Overview

overview

7

Static

static

7

3939123d84...18.exe

windows7-x64

7

3939123d84...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3939123d84022fd1138ce0682e326f26_JaffaCakes118

  • Size

    33KB

  • Sample

    240711-p9kydsxcqp

  • MD5

    3939123d84022fd1138ce0682e326f26

  • SHA1

    81c333d21c124933b5428a424b59311eda6570a2

  • SHA256

    077bd169e59d94a865cbfaba006f48c599b095fafcbac90467756ea3359ac8da

  • SHA512

    48dbbdc66fd6a69448a7d9a21e1edfd153dd45df26baa1299788e27ddf6267723c1d1eb2ccd2dbde848d5a20ff6796179c7b37389d92bce5cdf2cbebcd9b0707

  • SSDEEP

    768:J6oz62BPOEeP0FV9j4yGP1ZBeBj8e0/qS8t:J6EtOEes79j4y+LUBwe0id

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      3939123d84022fd1138ce0682e326f26_JaffaCakes118

    • Size

      33KB

    • MD5

      3939123d84022fd1138ce0682e326f26

    • SHA1

      81c333d21c124933b5428a424b59311eda6570a2

    • SHA256

      077bd169e59d94a865cbfaba006f48c599b095fafcbac90467756ea3359ac8da

    • SHA512

      48dbbdc66fd6a69448a7d9a21e1edfd153dd45df26baa1299788e27ddf6267723c1d1eb2ccd2dbde848d5a20ff6796179c7b37389d92bce5cdf2cbebcd9b0707

    • SSDEEP

      768:J6oz62BPOEeP0FV9j4yGP1ZBeBj8e0/qS8t:J6EtOEes79j4y+LUBwe0id

    Score
    7/10
    discoverypersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks