xvqXCO25jwHwAax4KL8YRXh4UWJuuZOLwSEuu+hibWZpGhM64t7:wFxRO25Hx4PYPAMXru+hi5xg7

Score
7/10

Malware Config

Targets

    • Target

      32e736174e3fea58e7112000de79de8a_JaffaCakes118

    • Size

      30KB

    • MD5

      32e736174e3fea58e7112000de79de8a

    • SHA1

      0f89d34476149125c058a19245023c4b66e91733

    • SHA256

      a37d589c95d31a5635ce73a3be1b96a02788bf22a49cdfeab622dfdff67d2f17

    • SHA512

      b1a1c1be3e533572470deeea51aad5ea4e2ba5f5c0ca94fbfd8d51ae657206f4e2ca4c4a40b2de5863a3cad6ca2dfae6269e945c84819d929e75282df5c3703d

    • SSDEEP

      384:wFyH905eSH8E1xvqXCO25jwHwAax4KL8YRXh4UWJuuZOLwSEuu+hibWZpGhM64t7:wFxRO25Hx4PYPAMXru+hi5xg7

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks