Overview

overview

7

Static

static

3

3a263e37a9...18.exe

windows7-x64

7

3a263e37a9...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3a263e37a9c4c62f0174069fa483ee9e_JaffaCakes118

  • Size

    37KB

  • Sample

    241012-p84zwa1hjd

  • MD5

    3a263e37a9c4c62f0174069fa483ee9e

  • SHA1

    6255a95b31f782ddc4493dd1302a6516c259dd86

  • SHA256

    cdbe761e9393b32524dcc363f024dd02d3d83284843e02604d75f682e284fe5d

  • SHA512

    dfbd1a5403170db118d4dc176aeffe6d1c86b1fcf230fadea3966a9bd36e7fe8b06e8e9a804316fb196d026f5a6e919f18987747b975195dbe327132e2e7007e

  • SSDEEP

    768:FVzEq+aJe1mgawzxsUNCub8PC1jIHxATVGuQy5Mz6QCXPX+NtlEcz:FR1+aJe1mgawzxsBub8PC1jIHxATVGDr

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      3a263e37a9c4c62f0174069fa483ee9e_JaffaCakes118

    • Size

      37KB

    • MD5

      3a263e37a9c4c62f0174069fa483ee9e

    • SHA1

      6255a95b31f782ddc4493dd1302a6516c259dd86

    • SHA256

      cdbe761e9393b32524dcc363f024dd02d3d83284843e02604d75f682e284fe5d

    • SHA512

      dfbd1a5403170db118d4dc176aeffe6d1c86b1fcf230fadea3966a9bd36e7fe8b06e8e9a804316fb196d026f5a6e919f18987747b975195dbe327132e2e7007e

    • SSDEEP

      768:FVzEq+aJe1mgawzxsUNCub8PC1jIHxATVGuQy5Mz6QCXPX+NtlEcz:FR1+aJe1mgawzxsBub8PC1jIHxATVGDr

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks