Overview

overview

7

Static

static

1

4050943d3e...18.exe

windows7-x64

7

4050943d3e...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4050943d3e794aab239e88ea74d9c20e_JaffaCakes118

  • Size

    165KB

  • Sample

    241013-rlsdns1aph

  • MD5

    4050943d3e794aab239e88ea74d9c20e

  • SHA1

    1af9aa0c18c2cf658a9961b26ea191c8fcd25584

  • SHA256

    333a235c1141cdd08a3d7c206cfd15b73123dcaa12deb59e89bbaad17c373e3a

  • SHA512

    28b499896a03b7a8e5ea0d7f31f448a9da3df9bbb788feaa70570aecbab4a94a410d529dbae71bc0976599cfbbe5fd14eb37141a75eab375bbd01572df16f7ec

  • SSDEEP

    3072:v4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:wiI/PlY37ZLF4Ca6WABqBOvs

Score
7/10
discovery

Malware Config

Targets

    • Target

      4050943d3e794aab239e88ea74d9c20e_JaffaCakes118

    • Size

      165KB

    • MD5

      4050943d3e794aab239e88ea74d9c20e

    • SHA1

      1af9aa0c18c2cf658a9961b26ea191c8fcd25584

    • SHA256

      333a235c1141cdd08a3d7c206cfd15b73123dcaa12deb59e89bbaad17c373e3a

    • SHA512

      28b499896a03b7a8e5ea0d7f31f448a9da3df9bbb788feaa70570aecbab4a94a410d529dbae71bc0976599cfbbe5fd14eb37141a75eab375bbd01572df16f7ec

    • SSDEEP

      3072:v4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:wiI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks