Overview

overview

7

Static

static

3

0835366c0a...18.exe

windows7-x64

7

0835366c0a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0835366c0a5d665d1521c21eb6a799c7_JaffaCakes118

  • Size

    1.7MB

  • Sample

    241002-bl84estdlc

  • MD5

    0835366c0a5d665d1521c21eb6a799c7

  • SHA1

    0bd318c46ece020119c99ba4114174bcdf53119d

  • SHA256

    b96420c807044297b54212a4fa9b1256dc8b21eadf938a2cb9ec64370df60255

  • SHA512

    f2b0df00bb879d2d0531b033d9a559c7e3fd3e193407583c72778299f5296800beef9ea97997c1e34dfe177dc95bb3af0f1ab4677a0a841da4545ffc26b14c7a

  • SSDEEP

    49152:j9A0F15M0lph/x2A9XObbNDJ0IR807LMCIoRz2n1xRaq+:ZA0La0lfM8exl/R80fPVxq+

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      0835366c0a5d665d1521c21eb6a799c7_JaffaCakes118

    • Size

      1.7MB

    • MD5

      0835366c0a5d665d1521c21eb6a799c7

    • SHA1

      0bd318c46ece020119c99ba4114174bcdf53119d

    • SHA256

      b96420c807044297b54212a4fa9b1256dc8b21eadf938a2cb9ec64370df60255

    • SHA512

      f2b0df00bb879d2d0531b033d9a559c7e3fd3e193407583c72778299f5296800beef9ea97997c1e34dfe177dc95bb3af0f1ab4677a0a841da4545ffc26b14c7a

    • SSDEEP

      49152:j9A0F15M0lph/x2A9XObbNDJ0IR807LMCIoRz2n1xRaq+:ZA0La0lfM8exl/R80fPVxq+

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks