Overview

overview

7

Static

static

7

94be4d8a7b...18.exe

windows7-x64

7

94be4d8a7b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    94be4d8a7b6612e5593297aa68ab9781_JaffaCakes118

  • Size

    544KB

  • Sample

    240813-zzd27s1bql

  • MD5

    94be4d8a7b6612e5593297aa68ab9781

  • SHA1

    a2cad52d0da8c883b6f80f2ca7403cac8d304618

  • SHA256

    db44b09f526e3290daa8d48093edf9d3c3a87c00abb7c19c4051f982eb46c3b1

  • SHA512

    d306489246e51da789d375d5d5565e906d6a4c9536bae97186534e235bad5af3c8969974fb2db464637235fa6bac36973fa86b7b1149d3235c313139c48f0c49

  • SSDEEP

    12288:5i9YeoSE9ybxxr8kF2CFLs19giTIrN3gpF4ZoE7SHbIkFcsrQVi9C:E9Y39ybXAG2CGzg2g3gTYoTHdq

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      94be4d8a7b6612e5593297aa68ab9781_JaffaCakes118

    • Size

      544KB

    • MD5

      94be4d8a7b6612e5593297aa68ab9781

    • SHA1

      a2cad52d0da8c883b6f80f2ca7403cac8d304618

    • SHA256

      db44b09f526e3290daa8d48093edf9d3c3a87c00abb7c19c4051f982eb46c3b1

    • SHA512

      d306489246e51da789d375d5d5565e906d6a4c9536bae97186534e235bad5af3c8969974fb2db464637235fa6bac36973fa86b7b1149d3235c313139c48f0c49

    • SSDEEP

      12288:5i9YeoSE9ybxxr8kF2CFLs19giTIrN3gpF4ZoE7SHbIkFcsrQVi9C:E9Y39ybXAG2CGzg2g3gTYoTHdq

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks