Overview

overview

8

Static

static

3

379184be5c...18.exe

windows7-x64

8

379184be5c...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    379184be5c741a485052a352115242a2_JaffaCakes118

  • Size

    184KB

  • Sample

    241012-asle9sxamj

  • MD5

    379184be5c741a485052a352115242a2

  • SHA1

    eb92b98742a1cb8613e61e3a46543590d0700317

  • SHA256

    3b34568fd2ae388f6f2458b2acb3eaeb300ac4040d3c837caf5fd097a207cce9

  • SHA512

    df8398156b72c1ac92b234b61e38ed6d1091281dfd87b165a32663d0699d102ee7176bc4f75e3a73ee2df06357932a1b46a05785e5275818573ad8a7d4bc405b

  • SSDEEP

    3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3O:/7BSH8zUB+nGESaaRvoB7FJNndnb

Score
8/10
discoveryexecution

Malware Config

Targets

    • Target

      379184be5c741a485052a352115242a2_JaffaCakes118

    • Size

      184KB

    • MD5

      379184be5c741a485052a352115242a2

    • SHA1

      eb92b98742a1cb8613e61e3a46543590d0700317

    • SHA256

      3b34568fd2ae388f6f2458b2acb3eaeb300ac4040d3c837caf5fd097a207cce9

    • SHA512

      df8398156b72c1ac92b234b61e38ed6d1091281dfd87b165a32663d0699d102ee7176bc4f75e3a73ee2df06357932a1b46a05785e5275818573ad8a7d4bc405b

    • SSDEEP

      3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3O:/7BSH8zUB+nGESaaRvoB7FJNndnb

    Score
    8/10
    discoveryexecution

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks