Overview

overview

7

Static

static

3

bd762aca28...18.exe

windows7-x64

7

bd762aca28...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd762aca28861b309454f9eff09dedd9_JaffaCakes118

  • Size

    19KB

  • Sample

    240823-2nzkwatcjm

  • MD5

    bd762aca28861b309454f9eff09dedd9

  • SHA1

    73f008e82ca40b2b6e770c6497c47b30c1d6525f

  • SHA256

    bbe7bcb2735313344721bc617a4cb603509c883d48dcf3ed032ddf7cf8979b40

  • SHA512

    688ec52028381d259d024545359664431b2197f17dbb1a646a6ae58fbe10862e9f58fd75c4509bb2811d108fce8ab80a8da7d50c002a2e97041dfc84306036b4

  • SSDEEP

    384:x6o9fYlLlvx2W+nbo5tpw06tJ8F2A+s+r5SyWvWVEcU:vfYh9xI05tW06tJA+zr4uE

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      bd762aca28861b309454f9eff09dedd9_JaffaCakes118

    • Size

      19KB

    • MD5

      bd762aca28861b309454f9eff09dedd9

    • SHA1

      73f008e82ca40b2b6e770c6497c47b30c1d6525f

    • SHA256

      bbe7bcb2735313344721bc617a4cb603509c883d48dcf3ed032ddf7cf8979b40

    • SHA512

      688ec52028381d259d024545359664431b2197f17dbb1a646a6ae58fbe10862e9f58fd75c4509bb2811d108fce8ab80a8da7d50c002a2e97041dfc84306036b4

    • SSDEEP

      384:x6o9fYlLlvx2W+nbo5tpw06tJ8F2A+s+r5SyWvWVEcU:vfYh9xI05tW06tJA+zr4uE

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks