Overview

overview

10

Static

static

10

91f5370206...18.exe

windows7-x64

7

91f5370206...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    91f537020640def88963039ee9c9c1b5_JaffaCakes118

  • Size

    306KB

  • Sample

    240813-g6chvatcjn

  • MD5

    91f537020640def88963039ee9c9c1b5

  • SHA1

    829eb0589d04ebdb9747d3f2d42a3a6bfd2ebba9

  • SHA256

    017f02862975a1e2f88a43ebc9a107b716e7d194cee020c917c31517f7f6db4c

  • SHA512

    0185987c626097873ea844879ef1ec09ad0c5d490f03bfab77adafd148967de2dcbce2cdc3060f8f872c868b6baae1d0ce19c5b114a91beb881d1adeed7f7d1a

  • SSDEEP

    3072:5oPvnYVRFnCXBWjmMJ6nlNoOjLe2Zr4B+0yPzub9/gfMPWXxyitRUJG0AS/cWXxR:ynnYXFCXBWjH6DoShZWyrW/gTnZqnZt

Score
10/10
revengeratstealer

Malware Config

Targets

    • Target

      91f537020640def88963039ee9c9c1b5_JaffaCakes118

    • Size

      306KB

    • MD5

      91f537020640def88963039ee9c9c1b5

    • SHA1

      829eb0589d04ebdb9747d3f2d42a3a6bfd2ebba9

    • SHA256

      017f02862975a1e2f88a43ebc9a107b716e7d194cee020c917c31517f7f6db4c

    • SHA512

      0185987c626097873ea844879ef1ec09ad0c5d490f03bfab77adafd148967de2dcbce2cdc3060f8f872c868b6baae1d0ce19c5b114a91beb881d1adeed7f7d1a

    • SSDEEP

      3072:5oPvnYVRFnCXBWjmMJ6nlNoOjLe2Zr4B+0yPzub9/gfMPWXxyitRUJG0AS/cWXxR:ynnYXFCXBWjH6DoShZWyrW/gTnZqnZt

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks