Overview

overview

7

Static

static

3

3de6042084...18.exe

windows7-x64

7

3de6042084...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3de60420845a582b0e44081b1138a7e4_JaffaCakes118

  • Size

    15KB

  • Sample

    240712-sn5x8ayhkn

  • MD5

    3de60420845a582b0e44081b1138a7e4

  • SHA1

    28904dba741e9d0208237a9b991cf19bae17e39e

  • SHA256

    bd9146a2dfb87cbb8b301917a21dbaa8a7de344f7dffd3899b74fe86eaf43350

  • SHA512

    116b041ec78d6151960f8a8f40c7dff8c74cc8f244752a60687de660390a4cd8fc39b93221b07673684ac2a472d579b360696237ccd9d0d906c24bc8b5c1a535

  • SSDEEP

    192:k5m591V5BwMhoER58xP6jvaQuJNpVHm/rCISXV2eBLMzK+8GaIXXx1XXaWcwE1ow:ke9dBwMrO6eQutVHmmvAKGrMWc/1SnQ

Score
7/10
persistence

Malware Config

Targets

    • Target

      3de60420845a582b0e44081b1138a7e4_JaffaCakes118

    • Size

      15KB

    • MD5

      3de60420845a582b0e44081b1138a7e4

    • SHA1

      28904dba741e9d0208237a9b991cf19bae17e39e

    • SHA256

      bd9146a2dfb87cbb8b301917a21dbaa8a7de344f7dffd3899b74fe86eaf43350

    • SHA512

      116b041ec78d6151960f8a8f40c7dff8c74cc8f244752a60687de660390a4cd8fc39b93221b07673684ac2a472d579b360696237ccd9d0d906c24bc8b5c1a535

    • SSDEEP

      192:k5m591V5BwMhoER58xP6jvaQuJNpVHm/rCISXV2eBLMzK+8GaIXXx1XXaWcwE1ow:ke9dBwMrO6eQutVHmmvAKGrMWc/1SnQ

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks