Overview

overview

7

Static

static

3

3359aa9f1d...18.exe

windows7-x64

7

3359aa9f1d...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3359aa9f1da47acf7aaf4601f6b09ee9_JaffaCakes118

  • Size

    90KB

  • Sample

    240710-ffh29szama

  • MD5

    3359aa9f1da47acf7aaf4601f6b09ee9

  • SHA1

    60bbfec3435e89c340976503a9514e74488538e8

  • SHA256

    d0febb523d4b49a32d2a198ae462ee2c471bf25a867e64101b99bc2718660eaf

  • SHA512

    406a6deb75e36d4de8a36af9b4decb4fcf49a06269a670c0dab53e7f5c2b44d4c0775d62a2534816b58930e5f1e0584095a8f6418b1bbdc0d6144681a1128041

  • SSDEEP

    1536:agECp9k18iCodmBVBQtJLm1JFn1wVVrkZ/THkZ/TgmDs7hMC1E6rXaHyZ0IGiuIp:agFpCmjBQa1Xn6VVr2LH2Lg6s7hMqrq2

Score
7/10
persistence

Malware Config

Targets

    • Target

      3359aa9f1da47acf7aaf4601f6b09ee9_JaffaCakes118

    • Size

      90KB

    • MD5

      3359aa9f1da47acf7aaf4601f6b09ee9

    • SHA1

      60bbfec3435e89c340976503a9514e74488538e8

    • SHA256

      d0febb523d4b49a32d2a198ae462ee2c471bf25a867e64101b99bc2718660eaf

    • SHA512

      406a6deb75e36d4de8a36af9b4decb4fcf49a06269a670c0dab53e7f5c2b44d4c0775d62a2534816b58930e5f1e0584095a8f6418b1bbdc0d6144681a1128041

    • SSDEEP

      1536:agECp9k18iCodmBVBQtJLm1JFn1wVVrkZ/THkZ/TgmDs7hMC1E6rXaHyZ0IGiuIp:agFpCmjBQa1Xn6VVr2LH2Lg6s7hMqrq2

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks