Overview

overview

7

Static

static

5

40fdb4a609...18.exe

windows7-x64

7

40fdb4a609...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40fdb4a609723d4d68fab406fb930085_JaffaCakes118

  • Size

    193KB

  • Sample

    241013-vcx5caxaqd

  • MD5

    40fdb4a609723d4d68fab406fb930085

  • SHA1

    81e56eb35e17f8e9dcb0e11dcc9eeedc3d6c170d

  • SHA256

    c6be5e666560026ce3681522e047c26db102d72ba2d637d4ff1e9c4832e51371

  • SHA512

    e8c425102c392b74e77cefcaf6bed5d650931a871f98365360b65c341008f949e22e20393d72dd1e6af7b9ea17c31d386c56ed8454e54ceb066bc663863e77d8

  • SSDEEP

    3072:gjAvo7lBultySqPBP0TR2c3rWIG2gUwr0aQ88IphDF5LtDQ7nE/W4GfogdorIPE:gjJD6IaTR2c3UN0b88IphDNDbe40CIM

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      40fdb4a609723d4d68fab406fb930085_JaffaCakes118

    • Size

      193KB

    • MD5

      40fdb4a609723d4d68fab406fb930085

    • SHA1

      81e56eb35e17f8e9dcb0e11dcc9eeedc3d6c170d

    • SHA256

      c6be5e666560026ce3681522e047c26db102d72ba2d637d4ff1e9c4832e51371

    • SHA512

      e8c425102c392b74e77cefcaf6bed5d650931a871f98365360b65c341008f949e22e20393d72dd1e6af7b9ea17c31d386c56ed8454e54ceb066bc663863e77d8

    • SSDEEP

      3072:gjAvo7lBultySqPBP0TR2c3rWIG2gUwr0aQ88IphDF5LtDQ7nE/W4GfogdorIPE:gjJD6IaTR2c3UN0b88IphDNDbe40CIM

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks