Overview

overview

7

Static

static

3

62bc291e3e...18.exe

windows7-x64

62bc291e3e...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    62bc291e3e45b6f48a745519e33e3b64_JaffaCakes118

  • Size

    184KB

  • Sample

    240722-lr665a1bla

  • MD5

    62bc291e3e45b6f48a745519e33e3b64

  • SHA1

    e7180c6ab49a05ed0c0990381d834b4907251ec6

  • SHA256

    9dd2ebe0457217be185a81c7acccc36b605660676a19776743ecf566292c1618

  • SHA512

    aa9ddd1fa7f95414103f6a29133d28cc27f07235d227d39c921c177b8bfc3d0bbbe35dd4cdee19ae1c452e6d2141d8364971c305e6cce21dcc6188dad8655a97

  • SSDEEP

    3072:vp8Ty6kYWzKL2QIyZZfsSYDTkHe0HOUpOtJgA63WRaVVG6oFN0SuzjrRQQKR:hEWzq2bAZfsSYDTse0wz23WMVppzBQQO

Score
7/10

Malware Config

Targets

    • Target

      62bc291e3e45b6f48a745519e33e3b64_JaffaCakes118

    • Size

      184KB

    • MD5

      62bc291e3e45b6f48a745519e33e3b64

    • SHA1

      e7180c6ab49a05ed0c0990381d834b4907251ec6

    • SHA256

      9dd2ebe0457217be185a81c7acccc36b605660676a19776743ecf566292c1618

    • SHA512

      aa9ddd1fa7f95414103f6a29133d28cc27f07235d227d39c921c177b8bfc3d0bbbe35dd4cdee19ae1c452e6d2141d8364971c305e6cce21dcc6188dad8655a97

    • SSDEEP

      3072:vp8Ty6kYWzKL2QIyZZfsSYDTkHe0HOUpOtJgA63WRaVVG6oFN0SuzjrRQQKR:hEWzq2bAZfsSYDTse0wz23WMVppzBQQO

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks