Overview

overview

7

Static

static

3

27ab04f69c...18.exe

windows7-x64

7

27ab04f69c...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    27ab04f69cc0e665a6a28f3bd4f2c838_JaffaCakes118

  • Size

    219KB

  • Sample

    241009-ap437ssgrm

  • MD5

    27ab04f69cc0e665a6a28f3bd4f2c838

  • SHA1

    7618b57e6ead6c98578ddc9ec41a802812879d11

  • SHA256

    0aae523117e28ba74544bd3e54d9768d15816fd167f412037a0785ce73bef80f

  • SHA512

    4090504d983955f3b1b62c600a6a3b0287bfbc3e6f4eb5f0fb3664e0faddcfb1fa8299e2900be9aa3762a8637eeaf1046d0432ec26f65eef15fb1557c2caa519

  • SSDEEP

    3072:OwR5g46PJhr+dXwfoN/GXwPQlLl4V1oxYBBvB7VFCGWgLA9ovkNGqE8YZASZn5Wz:/R2zP+yfe/FQlS9Z7zfLwlQsFc5WKY

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      27ab04f69cc0e665a6a28f3bd4f2c838_JaffaCakes118

    • Size

      219KB

    • MD5

      27ab04f69cc0e665a6a28f3bd4f2c838

    • SHA1

      7618b57e6ead6c98578ddc9ec41a802812879d11

    • SHA256

      0aae523117e28ba74544bd3e54d9768d15816fd167f412037a0785ce73bef80f

    • SHA512

      4090504d983955f3b1b62c600a6a3b0287bfbc3e6f4eb5f0fb3664e0faddcfb1fa8299e2900be9aa3762a8637eeaf1046d0432ec26f65eef15fb1557c2caa519

    • SSDEEP

      3072:OwR5g46PJhr+dXwfoN/GXwPQlLl4V1oxYBBvB7VFCGWgLA9ovkNGqE8YZASZn5Wz:/R2zP+yfe/FQlS9Z7zfLwlQsFc5WKY

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks