Overview

overview

7

Static

static

1

8cda56310f...18.exe

windows7-x64

7

8cda56310f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8cda56310ffc153207b55cd8485cfdab_JaffaCakes118

  • Size

    5.0MB

  • Sample

    240812-cbs5wsthke

  • MD5

    8cda56310ffc153207b55cd8485cfdab

  • SHA1

    12af8be52713c9e79a62cc2f08013cd6cf78514d

  • SHA256

    7bd306dfdcb4cc28169e9c4fdd92cfbdb62e439f65c6d64941dfdfa9dd9baf12

  • SHA512

    ea7fd9f53b3abba944c3d7a32ae1493554eb17f96ee902daf086211a0bee165f2cf857af5682d6de651ce03a392a0eba31190ee4260600fc915a682986325b47

  • SSDEEP

    98304:9TVy+XK3Z6+8zkyoAyi69ICLbPKUTvFZw6KcclUTewC:9rkZT3w6GOewC

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      8cda56310ffc153207b55cd8485cfdab_JaffaCakes118

    • Size

      5.0MB

    • MD5

      8cda56310ffc153207b55cd8485cfdab

    • SHA1

      12af8be52713c9e79a62cc2f08013cd6cf78514d

    • SHA256

      7bd306dfdcb4cc28169e9c4fdd92cfbdb62e439f65c6d64941dfdfa9dd9baf12

    • SHA512

      ea7fd9f53b3abba944c3d7a32ae1493554eb17f96ee902daf086211a0bee165f2cf857af5682d6de651ce03a392a0eba31190ee4260600fc915a682986325b47

    • SSDEEP

      98304:9TVy+XK3Z6+8zkyoAyi69ICLbPKUTvFZw6KcclUTewC:9rkZT3w6GOewC

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks