Overview

overview

7

Static

static

7

858c5ac94b...18.exe

windows7-x64

7

858c5ac94b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    858c5ac94b729dd1446d2913535aba17_JaffaCakes118

  • Size

    2.1MB

  • Sample

    240810-k7zljstdjm

  • MD5

    858c5ac94b729dd1446d2913535aba17

  • SHA1

    3eef486dca3c2151e46bd53025d107c229b34ddb

  • SHA256

    584f37c353a2140abc20299bfa1dbb966c5728327a56c53e0a99168d0f2dc2ba

  • SHA512

    db58077ad8e654aa405d9d8550ae4c7360b65ca0d67fe677ac4879d792b404e7ad1160ca11ad3041f045dd2ab70321581a6b9b812936bde816edd1c5c9380e6e

  • SSDEEP

    24576:AmaGCQseHCypXwR/V9T2b6Aj4Emn7hyrQgGzOvYhuOzJot0OJt:Al5Q/PwR/V9T2b69EmntyrQJhPozt

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      858c5ac94b729dd1446d2913535aba17_JaffaCakes118

    • Size

      2.1MB

    • MD5

      858c5ac94b729dd1446d2913535aba17

    • SHA1

      3eef486dca3c2151e46bd53025d107c229b34ddb

    • SHA256

      584f37c353a2140abc20299bfa1dbb966c5728327a56c53e0a99168d0f2dc2ba

    • SHA512

      db58077ad8e654aa405d9d8550ae4c7360b65ca0d67fe677ac4879d792b404e7ad1160ca11ad3041f045dd2ab70321581a6b9b812936bde816edd1c5c9380e6e

    • SSDEEP

      24576:AmaGCQseHCypXwR/V9T2b6Aj4Emn7hyrQgGzOvYhuOzJot0OJt:Al5Q/PwR/V9T2b69EmntyrQJhPozt

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Program crash

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks