Overview

overview

7

Static

static

3

linking53.exe

windows7-x64

7

linking53.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    add39cd4d9a95fbbd927376af78ee82f_JaffaCakes118

  • Size

    1.5MB

  • Sample

    240820-evkzqsshmd

  • MD5

    add39cd4d9a95fbbd927376af78ee82f

  • SHA1

    3b100e81d1caf28dfeed479cbdcb69a8b213cb4a

  • SHA256

    541ed74957916e4a0fa4ac460180191d456a12242fe379d7b1d545f833ad210a

  • SHA512

    1fd7dea6e9afbde05009f2e5587f40e90240c282fa59eb77cf2528b666110f9048b03e9515c5bb78b773cd31023792c9120d6d1271112bc5bdb51a8964025335

  • SSDEEP

    24576:sbsju6CBQKVEJn7ylMQvuXsHexq7bFy5Ubkd+4KYLTiKT9covZ0jgcQ2y+ln6k4:sYjxxbQmXtAKUbk44LLTbT9HU22zln65

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      linking53.exe

    • Size

      1.5MB

    • MD5

      f8dfc2ddce5ca228d0a4ba87635838ab

    • SHA1

      62bcb5a85d170e852aa16e0697991c7b83f36fe6

    • SHA256

      23504b3d2ed392d6bde292fc708ea3066f05f0f0d76a08dd390e917dea1d9ba0

    • SHA512

      dc643273222033b1ca1c16dcbba45c93c2cc4e52407887a199a989dacd4e882c1ce95d67209a36ebff71143d585f08d30ae3bb199614f4b3ed71f176a95a27d2

    • SSDEEP

      24576:04LJ432H6QyzLgm7Y1vYrl7UoN0xeqBLu3rHIOJ40ZKQ/w2C4NYExnqJ+FDaaY+P:hLJ4maa2LNIhl130ZKQ/w2C4Tx++VlYo

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks