e6cb84f4156213a4db248b87950fd95d5117b5de73b7d3f1b728707b44201c26 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ea751206d6...18.exe

windows7-x64

7

ea751206d6...18.exe

windows10-2004-x64

7

Sharing

General

Target

ea751206d6e924731566a4c48b136c64_JaffaCakes118
Size

1.1MB
Sample

240919-dewkvsxdmb
MD5

ea751206d6e924731566a4c48b136c64
SHA1

6c85e978339bfbb42dcdb3d5421ea3949213dbaa
SHA256

e6cb84f4156213a4db248b87950fd95d5117b5de73b7d3f1b728707b44201c26
SHA512

458a5886de2e5047e354c6d7185a97151b7441b72d243f7f4ee5ea7fcb64a73541510137b7c431ab9c333139cf5ca3f813913d5e14e9b3d8ed8f91fc5b9bb144
SSDEEP

12288:3sM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQCB:cV4W8hqBYgnBLfVqx1WjkPB

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ea751206d6e924731566a4c48b136c64_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea751206d6e924731566a4c48b136c64_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea751206d6e924731566a4c48b136c64_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  ea751206d6e924731566a4c48b136c64
- SHA1
  
  6c85e978339bfbb42dcdb3d5421ea3949213dbaa
- SHA256
  
  e6cb84f4156213a4db248b87950fd95d5117b5de73b7d3f1b728707b44201c26
- SHA512
  
  458a5886de2e5047e354c6d7185a97151b7441b72d243f7f4ee5ea7fcb64a73541510137b7c431ab9c333139cf5ca3f813913d5e14e9b3d8ed8f91fc5b9bb144
- SSDEEP
  
  12288:3sM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQCB:cV4W8hqBYgnBLfVqx1WjkPB
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy