Overview

overview

8

Static

static

3

11e48cb75a...18.exe

windows7-x64

8

11e48cb75a...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    11e48cb75aa27d93d73d9b9da64cfed6_JaffaCakes118

  • Size

    179KB

  • Sample

    241004-fe1kxsyhpa

  • MD5

    11e48cb75aa27d93d73d9b9da64cfed6

  • SHA1

    50f740d577b2b7d28bb0eea928acd119d5952d09

  • SHA256

    b0200ae66bb78c49420671afb09dcaf01c8f094bd58df905b3cd2992cf67be5b

  • SHA512

    1ac23244015929bcff0e7364fbb52516ac37467c9af540ba91d4ea177ba909d178f7bc6e635ce7afb1b515f4dc5ff925b4edb31bee61e7099c22ded929736123

  • SSDEEP

    3072:sBAp5XhKpN4eOyVTGfhEClj8jTk+0hrmWR1oLwXTO:bbXE9OiTGfhEClq9X

Score
8/10
discovery

Malware Config

Targets

    • Target

      11e48cb75aa27d93d73d9b9da64cfed6_JaffaCakes118

    • Size

      179KB

    • MD5

      11e48cb75aa27d93d73d9b9da64cfed6

    • SHA1

      50f740d577b2b7d28bb0eea928acd119d5952d09

    • SHA256

      b0200ae66bb78c49420671afb09dcaf01c8f094bd58df905b3cd2992cf67be5b

    • SHA512

      1ac23244015929bcff0e7364fbb52516ac37467c9af540ba91d4ea177ba909d178f7bc6e635ce7afb1b515f4dc5ff925b4edb31bee61e7099c22ded929736123

    • SSDEEP

      3072:sBAp5XhKpN4eOyVTGfhEClj8jTk+0hrmWR1oLwXTO:bbXE9OiTGfhEClq9X

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks