Overview

overview

7

Static

static

3

9771cc93dd...18.exe

windows7-x64

7

9771cc93dd...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9771cc93dd1b743b64b564ab144f4faf_JaffaCakes118

  • Size

    32KB

  • Sample

    240814-ykybvs1brg

  • MD5

    9771cc93dd1b743b64b564ab144f4faf

  • SHA1

    cd98e7843b0011a3d9347d5868e33b6128c691aa

  • SHA256

    4b1eb4693bd30562dc9c1c3102221559f2fae07cdbbe9e6cdcfe7bfc6643c6e8

  • SHA512

    1a4f995c5c12bd2f8cca7d6eaf68c86aeef0b5c77b263c14f47c73b186950bca4a5bf18aa6e8d395f49c533d0a0da7001336b4bc9207989cc4a954207883342c

  • SSDEEP

    768:muqjOtcJpRHXLEo32MYbQvwtcuv/DQOG4aCT4AL3VsPf9k:kjOQR3LH6kvwFvbQpDCT4AZsdk

Score
7/10
defense_evasiondiscoveryupx

Malware Config

Targets

    • Target

      9771cc93dd1b743b64b564ab144f4faf_JaffaCakes118

    • Size

      32KB

    • MD5

      9771cc93dd1b743b64b564ab144f4faf

    • SHA1

      cd98e7843b0011a3d9347d5868e33b6128c691aa

    • SHA256

      4b1eb4693bd30562dc9c1c3102221559f2fae07cdbbe9e6cdcfe7bfc6643c6e8

    • SHA512

      1a4f995c5c12bd2f8cca7d6eaf68c86aeef0b5c77b263c14f47c73b186950bca4a5bf18aa6e8d395f49c533d0a0da7001336b4bc9207989cc4a954207883342c

    • SSDEEP

      768:muqjOtcJpRHXLEo32MYbQvwtcuv/DQOG4aCT4AL3VsPf9k:kjOQR3LH6kvwFvbQpDCT4AZsdk

    Score
    7/10
    defense_evasiondiscoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks