Overview

overview

7

Static

static

3

ba9190edb3...18.exe

windows7-x64

6

ba9190edb3...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba9190edb388b9dce0019f422f2432a3_JaffaCakes118

  • Size

    603KB

  • Sample

    240823-geya8sxhlb

  • MD5

    ba9190edb388b9dce0019f422f2432a3

  • SHA1

    5e46a731a579ecb722f04851543ee9acff0f9c83

  • SHA256

    248cde82b39c9f526a346a8bd007e6003b7b2cf6b2d476448f04cc5eddc3a330

  • SHA512

    01eed2906fe16f27f6e27cbaa71df1be75f681090144ecf1226c3c35df909a20b2fbb386965ba6a486576b559a1d8b4bb70d0ae250d0aead6a95c69254e7074c

  • SSDEEP

    12288:XHVAvIn9SRkvAVWVO0IMjXiw7beF4Nloc2vP1oev:XHav5UxIMz/8V

Score
7/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      ba9190edb388b9dce0019f422f2432a3_JaffaCakes118

    • Size

      603KB

    • MD5

      ba9190edb388b9dce0019f422f2432a3

    • SHA1

      5e46a731a579ecb722f04851543ee9acff0f9c83

    • SHA256

      248cde82b39c9f526a346a8bd007e6003b7b2cf6b2d476448f04cc5eddc3a330

    • SHA512

      01eed2906fe16f27f6e27cbaa71df1be75f681090144ecf1226c3c35df909a20b2fbb386965ba6a486576b559a1d8b4bb70d0ae250d0aead6a95c69254e7074c

    • SSDEEP

      12288:XHVAvIn9SRkvAVWVO0IMjXiw7beF4Nloc2vP1oev:XHav5UxIMz/8V

    Score
    7/10
    discoveryevasionpersistencetrojan

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks