Overview

overview

7

Static

static

1

168a327e88...18.exe

windows7-x64

7

168a327e88...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    168a327e884c64fa945a1f78015e5a0f_JaffaCakes118

  • Size

    164KB

  • Sample

    241005-g95nss1ajj

  • MD5

    168a327e884c64fa945a1f78015e5a0f

  • SHA1

    79e53ce44cf16db8d36451019389a27ca7892cbf

  • SHA256

    b263a2884c500eaaca441f20d1a540758605c964fc8003783d67f3cc20cc34f2

  • SHA512

    2c997fcc390f1a52714d182f40e4060f10ceccd4342a057a19c3d5a146c1774ea65fb398b04051ede619bc863a3daf9cf7ba591a9ae3e158a43c12be4bf03169

  • SSDEEP

    3072:kiSVipBoNdGhm5P+0he9xagDexm6UJdme3HgrLpbPJG5h:/iilhmIQODDHBJdmOHIFs

Score
7/10
discovery

Malware Config

Targets

    • Target

      168a327e884c64fa945a1f78015e5a0f_JaffaCakes118

    • Size

      164KB

    • MD5

      168a327e884c64fa945a1f78015e5a0f

    • SHA1

      79e53ce44cf16db8d36451019389a27ca7892cbf

    • SHA256

      b263a2884c500eaaca441f20d1a540758605c964fc8003783d67f3cc20cc34f2

    • SHA512

      2c997fcc390f1a52714d182f40e4060f10ceccd4342a057a19c3d5a146c1774ea65fb398b04051ede619bc863a3daf9cf7ba591a9ae3e158a43c12be4bf03169

    • SSDEEP

      3072:kiSVipBoNdGhm5P+0he9xagDexm6UJdme3HgrLpbPJG5h:/iilhmIQODDHBJdmOHIFs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks