Overview

overview

7

Static

static

7

eefb692457...18.exe

windows7-x64

7

eefb692457...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    eefb69245756c819440fb54b49dbcc79_JaffaCakes118

  • Size

    908KB

  • Sample

    240921-dy59easgle

  • MD5

    eefb69245756c819440fb54b49dbcc79

  • SHA1

    8f793c756edf70b802dd87d4533123bcd11856bb

  • SHA256

    2df558aa9cd4bf5aa937e74325500ff525371398c3097e0ca63efa52f70df81c

  • SHA512

    5a833642c8699c7f1a48b46ce8cf7d304014547a89aa9d8751218f65e9bbecf95b5c2a1d0dbb4a74572fbeadc0132b30cecb27f98ff3dc5bb03728a3f9b08442

  • SSDEEP

    24576:98daF+NHkp3kwV1TzFohPbMyuiUHTM4zz:idaFH3JVhuwIk

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      eefb69245756c819440fb54b49dbcc79_JaffaCakes118

    • Size

      908KB

    • MD5

      eefb69245756c819440fb54b49dbcc79

    • SHA1

      8f793c756edf70b802dd87d4533123bcd11856bb

    • SHA256

      2df558aa9cd4bf5aa937e74325500ff525371398c3097e0ca63efa52f70df81c

    • SHA512

      5a833642c8699c7f1a48b46ce8cf7d304014547a89aa9d8751218f65e9bbecf95b5c2a1d0dbb4a74572fbeadc0132b30cecb27f98ff3dc5bb03728a3f9b08442

    • SSDEEP

      24576:98daF+NHkp3kwV1TzFohPbMyuiUHTM4zz:idaFH3JVhuwIk

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks