Overview

overview

7

Static

static

3

080d2fd1e3...18.exe

windows7-x64

7

080d2fd1e3...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    080d2fd1e336f4bd0aaf430436fea37b_JaffaCakes118

  • Size

    1.8MB

  • Sample

    241002-arwvlsxhpr

  • MD5

    080d2fd1e336f4bd0aaf430436fea37b

  • SHA1

    fd3a014fe14217fb86a3910ed24327951e8cb190

  • SHA256

    acd1625cd8acb6fe3e3f7f2ca13fb1ffcd02a4e3f3d4115e1e1135b3444e26a4

  • SHA512

    01c5978a187eada7f02a00730e4fb73b33ccd03729000106573703d155f264dd0b0b75b190308559afce7f20e1c38b7f2f24b0eeeef318ccdc918bef786f9270

  • SSDEEP

    24576:5T6eVgL2dvhok84DWuXNL0jQ7cUuPcFGk7vSeLCXy4fgjOiXr1fRRnVjsKEK9uXb:5TNVgCdiv4K9Q1T7Loy4fKOuDskuXbP

Score
7/10
discovery

Malware Config

Targets

    • Target

      080d2fd1e336f4bd0aaf430436fea37b_JaffaCakes118

    • Size

      1.8MB

    • MD5

      080d2fd1e336f4bd0aaf430436fea37b

    • SHA1

      fd3a014fe14217fb86a3910ed24327951e8cb190

    • SHA256

      acd1625cd8acb6fe3e3f7f2ca13fb1ffcd02a4e3f3d4115e1e1135b3444e26a4

    • SHA512

      01c5978a187eada7f02a00730e4fb73b33ccd03729000106573703d155f264dd0b0b75b190308559afce7f20e1c38b7f2f24b0eeeef318ccdc918bef786f9270

    • SSDEEP

      24576:5T6eVgL2dvhok84DWuXNL0jQ7cUuPcFGk7vSeLCXy4fgjOiXr1fRRnVjsKEK9uXb:5TNVgCdiv4K9Q1T7Loy4fKOuDskuXbP

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks