Overview

overview

7

Static

static

3

5aea67a02a...18.exe

windows7-x64

7

5aea67a02a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5aea67a02a6b56373d3d1e76e242b954_JaffaCakes118

  • Size

    230KB

  • Sample

    240719-hvsala1gkc

  • MD5

    5aea67a02a6b56373d3d1e76e242b954

  • SHA1

    b89bc3981a5c7227815ec448422494df963e4f77

  • SHA256

    5ccd1e41b61e1b817ffb6a77165b856e5f28fbd6f69920bea9a99a398bf46766

  • SHA512

    b84762eb8ee6a7d1f93577178c72fb8502a1607e04043fd18bc534e893325ee3a8704c50191a7451549dc37fd1218187da0400251e59be40917ce740eec0c5bf

  • SSDEEP

    6144:+Rgym92YGB+40vPLGPA49dachomI69VaxYc:+6fu+40vPE19Vjc

Score
7/10

Malware Config

Targets

    • Target

      5aea67a02a6b56373d3d1e76e242b954_JaffaCakes118

    • Size

      230KB

    • MD5

      5aea67a02a6b56373d3d1e76e242b954

    • SHA1

      b89bc3981a5c7227815ec448422494df963e4f77

    • SHA256

      5ccd1e41b61e1b817ffb6a77165b856e5f28fbd6f69920bea9a99a398bf46766

    • SHA512

      b84762eb8ee6a7d1f93577178c72fb8502a1607e04043fd18bc534e893325ee3a8704c50191a7451549dc37fd1218187da0400251e59be40917ce740eec0c5bf

    • SSDEEP

      6144:+Rgym92YGB+40vPLGPA49dachomI69VaxYc:+6fu+40vPE19Vjc

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks