Overview

overview

7

Static

static

3

61c12d6a98...18.exe

windows7-x64

6

61c12d6a98...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    61c12d6a98fc669e41b36630a178a21f_JaffaCakes118

  • Size

    185KB

  • Sample

    240721-2ymn3ayglf

  • MD5

    61c12d6a98fc669e41b36630a178a21f

  • SHA1

    ff9824be6a3dfa06b0b765879b651c84034d65fd

  • SHA256

    9076ee998e3e5620bc1d9892308b4e8141d132fee16a7383517381ce7127f9ec

  • SHA512

    fadb8ca6510ce2d915051e1f05c8d920e24370d85b7e74582e3c6f9e499c80e834856e4bb2b7808f88a5615dbcdd812470c98a6e43ab822f66f096aa798c5c72

  • SSDEEP

    3072:I/na6WDmrZ5CnKlQf1kT3bQfxy36JfLRxSo2uVvCEbqyXbzkCn0V6MIMnIGz:I/nuDm9tOBe8FBXPkCJ4t

Score
7/10
discovery

Malware Config

Targets

    • Target

      61c12d6a98fc669e41b36630a178a21f_JaffaCakes118

    • Size

      185KB

    • MD5

      61c12d6a98fc669e41b36630a178a21f

    • SHA1

      ff9824be6a3dfa06b0b765879b651c84034d65fd

    • SHA256

      9076ee998e3e5620bc1d9892308b4e8141d132fee16a7383517381ce7127f9ec

    • SHA512

      fadb8ca6510ce2d915051e1f05c8d920e24370d85b7e74582e3c6f9e499c80e834856e4bb2b7808f88a5615dbcdd812470c98a6e43ab822f66f096aa798c5c72

    • SSDEEP

      3072:I/na6WDmrZ5CnKlQf1kT3bQfxy36JfLRxSo2uVvCEbqyXbzkCn0V6MIMnIGz:I/nuDm9tOBe8FBXPkCJ4t

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks