Overview

overview

7

Static

static

3

2bf291a846...18.exe

windows7-x64

7

2bf291a846...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2bf291a8466a976d15b501707e4f228c_JaffaCakes118

  • Size

    1.4MB

  • Sample

    241009-ghg4esyere

  • MD5

    2bf291a8466a976d15b501707e4f228c

  • SHA1

    9f723e009f0e1211fdf91aa59ab76a94ec541a65

  • SHA256

    97fff20cdf71b88b336ea0512c034625aa03c93511ee8152ac45ea6f00eb48c7

  • SHA512

    d7576596e016dc074d8c25b11e8a40229b066550f08eb8bf7f6776c6d08c205751bc409a227666ea08603d6bca3c8e042d4551ccac18856c19880b81fb382683

  • SSDEEP

    24576:3ZoZ/EH9aCo7tKJ2o3eQnR6kxEVow3Ou//e9QkBVlueV8o7tKJ2o3eQnR6kxEVou:Ajp627Wifeu//e9QkBVlu6p627WifP

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      2bf291a8466a976d15b501707e4f228c_JaffaCakes118

    • Size

      1.4MB

    • MD5

      2bf291a8466a976d15b501707e4f228c

    • SHA1

      9f723e009f0e1211fdf91aa59ab76a94ec541a65

    • SHA256

      97fff20cdf71b88b336ea0512c034625aa03c93511ee8152ac45ea6f00eb48c7

    • SHA512

      d7576596e016dc074d8c25b11e8a40229b066550f08eb8bf7f6776c6d08c205751bc409a227666ea08603d6bca3c8e042d4551ccac18856c19880b81fb382683

    • SSDEEP

      24576:3ZoZ/EH9aCo7tKJ2o3eQnR6kxEVow3Ou//e9QkBVlueV8o7tKJ2o3eQnR6kxEVou:Ajp627Wifeu//e9QkBVlu6p627WifP

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks