Overview

overview

7

Static

static

7

de717c6b27...18.exe

windows7-x64

7

de717c6b27...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de717c6b27984fd3ca4c9aeb6b4f9a93_JaffaCakes118

  • Size

    929KB

  • Sample

    240913-s2chtsvhpq

  • MD5

    de717c6b27984fd3ca4c9aeb6b4f9a93

  • SHA1

    cd9fe130bc694f8ad33712e2441fca97d2631bae

  • SHA256

    161630d8beccf5fc2c83ecedb1124132a053e4718d5f1879b15f3d4f419ef5ba

  • SHA512

    d8074b8b40a1cdf3c5a5014a13916496dcea3f779da9248b68692a78b607ccf626df4576bf5f524a9ce823543faef547734dd186ff8808925be26fc78b347917

  • SSDEEP

    12288:JocdNNqlqhJMlMDaHz0DO8bMVuxezcO215kO1jYf2NByrLCz66IdI2X+QRoGELFz:JoQNmMagD+hgOqL1jacByPCzsB6gXidV

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      de717c6b27984fd3ca4c9aeb6b4f9a93_JaffaCakes118

    • Size

      929KB

    • MD5

      de717c6b27984fd3ca4c9aeb6b4f9a93

    • SHA1

      cd9fe130bc694f8ad33712e2441fca97d2631bae

    • SHA256

      161630d8beccf5fc2c83ecedb1124132a053e4718d5f1879b15f3d4f419ef5ba

    • SHA512

      d8074b8b40a1cdf3c5a5014a13916496dcea3f779da9248b68692a78b607ccf626df4576bf5f524a9ce823543faef547734dd186ff8808925be26fc78b347917

    • SSDEEP

      12288:JocdNNqlqhJMlMDaHz0DO8bMVuxezcO215kO1jYf2NByrLCz66IdI2X+QRoGELFz:JoQNmMagD+hgOqL1jacByPCzsB6gXidV

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks