Overview

overview

7

Static

static

3

a869c263d1...18.exe

windows7-x64

7

a869c263d1...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a869c263d1c0edae22e4bd94342e7569_JaffaCakes118

  • Size

    113KB

  • Sample

    240818-13n71sxdqb

  • MD5

    a869c263d1c0edae22e4bd94342e7569

  • SHA1

    756d35ca8378ea695d6a762001fc9a19b568129b

  • SHA256

    63795cf6c73f6b8adc13f3d9556a6f37eba94bfe7cb5f3e953d9c9c7f6bc8da9

  • SHA512

    589a20dc3f2141ce9b4f28d194e62132985fdc58e3d2ecdbd03d0d2625345c10665170b6ca6106c093e001ff0b17afc496c57aa4d7164a3c331f681a9175af53

  • SSDEEP

    3072:/XBfOhpLt4QZKHe8fAIwgw4lAA1Bh9BhmhllVobtGiNlY:/X5OhpWQAHe8fAIwgw4lAAx9BhmroAiH

Score
7/10
persistence

Malware Config

Targets

    • Target

      a869c263d1c0edae22e4bd94342e7569_JaffaCakes118

    • Size

      113KB

    • MD5

      a869c263d1c0edae22e4bd94342e7569

    • SHA1

      756d35ca8378ea695d6a762001fc9a19b568129b

    • SHA256

      63795cf6c73f6b8adc13f3d9556a6f37eba94bfe7cb5f3e953d9c9c7f6bc8da9

    • SHA512

      589a20dc3f2141ce9b4f28d194e62132985fdc58e3d2ecdbd03d0d2625345c10665170b6ca6106c093e001ff0b17afc496c57aa4d7164a3c331f681a9175af53

    • SSDEEP

      3072:/XBfOhpLt4QZKHe8fAIwgw4lAA1Bh9BhmhllVobtGiNlY:/X5OhpWQAHe8fAIwgw4lAAx9BhmroAiH

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks