Overview

overview

7

Static

static

3

f696461ab2...18.exe

windows7-x64

7

f696461ab2...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    f696461ab20b3204f0686bc1babc1a74_JaffaCakes118

  • Size

    628KB

  • Sample

    240925-wwlq4azcnq

  • MD5

    f696461ab20b3204f0686bc1babc1a74

  • SHA1

    41a7a82f43f75db42c10a12e446fe4d6b8135ce8

  • SHA256

    5b9fc60b9f7f549073beb0e9f150b7e8b9d182a4e1e33fef4c45e22b174364ad

  • SHA512

    e983a6a737de67653d53448da77e3c75bdcb4d3008a09edf65503bf43dc25d79b9b2f3ff3b388b755b7886da1db7c7d3e4b2dac7fb98b61f38def8ebb935a3bd

  • SSDEEP

    6144:R8nal5ONsZ1XX8Ni7wa5GJcibpAlXlrCDJG6dgXoqG4VuvQNIyvx9Gkqbg:qal5OM1H8NNQGJ7dAjsVE6wpNIyDGt

Score
7/10
discovery

Malware Config

Targets

    • Target

      f696461ab20b3204f0686bc1babc1a74_JaffaCakes118

    • Size

      628KB

    • MD5

      f696461ab20b3204f0686bc1babc1a74

    • SHA1

      41a7a82f43f75db42c10a12e446fe4d6b8135ce8

    • SHA256

      5b9fc60b9f7f549073beb0e9f150b7e8b9d182a4e1e33fef4c45e22b174364ad

    • SHA512

      e983a6a737de67653d53448da77e3c75bdcb4d3008a09edf65503bf43dc25d79b9b2f3ff3b388b755b7886da1db7c7d3e4b2dac7fb98b61f38def8ebb935a3bd

    • SSDEEP

      6144:R8nal5ONsZ1XX8Ni7wa5GJcibpAlXlrCDJG6dgXoqG4VuvQNIyvx9Gkqbg:qal5OM1H8NNQGJ7dAjsVE6wpNIyDGt

    Score
    7/10
    discovery

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks