Overview

overview

7

Static

static

7

9721bda6e1...18.exe

windows7-x64

7

9721bda6e1...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9721bda6e1b24922fff76fcd2c590ac4_JaffaCakes118

  • Size

    108KB

  • Sample

    240814-wtak2s1djk

  • MD5

    9721bda6e1b24922fff76fcd2c590ac4

  • SHA1

    aa7db7ea56c170009a25986c10638f3fcc6fc44e

  • SHA256

    9866e227530c427705674766b9a8e000992491a37bd666a2ac090521016dfe4a

  • SHA512

    ab43ca2cd12f8a6a52effd71c9cd4074bd64783e1f1174d5d49d81a9b9f7738f7e9389625fa71f83a43ac0b660bb5e4fbb275309d76cf88543f7abcd4be1c3dc

  • SSDEEP

    3072:M3oDm26PEKjjAL/FEsZH0jx/m8EHUmxs8lTJfftYhJp:ZDm7PLnAL/xwx+84JRYN

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      9721bda6e1b24922fff76fcd2c590ac4_JaffaCakes118

    • Size

      108KB

    • MD5

      9721bda6e1b24922fff76fcd2c590ac4

    • SHA1

      aa7db7ea56c170009a25986c10638f3fcc6fc44e

    • SHA256

      9866e227530c427705674766b9a8e000992491a37bd666a2ac090521016dfe4a

    • SHA512

      ab43ca2cd12f8a6a52effd71c9cd4074bd64783e1f1174d5d49d81a9b9f7738f7e9389625fa71f83a43ac0b660bb5e4fbb275309d76cf88543f7abcd4be1c3dc

    • SSDEEP

      3072:M3oDm26PEKjjAL/FEsZH0jx/m8EHUmxs8lTJfftYhJp:ZDm7PLnAL/xwx+84JRYN

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks