Overview

overview

7

Static

static

5

2f27e35cae...18.exe

windows7-x64

7

2f27e35cae...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2f27e35cae67ae266e06fdf0059244fa_JaffaCakes118

  • Size

    36KB

  • Sample

    241009-l25q2s1hra

  • MD5

    2f27e35cae67ae266e06fdf0059244fa

  • SHA1

    47942b32b04e33e4893ba00f46dfccc50b8fb904

  • SHA256

    deb4ae105f7a6e9209f7c4e603a310801f1e1721d33c281c35df30932e95ae16

  • SHA512

    f8eb6befcdb09406a359b8df465bccebf06ff93e16d0240a374257ae0eb91bfe8477ae2090aed88ebac1432d37f286cf83e2a1a94785db7619e5d7a1d2d96526

  • SSDEEP

    768:HDDEJsLe5weDg8qItmBMtfwzmPeLNyj+5LDJpf3bUPe1rcxmy:vhLeO+gYtmBMWzmPb+5LDHf3YG1Ixmy

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2f27e35cae67ae266e06fdf0059244fa_JaffaCakes118

    • Size

      36KB

    • MD5

      2f27e35cae67ae266e06fdf0059244fa

    • SHA1

      47942b32b04e33e4893ba00f46dfccc50b8fb904

    • SHA256

      deb4ae105f7a6e9209f7c4e603a310801f1e1721d33c281c35df30932e95ae16

    • SHA512

      f8eb6befcdb09406a359b8df465bccebf06ff93e16d0240a374257ae0eb91bfe8477ae2090aed88ebac1432d37f286cf83e2a1a94785db7619e5d7a1d2d96526

    • SSDEEP

      768:HDDEJsLe5weDg8qItmBMtfwzmPeLNyj+5LDJpf3bUPe1rcxmy:vhLeO+gYtmBMWzmPb+5LDHf3YG1Ixmy

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks