Overview

overview

7

Static

static

1

ef207496c6...18.exe

windows7-x64

7

ef207496c6...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ef207496c664e6c2b4d0c08434ef839d_JaffaCakes118

  • Size

    207KB

  • Sample

    240921-fvr9gswfkc

  • MD5

    ef207496c664e6c2b4d0c08434ef839d

  • SHA1

    15df4d7d3e052d7ef707b15e98eb0523993cfec0

  • SHA256

    11e0ec35807ae927663df1678357f9fbb69079b9b30796596b8aa17fedfe8127

  • SHA512

    6d80245db8a882235fa6008ebf06aa3e095992076fcb8970a82a25f6ee8837e50341b17166b9aacc24a73e55709ddf8348fba7cefea267ba4dc9ae0ca23211c1

  • SSDEEP

    6144:Az+92mhAMJ/cPl3iwTkozlx/LVXHSPF0Mfl:AK2mhAMJ/cPlF97VXs

Score
7/10
discovery

Malware Config

Targets

    • Target

      ef207496c664e6c2b4d0c08434ef839d_JaffaCakes118

    • Size

      207KB

    • MD5

      ef207496c664e6c2b4d0c08434ef839d

    • SHA1

      15df4d7d3e052d7ef707b15e98eb0523993cfec0

    • SHA256

      11e0ec35807ae927663df1678357f9fbb69079b9b30796596b8aa17fedfe8127

    • SHA512

      6d80245db8a882235fa6008ebf06aa3e095992076fcb8970a82a25f6ee8837e50341b17166b9aacc24a73e55709ddf8348fba7cefea267ba4dc9ae0ca23211c1

    • SSDEEP

      6144:Az+92mhAMJ/cPl3iwTkozlx/LVXHSPF0Mfl:AK2mhAMJ/cPlF97VXs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks