Overview

overview

7

Static

static

3

56e8a286e6...18.exe

windows7-x64

7

56e8a286e6...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    56e8a286e6a5504fab77534fe831ea18_JaffaCakes118

  • Size

    92KB

  • Sample

    241018-mendxsvanl

  • MD5

    56e8a286e6a5504fab77534fe831ea18

  • SHA1

    368e77815644a8ff8e751faf387cf65ccb263bef

  • SHA256

    6a395571f3699876e6d4703212a9ac03450e24c50be44d3343d157cb90673f11

  • SHA512

    523aaf2714c237b80a0d3c4f1e5878e15f7cf7f27422964cfdca14195ee1d132ab63882ced907147000a12b0df4905dc7d6cdcaa4a677eb832f14ccc0ed325c2

  • SSDEEP

    1536:TlPnR30KMGmnNGWTmJ+MnGpT5/tjreKWCbd8LeQXGSWnhrxMJfUQZNFbdsQNoz:J6KM1nNG7J+4wfezCbd8XXGH4fUMs1z

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      56e8a286e6a5504fab77534fe831ea18_JaffaCakes118

    • Size

      92KB

    • MD5

      56e8a286e6a5504fab77534fe831ea18

    • SHA1

      368e77815644a8ff8e751faf387cf65ccb263bef

    • SHA256

      6a395571f3699876e6d4703212a9ac03450e24c50be44d3343d157cb90673f11

    • SHA512

      523aaf2714c237b80a0d3c4f1e5878e15f7cf7f27422964cfdca14195ee1d132ab63882ced907147000a12b0df4905dc7d6cdcaa4a677eb832f14ccc0ed325c2

    • SSDEEP

      1536:TlPnR30KMGmnNGWTmJ+MnGpT5/tjreKWCbd8LeQXGSWnhrxMJfUQZNFbdsQNoz:J6KM1nNG7J+4wfezCbd8XXGH4fUMs1z

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks