Overview

overview

7

Static

static

3

a6514cdf14...18.exe

windows7-x64

7

a6514cdf14...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a6514cdf14bfe0a45c5348e5f605af9f_JaffaCakes118

  • Size

    996KB

  • Sample

    240818-lwr8rs1cnm

  • MD5

    a6514cdf14bfe0a45c5348e5f605af9f

  • SHA1

    f62fde5330edf97c245f9075cb144cedbf0950ba

  • SHA256

    8c6865afb5235d0d3b3decff70216a06e9d3b1028fcf38e5984cb76c1b0caa7e

  • SHA512

    703d2e122990ec1b533c51db4f20f6547d980b980c486d9adf6ab8765a8b6c6f3d96524e082c2a42a94c070d5d597339622d25baa27420f335e9549c33e23043

  • SSDEEP

    24576:bAhu8R3PZxx7DUFdqgpuPSO/ymEDPqzofxwG+b:8huWR7EdpuHydZpwZ

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      a6514cdf14bfe0a45c5348e5f605af9f_JaffaCakes118

    • Size

      996KB

    • MD5

      a6514cdf14bfe0a45c5348e5f605af9f

    • SHA1

      f62fde5330edf97c245f9075cb144cedbf0950ba

    • SHA256

      8c6865afb5235d0d3b3decff70216a06e9d3b1028fcf38e5984cb76c1b0caa7e

    • SHA512

      703d2e122990ec1b533c51db4f20f6547d980b980c486d9adf6ab8765a8b6c6f3d96524e082c2a42a94c070d5d597339622d25baa27420f335e9549c33e23043

    • SSDEEP

      24576:bAhu8R3PZxx7DUFdqgpuPSO/ymEDPqzofxwG+b:8huWR7EdpuHydZpwZ

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks