Overview

overview

7

Static

static

3

d548bdf813...18.exe

windows7-x64

7

d548bdf813...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d548bdf813a146e36cc347daf3e4d347_JaffaCakes118

  • Size

    2.5MB

  • Sample

    240908-3gbqxatbjb

  • MD5

    d548bdf813a146e36cc347daf3e4d347

  • SHA1

    d6ef40d339a968ce4a00576990224d2441d6a3e6

  • SHA256

    4488d08eaa04b2b22cdbfa791d3c77ad3d1dc781fc3a90608686e9aaff2794a8

  • SHA512

    f0dfae2a2170412071ecd951ede9fc2b211cb3503f8e0d91688250454897883f72f669eff5a3804d1805664198d5bfdd4b35b6b273b961a3bdde285922c5d764

  • SSDEEP

    49152:7gCh1LGumhuW+arrYxCrspWvebVZOzp6DVbyBBWhm1Q1tGqwuclhk1Mz/:UCP/g0ZbDZy2w1tDhEMj

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      d548bdf813a146e36cc347daf3e4d347_JaffaCakes118

    • Size

      2.5MB

    • MD5

      d548bdf813a146e36cc347daf3e4d347

    • SHA1

      d6ef40d339a968ce4a00576990224d2441d6a3e6

    • SHA256

      4488d08eaa04b2b22cdbfa791d3c77ad3d1dc781fc3a90608686e9aaff2794a8

    • SHA512

      f0dfae2a2170412071ecd951ede9fc2b211cb3503f8e0d91688250454897883f72f669eff5a3804d1805664198d5bfdd4b35b6b273b961a3bdde285922c5d764

    • SSDEEP

      49152:7gCh1LGumhuW+arrYxCrspWvebVZOzp6DVbyBBWhm1Q1tGqwuclhk1Mz/:UCP/g0ZbDZy2w1tDhEMj

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks