Overview

overview

7

Static

static

3

252fc964d0...18.exe

windows7-x64

7

252fc964d0...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    252fc964d082a232ecab28856b79e6d2_JaffaCakes118

  • Size

    218KB

  • Sample

    241008-zh473avbqm

  • MD5

    252fc964d082a232ecab28856b79e6d2

  • SHA1

    d36ba2e638977456a9edc41479dfcddd217d475f

  • SHA256

    a80d30093924e28d84e34415235a887c9f761777af8801cb68f37e157e4178f4

  • SHA512

    e4d1ee27533b882034fb876ca48345f62bcef4442065feb0a97312096cf93a3aa624637c47f0841f7c6b35c3ad6c35b794cdf6f094d4db1819e50801e348b107

  • SSDEEP

    3072:/Mdc86bBipMJSeGqOBErI/8KJxBHoyJhDgorn1L21YwlVWR8IoTzvo:0Z6bBipMv/O0IEKJ/IsDlqjVWREv

Score
7/10
discovery

Malware Config

Targets

    • Target

      252fc964d082a232ecab28856b79e6d2_JaffaCakes118

    • Size

      218KB

    • MD5

      252fc964d082a232ecab28856b79e6d2

    • SHA1

      d36ba2e638977456a9edc41479dfcddd217d475f

    • SHA256

      a80d30093924e28d84e34415235a887c9f761777af8801cb68f37e157e4178f4

    • SHA512

      e4d1ee27533b882034fb876ca48345f62bcef4442065feb0a97312096cf93a3aa624637c47f0841f7c6b35c3ad6c35b794cdf6f094d4db1819e50801e348b107

    • SSDEEP

      3072:/Mdc86bBipMJSeGqOBErI/8KJxBHoyJhDgorn1L21YwlVWR8IoTzvo:0Z6bBipMv/O0IEKJ/IsDlqjVWREv

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks