Overview

overview

7

Static

static

7

bf574d90b3...18.exe

windows7-x64

7

bf574d90b3...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf574d90b3874d944c2fbab926643399_JaffaCakes118

  • Size

    20KB

  • Sample

    240824-y729bszanm

  • MD5

    bf574d90b3874d944c2fbab926643399

  • SHA1

    f397cc8f3899ac4bfd9df498d11b889a7f1fbc2f

  • SHA256

    1c518cbb2d3090d6350ab0701eb4284ac7a5814460d1dca2fb02b5cae49cfe38

  • SHA512

    7e84d2a756db57ba5634f3f7527495f7fc60f42d5aa96886d82b638c1589fbb5a1274de44730b156824f4f120a0f46d11d9d72146808661e5f8793162d3062cd

  • SSDEEP

    384:8yKOmCWP1dVWDzlmWnyQAyxfKoOF8sDnVrT9SqJE/O:8POO1dV6MWn7hKoE8oVrpJE/

Score
7/10
defense_evasiondiscoveryupx

Malware Config

Targets

    • Target

      bf574d90b3874d944c2fbab926643399_JaffaCakes118

    • Size

      20KB

    • MD5

      bf574d90b3874d944c2fbab926643399

    • SHA1

      f397cc8f3899ac4bfd9df498d11b889a7f1fbc2f

    • SHA256

      1c518cbb2d3090d6350ab0701eb4284ac7a5814460d1dca2fb02b5cae49cfe38

    • SHA512

      7e84d2a756db57ba5634f3f7527495f7fc60f42d5aa96886d82b638c1589fbb5a1274de44730b156824f4f120a0f46d11d9d72146808661e5f8793162d3062cd

    • SSDEEP

      384:8yKOmCWP1dVWDzlmWnyQAyxfKoOF8sDnVrT9SqJE/O:8POO1dV6MWn7hKoE8oVrpJE/

    Score
    7/10
    defense_evasiondiscoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks