Overview

overview

7

Static

static

1

12764b0387...18.exe

windows7-x64

7

12764b0387...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    12764b0387f839cdf4a0c673b1605204_JaffaCakes118

  • Size

    165KB

  • Sample

    241004-jpj8gasdmp

  • MD5

    12764b0387f839cdf4a0c673b1605204

  • SHA1

    3dcb12d20af3e7c61575a057ad8e6ff2bf1275e7

  • SHA256

    a70298f318c24df2540f7d2878753d586b6adc136a05170b3c8b6d92baf65374

  • SHA512

    85f32eb34ccfa269263a2dd839d7017fe2a7aa26d2bb414af05279b5c51de9b7b674753e7350c40a23abe1875f357ba7a6fe0266bb3008c21f51918e249d6127

  • SSDEEP

    3072:M4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4G:DiI/PlY37ZLF4Ca6WABqBOvs

Score
7/10
discovery

Malware Config

Targets

    • Target

      12764b0387f839cdf4a0c673b1605204_JaffaCakes118

    • Size

      165KB

    • MD5

      12764b0387f839cdf4a0c673b1605204

    • SHA1

      3dcb12d20af3e7c61575a057ad8e6ff2bf1275e7

    • SHA256

      a70298f318c24df2540f7d2878753d586b6adc136a05170b3c8b6d92baf65374

    • SHA512

      85f32eb34ccfa269263a2dd839d7017fe2a7aa26d2bb414af05279b5c51de9b7b674753e7350c40a23abe1875f357ba7a6fe0266bb3008c21f51918e249d6127

    • SSDEEP

      3072:M4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4G:DiI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks