Overview

overview

7

Static

static

3

bbf3922514...18.exe

windows7-x64

7

bbf3922514...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bbf39225142486485d903fe2610a72af_JaffaCakes118

  • Size

    442KB

  • Sample

    240823-qxf94sxbja

  • MD5

    bbf39225142486485d903fe2610a72af

  • SHA1

    688819b73c82e930451e8c38bf9535339ff8a3bd

  • SHA256

    41261e349a2eba8ec1b139d815387821ca880cc9c518d2a4ea6cd45a026f39ab

  • SHA512

    2471d182aeb1091a628e8f3068b949047212710b1f799823dd06f70916c4580023ab4a6a4ec8b650dc4b463cd710cfae46ad183eb53855c2b664b9786dcba6f5

  • SSDEEP

    6144:5ZunObR8sVImcyYC5Jgz3jzB8kOQIq+3mxkyJIrC+J/pbKvCB23xqy7uXhY7pOK/:WK+mz2/6Y+4hupHQYyqXh6ZyDl8GK

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      bbf39225142486485d903fe2610a72af_JaffaCakes118

    • Size

      442KB

    • MD5

      bbf39225142486485d903fe2610a72af

    • SHA1

      688819b73c82e930451e8c38bf9535339ff8a3bd

    • SHA256

      41261e349a2eba8ec1b139d815387821ca880cc9c518d2a4ea6cd45a026f39ab

    • SHA512

      2471d182aeb1091a628e8f3068b949047212710b1f799823dd06f70916c4580023ab4a6a4ec8b650dc4b463cd710cfae46ad183eb53855c2b664b9786dcba6f5

    • SSDEEP

      6144:5ZunObR8sVImcyYC5Jgz3jzB8kOQIq+3mxkyJIrC+J/pbKvCB23xqy7uXhY7pOK/:WK+mz2/6Y+4hupHQYyqXh6ZyDl8GK

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks