Overview

overview

7

Static

static

3

64542e3ae7...18.exe

windows7-x64

7

64542e3ae7...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    64542e3ae75f2058ce47ceff0b5727ac_JaffaCakes118

  • Size

    245KB

  • Sample

    240722-w9mwbasapj

  • MD5

    64542e3ae75f2058ce47ceff0b5727ac

  • SHA1

    a7d98d76a40a8dbe52083a2f523801c466fba490

  • SHA256

    3c36ab6f4024c791f5abcffc8a55ed75b7451ff65417a01fbe2e8f3239cd59a8

  • SHA512

    2369ba789370a9ddc9afeed6634c22a0d99386e733f0978e55d72a9fe8aa520b0a142b50e5c34d4fad382945f762691c10bdacd7e2bb3a59b16a2b0ec848aa31

  • SSDEEP

    6144:wu2urzh9xu/XkaumetrU8oN/ZROAQJGjOYly:wutrzh9xOXk3dKROAQPYU

Score
7/10
persistence

Malware Config

Targets

    • Target

      64542e3ae75f2058ce47ceff0b5727ac_JaffaCakes118

    • Size

      245KB

    • MD5

      64542e3ae75f2058ce47ceff0b5727ac

    • SHA1

      a7d98d76a40a8dbe52083a2f523801c466fba490

    • SHA256

      3c36ab6f4024c791f5abcffc8a55ed75b7451ff65417a01fbe2e8f3239cd59a8

    • SHA512

      2369ba789370a9ddc9afeed6634c22a0d99386e733f0978e55d72a9fe8aa520b0a142b50e5c34d4fad382945f762691c10bdacd7e2bb3a59b16a2b0ec848aa31

    • SSDEEP

      6144:wu2urzh9xu/XkaumetrU8oN/ZROAQJGjOYly:wutrzh9xOXk3dKROAQPYU

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks