Overview

overview

7

Static

static

3

8bf0eb3d2a...18.exe

windows7-x64

7

8bf0eb3d2a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bf0eb3d2a28ff7fa317d57c0ca02ccc_JaffaCakes118

  • Size

    22KB

  • Sample

    240811-zq472axfpn

  • MD5

    8bf0eb3d2a28ff7fa317d57c0ca02ccc

  • SHA1

    4a08a544f8b0081a6338e6f54296c874716fad82

  • SHA256

    8c37811c8426d38a91fefe039c7dece8f2439d72c266f62a8afdd8b03abfbd8e

  • SHA512

    85dd4060b9caf6e2ef435a8d21705e8913776cee63367a47670153c9a0d4884bee8ff3300acad02176d149245a76066307aa341dc86d703e26318f1420a8b730

  • SSDEEP

    384:0MKd+6KJYiDWo5s14GTsTMFc8+EnFHovPzAqqUv3Xy+2e+at:+ElWo6WGwTMFcMFSPJqUf1t

Score
7/10
defense_evasiondiscovery

Malware Config

Targets

    • Target

      8bf0eb3d2a28ff7fa317d57c0ca02ccc_JaffaCakes118

    • Size

      22KB

    • MD5

      8bf0eb3d2a28ff7fa317d57c0ca02ccc

    • SHA1

      4a08a544f8b0081a6338e6f54296c874716fad82

    • SHA256

      8c37811c8426d38a91fefe039c7dece8f2439d72c266f62a8afdd8b03abfbd8e

    • SHA512

      85dd4060b9caf6e2ef435a8d21705e8913776cee63367a47670153c9a0d4884bee8ff3300acad02176d149245a76066307aa341dc86d703e26318f1420a8b730

    • SSDEEP

      384:0MKd+6KJYiDWo5s14GTsTMFc8+EnFHovPzAqqUv3Xy+2e+at:+ElWo6WGwTMFcMFSPJqUf1t

    Score
    7/10
    defense_evasiondiscovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks