Overview

overview

7

Static

static

1

063215c878...18.exe

windows7-x64

7

063215c878...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    063215c878725ca98f2c6eb2bc433184_JaffaCakes118

  • Size

    165KB

  • Sample

    241001-rr8ylsyale

  • MD5

    063215c878725ca98f2c6eb2bc433184

  • SHA1

    ad723dd3893e747d2215d56f6cd661f5e26d63f8

  • SHA256

    9e5d8fb5dc1cbccd081dbbfeeafa788a70481beec5bd48aebee6f17153f061d8

  • SHA512

    a59e8518b8cc9e8b554fb6955da05d4ac26f3e18ca9d9b1bea6bd40517cc96e532d2db3e26fa92a0b90f02bf3c4d4cfd30aa58e6e3f4afa002ced98af4f6a7c6

  • SSDEEP

    3072:W4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:ViI/PlY37ZLF4Ca6WABqBOvs

Score
7/10
discovery

Malware Config

Targets

    • Target

      063215c878725ca98f2c6eb2bc433184_JaffaCakes118

    • Size

      165KB

    • MD5

      063215c878725ca98f2c6eb2bc433184

    • SHA1

      ad723dd3893e747d2215d56f6cd661f5e26d63f8

    • SHA256

      9e5d8fb5dc1cbccd081dbbfeeafa788a70481beec5bd48aebee6f17153f061d8

    • SHA512

      a59e8518b8cc9e8b554fb6955da05d4ac26f3e18ca9d9b1bea6bd40517cc96e532d2db3e26fa92a0b90f02bf3c4d4cfd30aa58e6e3f4afa002ced98af4f6a7c6

    • SSDEEP

      3072:W4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:ViI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks