Overview

overview

7

Static

static

3

b308dd4600...18.exe

windows7-x64

7

b308dd4600...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b308dd46007a281c91e79de02d1651b0_JaffaCakes118

  • Size

    762KB

  • Sample

    240821-l3wjrswcqr

  • MD5

    b308dd46007a281c91e79de02d1651b0

  • SHA1

    99aceff0efdcde6ab4bca2b1387345cf2a7964a9

  • SHA256

    433251d07d8e0c3e19d564ff7c0e1fabfb96bb952e741eca3465b3142a12e551

  • SHA512

    5f369b6fd204d5d20d3be54cc431f3d1fa862d0158f369c101f35dc95a2ae3da1d0f66a41c4628778c439eb9ce36cabc8fed94b5e418fa5b1f0a8e28b08a7127

  • SSDEEP

    12288:5GehnWS1CJ0bhX0iItc6c/FOpkNFsci3BKb+iAq6LJCZx2d5rayFOqxJ:5xEGC4ps89igFTMBgj6tC+d57FPxJ

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      b308dd46007a281c91e79de02d1651b0_JaffaCakes118

    • Size

      762KB

    • MD5

      b308dd46007a281c91e79de02d1651b0

    • SHA1

      99aceff0efdcde6ab4bca2b1387345cf2a7964a9

    • SHA256

      433251d07d8e0c3e19d564ff7c0e1fabfb96bb952e741eca3465b3142a12e551

    • SHA512

      5f369b6fd204d5d20d3be54cc431f3d1fa862d0158f369c101f35dc95a2ae3da1d0f66a41c4628778c439eb9ce36cabc8fed94b5e418fa5b1f0a8e28b08a7127

    • SSDEEP

      12288:5GehnWS1CJ0bhX0iItc6c/FOpkNFsci3BKb+iAq6LJCZx2d5rayFOqxJ:5xEGC4ps89igFTMBgj6tC+d57FPxJ

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks