Overview

overview

7

Static

static

5

3d38f3bcba...18.exe

windows7-x64

7

3d38f3bcba...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3d38f3bcba5d01a4ebcf67292d6e2074_JaffaCakes118

  • Size

    225KB

  • Sample

    241013-ck9t1axhpl

  • MD5

    3d38f3bcba5d01a4ebcf67292d6e2074

  • SHA1

    5e709d26af1937eb6ea011beeadd9cad5ec0d406

  • SHA256

    b6d5a136e7293b0dd870294f465d8f0a0bfea33a2ecb138fff354e5bb5abceb2

  • SHA512

    876c24fec04ea2b3dc8c7cdf64925d77cb904f82795c8e2fd6a2bc7a195913296c6dbdfdfb4b72e5b9faa3107ee5153ee103c7a3e24ee6385917b57197e0c21a

  • SSDEEP

    6144:zfOpM5uMf/j/lSCq0wWCBY5y3aiAGWd573slDD0Ig3:zmpM5t3nFCBY5dikLsVE3

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      3d38f3bcba5d01a4ebcf67292d6e2074_JaffaCakes118

    • Size

      225KB

    • MD5

      3d38f3bcba5d01a4ebcf67292d6e2074

    • SHA1

      5e709d26af1937eb6ea011beeadd9cad5ec0d406

    • SHA256

      b6d5a136e7293b0dd870294f465d8f0a0bfea33a2ecb138fff354e5bb5abceb2

    • SHA512

      876c24fec04ea2b3dc8c7cdf64925d77cb904f82795c8e2fd6a2bc7a195913296c6dbdfdfb4b72e5b9faa3107ee5153ee103c7a3e24ee6385917b57197e0c21a

    • SSDEEP

      6144:zfOpM5uMf/j/lSCq0wWCBY5y3aiAGWd573slDD0Ig3:zmpM5t3nFCBY5dikLsVE3

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks