Overview

overview

7

Static

static

3

a7ea6d6855...18.exe

windows7-x64

7

a7ea6d6855...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a7ea6d6855df36de56db0c976e224f9a_JaffaCakes118

  • Size

    738KB

  • Sample

    240818-x5qbbazfja

  • MD5

    a7ea6d6855df36de56db0c976e224f9a

  • SHA1

    b95418f657486724425c6dbdcbee3f333574af73

  • SHA256

    9b5782dbd246f68e447f4f4794d73c3bca6899a1ee95e5e5e6456b6961abca3d

  • SHA512

    fffbb74505bcd220c69eac86ec8f47c423d7433026eb2bc30e8b4175f472ae745a08d60a23e95384a59947dfd97140ad5404301220bd5da8636a1933360983b0

  • SSDEEP

    12288:VJiY5XNU+kncUXQveQoxPz8dwmZNXDpUIQMTbgaWzr9PurjM+R0UcPAqsdiEtTBU:6UNQfXEeQePz8nvW4brkur4U81LEtC

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      a7ea6d6855df36de56db0c976e224f9a_JaffaCakes118

    • Size

      738KB

    • MD5

      a7ea6d6855df36de56db0c976e224f9a

    • SHA1

      b95418f657486724425c6dbdcbee3f333574af73

    • SHA256

      9b5782dbd246f68e447f4f4794d73c3bca6899a1ee95e5e5e6456b6961abca3d

    • SHA512

      fffbb74505bcd220c69eac86ec8f47c423d7433026eb2bc30e8b4175f472ae745a08d60a23e95384a59947dfd97140ad5404301220bd5da8636a1933360983b0

    • SSDEEP

      12288:VJiY5XNU+kncUXQveQoxPz8dwmZNXDpUIQMTbgaWzr9PurjM+R0UcPAqsdiEtTBU:6UNQfXEeQePz8nvW4brkur4U81LEtC

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks