67f354dee55bd496e9a9c0c9526b8b7ac852c6d43b0d57529680808f933a5f88 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

77a44b3ecb...18.exe

windows7-x64

7

77a44b3ecb...18.exe

windows10-2004-x64

7

Sharing

General

Target

77a44b3ecbf675944e8b433f2aa58489_JaffaCakes118
Size

3.2MB
Sample

240727-lahgfashpf
MD5

77a44b3ecbf675944e8b433f2aa58489
SHA1

76dd35e19141ae4bc907828673ff56a23211e9f9
SHA256

67f354dee55bd496e9a9c0c9526b8b7ac852c6d43b0d57529680808f933a5f88
SHA512

3f187816cc3a4c42d9ed3f5353e7457a6d249e50a1614b2c29fe75cda63ca07c8043b11d5804e333a2110eda05899103cc6921b27f1dbb43d6a88b6cef95aa3e
SSDEEP

49152:LuXKwDT8QrueZ115ULc7n0C4fXqBVg3LgebKUXME7667B6pEYTJrWPd6l3:LurDyer15+80nfX+y2UcZSIpEYTA6B

Score

7^/10

aspackv2 discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

77a44b3ecbf675944e8b433f2aa58489_JaffaCakes118.exe

Resource

win7-20240704-en

aspackv2 discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

77a44b3ecbf675944e8b433f2aa58489_JaffaCakes118.exe

Resource

win10v2004-20240709-en

aspackv2 discovery

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  77a44b3ecbf675944e8b433f2aa58489_JaffaCakes118
- Size
  
  3.2MB
- MD5
  
  77a44b3ecbf675944e8b433f2aa58489
- SHA1
  
  76dd35e19141ae4bc907828673ff56a23211e9f9
- SHA256
  
  67f354dee55bd496e9a9c0c9526b8b7ac852c6d43b0d57529680808f933a5f88
- SHA512
  
  3f187816cc3a4c42d9ed3f5353e7457a6d249e50a1614b2c29fe75cda63ca07c8043b11d5804e333a2110eda05899103cc6921b27f1dbb43d6a88b6cef95aa3e
- SSDEEP
  
  49152:LuXKwDT8QrueZ115ULc7n0C4fXqBVg3LgebKUXME7667B6pEYTJrWPd6l3:LurDyer15+80nfX+y2UcZSIpEYTA6B
Score

7^/10

aspackv2 discovery
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discovery

behavioral2

aspackv2discovery

© 2018-2024

Terms | Privacy