Overview

overview

7

Static

static

1

531ae18ac0...18.exe

windows7-x64

7

531ae18ac0...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    531ae18ac0f3bc65ecaa43dc7cb259a3_JaffaCakes118

  • Size

    165KB

  • Sample

    241017-w781rssbrq

  • MD5

    531ae18ac0f3bc65ecaa43dc7cb259a3

  • SHA1

    d6db0f18a9a0e671a1b212322764d725536fc0fe

  • SHA256

    3788a7494811be182e089b1506a300e33497e8f95397d449b69f9abcbab670c9

  • SHA512

    0c703a4af91832c8b8cb0491d3a9b39197b3bb648853c98e740152d8133858b6287c4bb263820bb78eb2e878310aca17a536b590d9de7e6c575ddd30ea132334

  • SSDEEP

    3072:W4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:ViI/PlY37ZLF4Ca6WABqBOvs

Score
7/10
discovery

Malware Config

Targets

    • Target

      531ae18ac0f3bc65ecaa43dc7cb259a3_JaffaCakes118

    • Size

      165KB

    • MD5

      531ae18ac0f3bc65ecaa43dc7cb259a3

    • SHA1

      d6db0f18a9a0e671a1b212322764d725536fc0fe

    • SHA256

      3788a7494811be182e089b1506a300e33497e8f95397d449b69f9abcbab670c9

    • SHA512

      0c703a4af91832c8b8cb0491d3a9b39197b3bb648853c98e740152d8133858b6287c4bb263820bb78eb2e878310aca17a536b590d9de7e6c575ddd30ea132334

    • SSDEEP

      3072:W4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:ViI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks