c18c39749dbdc9962033d3af11dd0f19d66b06c930711c216924e847e5e8a789 | Triage

Submit
Reports

Overview

overview

Static

static

3

eab53a8dee...18.exe

windows7-x64

eab53a8dee...18.exe

windows10-2004-x64

Sharing

General

Target

eab53a8dee6cf9ede96cfec8996880cf_JaffaCakes118
Size

64KB
Sample

240919-gmavxatepf
MD5

eab53a8dee6cf9ede96cfec8996880cf
SHA1

4f80665f73c457dbd2d42b206c4dbe92a5dbe18b
SHA256

c18c39749dbdc9962033d3af11dd0f19d66b06c930711c216924e847e5e8a789
SHA512

cb2873fea34a7e93d04e74a03c948d83f635025e0080fcaf3d1862670ccf0aeb289ddf056fe41b98cbdd987242fb660574464f3e2e4cf03d8212fceecfd0f8ea
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEu:V3c1fP4AJJv45sCcx7JBb/Eu

Score

10^/10

discovery evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

eab53a8dee6cf9ede96cfec8996880cf_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

eab53a8dee6cf9ede96cfec8996880cf_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  eab53a8dee6cf9ede96cfec8996880cf_JaffaCakes118
- Size
  
  64KB
- MD5
  
  eab53a8dee6cf9ede96cfec8996880cf
- SHA1
  
  4f80665f73c457dbd2d42b206c4dbe92a5dbe18b
- SHA256
  
  c18c39749dbdc9962033d3af11dd0f19d66b06c930711c216924e847e5e8a789
- SHA512
  
  cb2873fea34a7e93d04e74a03c948d83f635025e0080fcaf3d1862670ccf0aeb289ddf056fe41b98cbdd987242fb660574464f3e2e4cf03d8212fceecfd0f8ea
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEu:V3c1fP4AJJv45sCcx7JBb/Eu
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy