Overview

overview

10

Static

static

10

JaffaCakes...9f.exe

windows7-x64

7

JaffaCakes...9f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_96f2ead05c2101f4102681b8a862579f

  • Size

    248KB

  • Sample

    250329-yt144s1pv9

  • MD5

    96f2ead05c2101f4102681b8a862579f

  • SHA1

    2222e996c4a5c4d45a08a8a94ed3ba2a43b8f4e4

  • SHA256

    726557246d1615103b842067b98583e645ee517feb2a072bbd2512866ace1ced

  • SHA512

    de97ab5ea9ae9d49fb75a41ae5f752bb962e16bae142ac19f85d4028c271edd650e97e4ca19d7b40c9f6a0ce2b94d6ba1e4709069dc7613b63b3c950546bef1c

  • SSDEEP

    3072:YGKROS5fkMLalsplF9YxKROS5fkMT9S+tERxm0D9:lKRlfdLQsZ8KRlfdDeD9

Score
10/10
revengeratstealer

Malware Config

Targets

    • Target

      JaffaCakes118_96f2ead05c2101f4102681b8a862579f

    • Size

      248KB

    • MD5

      96f2ead05c2101f4102681b8a862579f

    • SHA1

      2222e996c4a5c4d45a08a8a94ed3ba2a43b8f4e4

    • SHA256

      726557246d1615103b842067b98583e645ee517feb2a072bbd2512866ace1ced

    • SHA512

      de97ab5ea9ae9d49fb75a41ae5f752bb962e16bae142ac19f85d4028c271edd650e97e4ca19d7b40c9f6a0ce2b94d6ba1e4709069dc7613b63b3c950546bef1c

    • SSDEEP

      3072:YGKROS5fkMLalsplF9YxKROS5fkMT9S+tERxm0D9:lKRlfdLQsZ8KRlfdDeD9

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks