Overview

overview

7

Static

static

3

faf16849ac...18.exe

windows7-x64

5

faf16849ac...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    faf16849aceebe194830161fbf3d2442_JaffaCakes118

  • Size

    928KB

  • Sample

    240927-1eb8js1arr

  • MD5

    faf16849aceebe194830161fbf3d2442

  • SHA1

    a9ac39f910f835c091229961c4c52a0ce29d0f75

  • SHA256

    c6302086b6db7921d47e261a5cf0dfb1d6da65a5e4d1d4a536929a4b58f236cf

  • SHA512

    20c79f3de5301a3759ff453979e5f71dcc2e3ff5df6a67a63e57d9bdc91c7b8b2401284ae702198b4d46638efbb7f88b28a0c913b684c81b8aab5116f52ba11d

  • SSDEEP

    24576:P9uR3P5Fxx7DDDln+ysC155idcWTJ8S66Vrs7xODLu1+StsE:1AxF7oyR35cFrExdt

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      faf16849aceebe194830161fbf3d2442_JaffaCakes118

    • Size

      928KB

    • MD5

      faf16849aceebe194830161fbf3d2442

    • SHA1

      a9ac39f910f835c091229961c4c52a0ce29d0f75

    • SHA256

      c6302086b6db7921d47e261a5cf0dfb1d6da65a5e4d1d4a536929a4b58f236cf

    • SHA512

      20c79f3de5301a3759ff453979e5f71dcc2e3ff5df6a67a63e57d9bdc91c7b8b2401284ae702198b4d46638efbb7f88b28a0c913b684c81b8aab5116f52ba11d

    • SSDEEP

      24576:P9uR3P5Fxx7DDDln+ysC155idcWTJ8S66Vrs7xODLu1+StsE:1AxF7oyR35cFrExdt

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks