Overview

overview

10

Static

static

10

43206ab2b9...18.exe

windows7-x64

7

43206ab2b9...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    43206ab2b9e766c004a9d02c72cfd18b_JaffaCakes118

  • Size

    129KB

  • Sample

    240713-ypds1sxdka

  • MD5

    43206ab2b9e766c004a9d02c72cfd18b

  • SHA1

    2fec18cd1d63af085f6d2282da212c0b6340d255

  • SHA256

    510bca6219e3fe09948c0c925f5de90e993a247ddeac6d493ab32aef50a2fdbf

  • SHA512

    4abfc435c597500120d13bf9d15bda63eebaeb51b0e313a6dbedbfbf00f9293e12c6f119e6df5eac4a378bd0e7658753c9286255d82a620f3d11c8585a95b37c

  • SSDEEP

    3072:XyeuCLIKStzLiDn+DLHOrfXAopuPCLIKStzLiDn+DLHOrfXAopuz:1LkRmXA2LkRmXAH

Score
10/10
revengeratstealer

Malware Config

Targets

    • Target

      43206ab2b9e766c004a9d02c72cfd18b_JaffaCakes118

    • Size

      129KB

    • MD5

      43206ab2b9e766c004a9d02c72cfd18b

    • SHA1

      2fec18cd1d63af085f6d2282da212c0b6340d255

    • SHA256

      510bca6219e3fe09948c0c925f5de90e993a247ddeac6d493ab32aef50a2fdbf

    • SHA512

      4abfc435c597500120d13bf9d15bda63eebaeb51b0e313a6dbedbfbf00f9293e12c6f119e6df5eac4a378bd0e7658753c9286255d82a620f3d11c8585a95b37c

    • SSDEEP

      3072:XyeuCLIKStzLiDn+DLHOrfXAopuPCLIKStzLiDn+DLHOrfXAopuz:1LkRmXA2LkRmXAH

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks