Overview

overview

7

Static

static

3

38c382c8d8...18.exe

windows7-x64

6

38c382c8d8...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    38c382c8d8669b80b8bf8b64e3952789_JaffaCakes118

  • Size

    51KB

  • Sample

    240711-mmtwnsvfpc

  • MD5

    38c382c8d8669b80b8bf8b64e3952789

  • SHA1

    2419de26e98a4b73fad949fb2273f45d8c11b9a5

  • SHA256

    4dc4020a0708eb28727ee2a20046ca409bcb3375c6904c693e112bbc523907ad

  • SHA512

    cd52df09a3e95564a13e3c205e970944566fdc01055af96b887d50a97104cf3d00adeedf27e55dcb57a6f4058dd2ab412624d93e9e67cba9f4357631f49fce99

  • SSDEEP

    1536:65VPovmvdJGHj9rOLxkOrXWhE+HFh8Cb:S9TvT8QqOrXO3N

Score
7/10
persistence

Malware Config

Targets

    • Target

      38c382c8d8669b80b8bf8b64e3952789_JaffaCakes118

    • Size

      51KB

    • MD5

      38c382c8d8669b80b8bf8b64e3952789

    • SHA1

      2419de26e98a4b73fad949fb2273f45d8c11b9a5

    • SHA256

      4dc4020a0708eb28727ee2a20046ca409bcb3375c6904c693e112bbc523907ad

    • SHA512

      cd52df09a3e95564a13e3c205e970944566fdc01055af96b887d50a97104cf3d00adeedf27e55dcb57a6f4058dd2ab412624d93e9e67cba9f4357631f49fce99

    • SSDEEP

      1536:65VPovmvdJGHj9rOLxkOrXWhE+HFh8Cb:S9TvT8QqOrXO3N

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks