Overview

overview

7

Static

static

3

f07d36fc6e...18.exe

windows7-x64

7

f07d36fc6e...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    f07d36fc6ef80a6bd060ffbcd353b88c_JaffaCakes118

  • Size

    194KB

  • Sample

    240921-ykaksszfqq

  • MD5

    f07d36fc6ef80a6bd060ffbcd353b88c

  • SHA1

    611f32a23b605813ec0990746ed14b58c8f025ba

  • SHA256

    a1300a6a55cc4ab3aba6f9a37b5de756072a407c53c93d8b1f4c2c337aa8a0f5

  • SHA512

    6534cdcdce8b7c40ffe9de0f7bcae22d22998eb9b33e8803c96c835524abc87c2ed700176380293ddd4e9cf2e974e352d29f24e956c2fe6c42e77e1483386fa5

  • SSDEEP

    6144:uY2zhYX3//zcyjcgM5ZCwePw7fyPFy4mFAM:whYXnzBMbCNw7fyPFab

Score
7/10
discovery

Malware Config

Targets

    • Target

      f07d36fc6ef80a6bd060ffbcd353b88c_JaffaCakes118

    • Size

      194KB

    • MD5

      f07d36fc6ef80a6bd060ffbcd353b88c

    • SHA1

      611f32a23b605813ec0990746ed14b58c8f025ba

    • SHA256

      a1300a6a55cc4ab3aba6f9a37b5de756072a407c53c93d8b1f4c2c337aa8a0f5

    • SHA512

      6534cdcdce8b7c40ffe9de0f7bcae22d22998eb9b33e8803c96c835524abc87c2ed700176380293ddd4e9cf2e974e352d29f24e956c2fe6c42e77e1483386fa5

    • SSDEEP

      6144:uY2zhYX3//zcyjcgM5ZCwePw7fyPFy4mFAM:whYXnzBMbCNw7fyPFab

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks