Overview

overview

7

Static

static

3

b1b75d43d7...18.exe

windows7-x64

7

b1b75d43d7...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1b75d43d70d173aec9e36a53ecf3132_JaffaCakes118

  • Size

    104KB

  • Sample

    240821-cfdk1avcpe

  • MD5

    b1b75d43d70d173aec9e36a53ecf3132

  • SHA1

    083ba958b58088f87009720acfa43b9ffafd4e24

  • SHA256

    a4e50228915740fe19463aa044e5dfd660cc67885f3612a1d0aa190cdc75e276

  • SHA512

    d9927e740887565ac2487e8ee33abee6f43497ecd607605af64db6d916934d73d1f278150245ea1d7733ff074f34ce74edc44a211f1c972da2bc2446853fdf72

  • SSDEEP

    3072:SsPLmo97fcFqy9cwnbFmGErBGGaAiOl+u9B+1a:VPyoRcF1vnRmGoGGazW+1a

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      b1b75d43d70d173aec9e36a53ecf3132_JaffaCakes118

    • Size

      104KB

    • MD5

      b1b75d43d70d173aec9e36a53ecf3132

    • SHA1

      083ba958b58088f87009720acfa43b9ffafd4e24

    • SHA256

      a4e50228915740fe19463aa044e5dfd660cc67885f3612a1d0aa190cdc75e276

    • SHA512

      d9927e740887565ac2487e8ee33abee6f43497ecd607605af64db6d916934d73d1f278150245ea1d7733ff074f34ce74edc44a211f1c972da2bc2446853fdf72

    • SSDEEP

      3072:SsPLmo97fcFqy9cwnbFmGErBGGaAiOl+u9B+1a:VPyoRcF1vnRmGoGGazW+1a

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks