Overview

overview

7

Static

static

3

0e340dc5d5...18.exe

windows7-x64

0e340dc5d5...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    0e340dc5d56fbc0d9013df966ad38465_JaffaCakes118

  • Size

    82KB

  • Sample

    241003-gggq9s1enf

  • MD5

    0e340dc5d56fbc0d9013df966ad38465

  • SHA1

    d77752ab5a37747390a0b82e2ca1f47f4705d50d

  • SHA256

    1d79e875e2c94119294d7f2a17b6c0c9384511476479cf701240bb9ec3393680

  • SHA512

    26484c239046b279b67a754816b889ca775109d4c3e4b9db52983aeff9ee7bf98450382dd226aede3953cb8874ee7ca789ecfd49218a008c0cc725736e8f7938

  • SSDEEP

    768:O8cHSNjDxkHbHuVAoAsycXVDJfsWO0yyRleti8RTS0BBbZrSyXh7CkC5HVYPC:O8Flxk7OOoaChJBn8BSIbRhoHyP

Score
7/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      0e340dc5d56fbc0d9013df966ad38465_JaffaCakes118

    • Size

      82KB

    • MD5

      0e340dc5d56fbc0d9013df966ad38465

    • SHA1

      d77752ab5a37747390a0b82e2ca1f47f4705d50d

    • SHA256

      1d79e875e2c94119294d7f2a17b6c0c9384511476479cf701240bb9ec3393680

    • SHA512

      26484c239046b279b67a754816b889ca775109d4c3e4b9db52983aeff9ee7bf98450382dd226aede3953cb8874ee7ca789ecfd49218a008c0cc725736e8f7938

    • SSDEEP

      768:O8cHSNjDxkHbHuVAoAsycXVDJfsWO0yyRleti8RTS0BBbZrSyXh7CkC5HVYPC:O8Flxk7OOoaChJBn8BSIbRhoHyP

    Score
    7/10
    defense_evasiondiscoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks