Overview

overview

7

Static

static

7

374b4a38a4...18.exe

windows7-x64

7

374b4a38a4...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    374b4a38a4cc8d687c87b0868cb71b90_JaffaCakes118

  • Size

    828KB

  • Sample

    240711-cg761asgpr

  • MD5

    374b4a38a4cc8d687c87b0868cb71b90

  • SHA1

    48a4c62588952da4e6f8e443174d05bb7d66a318

  • SHA256

    0564485a47dcd739fe9a79f85ccc311bae4ed21bf5860011d6000b4cc4591c92

  • SHA512

    55dcc8854e7f4ae1cced372c2adbe166fffadbedaf64c3b849b2d54eb52b8d4ffa692260f679840ea7e611af02d7ff5ee9a09bce813bf240be958c6da7ca82d5

  • SSDEEP

    24576:ZDyTFtjSDyTFtjsDyTFtjSDyTFtjODyo1tj:utztZtztUt

Score
7/10
upx

Malware Config

Targets

    • Target

      374b4a38a4cc8d687c87b0868cb71b90_JaffaCakes118

    • Size

      828KB

    • MD5

      374b4a38a4cc8d687c87b0868cb71b90

    • SHA1

      48a4c62588952da4e6f8e443174d05bb7d66a318

    • SHA256

      0564485a47dcd739fe9a79f85ccc311bae4ed21bf5860011d6000b4cc4591c92

    • SHA512

      55dcc8854e7f4ae1cced372c2adbe166fffadbedaf64c3b849b2d54eb52b8d4ffa692260f679840ea7e611af02d7ff5ee9a09bce813bf240be958c6da7ca82d5

    • SSDEEP

      24576:ZDyTFtjSDyTFtjsDyTFtjSDyTFtjODyo1tj:utztZtztUt

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks