Overview

overview

7

Static

static

3

55890b1d13...18.exe

windows7-x64

7

55890b1d13...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    55890b1d134154075271bd0b860cd2d8_JaffaCakes118

  • Size

    42KB

  • Sample

    241018-fb5epsxgpe

  • MD5

    55890b1d134154075271bd0b860cd2d8

  • SHA1

    f50629248347c42c43dab378cc9963950da140d0

  • SHA256

    02e235ccc12f14cfbffbe3abd8c79b2f53634cd6ebc39dda4c39e9b9b28bf604

  • SHA512

    46a78634272127b9a8556fb6eb584141ab56b65ffd486d4566a6ac5eae84d77eaea77ab480c125d2a7c48a7d1006894c95f978e96dfecf649c996ce40e510fba

  • SSDEEP

    768:MUBkQmoq5/DkgLTGLqWJ1W/SYEoTjerNDp4rZOawQfRZw7nwWXtRn:FGNQgLyw/SxoOZtIAabZAwW9Rn

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      55890b1d134154075271bd0b860cd2d8_JaffaCakes118

    • Size

      42KB

    • MD5

      55890b1d134154075271bd0b860cd2d8

    • SHA1

      f50629248347c42c43dab378cc9963950da140d0

    • SHA256

      02e235ccc12f14cfbffbe3abd8c79b2f53634cd6ebc39dda4c39e9b9b28bf604

    • SHA512

      46a78634272127b9a8556fb6eb584141ab56b65ffd486d4566a6ac5eae84d77eaea77ab480c125d2a7c48a7d1006894c95f978e96dfecf649c996ce40e510fba

    • SSDEEP

      768:MUBkQmoq5/DkgLTGLqWJ1W/SYEoTjerNDp4rZOawQfRZw7nwWXtRn:FGNQgLyw/SxoOZtIAabZAwW9Rn

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks