Overview

overview

8

Static

static

3

9555bcca45...18.exe

windows7-x64

8

9555bcca45...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9555bcca458a40f35a1339a2a2b0818a_JaffaCakes118

  • Size

    776KB

  • Sample

    240814-kejpmasdke

  • MD5

    9555bcca458a40f35a1339a2a2b0818a

  • SHA1

    63cb415dfb7ccd0962fa60153eb32ca4073d8ff5

  • SHA256

    54d29413fb389b51b699135e2e6a25b5c105bb55229468789eb322414d28e676

  • SHA512

    ac8cab38ec7c339682d1bd5c97319fb527c19bc2ca9ebfeb96a066ddfed2bf48ec0e214342ece2e60fda104bd63cb71702e63ee522afb5e2bd65d762e8ba5954

  • SSDEEP

    24576:AsKbMQUa3AF19Bkv5gAcyL97EOEE+wTKL:7KDFQF19cgAc+97EOEE+wTKL

Score
8/10
discovery

Malware Config

Targets

    • Target

      9555bcca458a40f35a1339a2a2b0818a_JaffaCakes118

    • Size

      776KB

    • MD5

      9555bcca458a40f35a1339a2a2b0818a

    • SHA1

      63cb415dfb7ccd0962fa60153eb32ca4073d8ff5

    • SHA256

      54d29413fb389b51b699135e2e6a25b5c105bb55229468789eb322414d28e676

    • SHA512

      ac8cab38ec7c339682d1bd5c97319fb527c19bc2ca9ebfeb96a066ddfed2bf48ec0e214342ece2e60fda104bd63cb71702e63ee522afb5e2bd65d762e8ba5954

    • SSDEEP

      24576:AsKbMQUa3AF19Bkv5gAcyL97EOEE+wTKL:7KDFQF19cgAc+97EOEE+wTKL

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks