Overview

overview

7

Static

static

3

611a201b2c...18.exe

windows7-x64

7

611a201b2c...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    611a201b2c055dca0d15916bd60b6ab1_JaffaCakes118

  • Size

    282KB

  • Sample

    240721-x8g44s1cnf

  • MD5

    611a201b2c055dca0d15916bd60b6ab1

  • SHA1

    b665fa95b797e91ccc8bdd1e2228fc5112cb27c3

  • SHA256

    69ef9064f92006a1beafec2f55f1f686dd9dafe4864ec8c5279384d78977086e

  • SHA512

    5c335d5855b3b3ba07d6e791be9d61dfbbcd8f719ac1cc614a5d914cca94dc2cf70fed07aff87726e9c33231529611b6b6a80ea21269c636a57fc3c3b61561ed

  • SSDEEP

    6144:ZLwSv3A6hlVbPG9usjTSKoXVOdgFyVbi2HtoQzb1pBVUjWO:ZMSY8lNPYHw85qWbUj3

Score
7/10
upx

Malware Config

Targets

    • Target

      611a201b2c055dca0d15916bd60b6ab1_JaffaCakes118

    • Size

      282KB

    • MD5

      611a201b2c055dca0d15916bd60b6ab1

    • SHA1

      b665fa95b797e91ccc8bdd1e2228fc5112cb27c3

    • SHA256

      69ef9064f92006a1beafec2f55f1f686dd9dafe4864ec8c5279384d78977086e

    • SHA512

      5c335d5855b3b3ba07d6e791be9d61dfbbcd8f719ac1cc614a5d914cca94dc2cf70fed07aff87726e9c33231529611b6b6a80ea21269c636a57fc3c3b61561ed

    • SSDEEP

      6144:ZLwSv3A6hlVbPG9usjTSKoXVOdgFyVbi2HtoQzb1pBVUjWO:ZMSY8lNPYHw85qWbUj3

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks