Overview

overview

7

Static

static

7

766b5a6164...18.exe

windows7-x64

7

766b5a6164...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    766b5a6164541148b402f0c54056851f_JaffaCakes118

  • Size

    44KB

  • Sample

    240727-a37fgsydqh

  • MD5

    766b5a6164541148b402f0c54056851f

  • SHA1

    2f082cb5601d7290adf1538e472ce1c25162bc0a

  • SHA256

    c93e2127f551910890daf6a6cfefa59bf0abecedd4ecb71cb46be592dddc24a1

  • SHA512

    8ebf0b2eebfa2f49d42fdb9fd5b5e4a2e90bcff3b12b8288d2458e4e32e0633ea9f62c75f2735e2586536f8686eb8fbe5c986f87c1f431fb30dc85bd1c65e439

  • SSDEEP

    768:f/v6TsN9Q9PJejgFas41egj9CjY1VdiqQfUwRPb9Zcnv9nxrg2ab8XWF:fHssnKPJeMFatD9UY1VEBciZcp5g2r6

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      766b5a6164541148b402f0c54056851f_JaffaCakes118

    • Size

      44KB

    • MD5

      766b5a6164541148b402f0c54056851f

    • SHA1

      2f082cb5601d7290adf1538e472ce1c25162bc0a

    • SHA256

      c93e2127f551910890daf6a6cfefa59bf0abecedd4ecb71cb46be592dddc24a1

    • SHA512

      8ebf0b2eebfa2f49d42fdb9fd5b5e4a2e90bcff3b12b8288d2458e4e32e0633ea9f62c75f2735e2586536f8686eb8fbe5c986f87c1f431fb30dc85bd1c65e439

    • SSDEEP

      768:f/v6TsN9Q9PJejgFas41egj9CjY1VdiqQfUwRPb9Zcnv9nxrg2ab8XWF:fHssnKPJeMFatD9UY1VEBciZcp5g2r6

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks