Overview

overview

8

Static

static

1

0dd8936c5e...18.exe

windows7-x64

8

0dd8936c5e...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0dd8936c5eb017cf4517f5796fb65e71_JaffaCakes118

  • Size

    728KB

  • Sample

    240625-m93r4awdng

  • MD5

    0dd8936c5eb017cf4517f5796fb65e71

  • SHA1

    ce41e97b69114b92c62564caf28fd179e840b9ea

  • SHA256

    84cdf6c8ecfc697c2e46b8eb5d52ea59468e796bad1491991b4effc3a9822ba6

  • SHA512

    5c1ab85767aec34c62143bfc3cb1fb066beed8acc9ca5c8867a7d0b723ee7448298b94f60747377e681d52651a19a0d431a6210f5aabad4dba9293232690427a

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXI/meGDgGeItoEc9GspWZhASRXHYnrmJ:lEc8H5fMLN2Kb7IrGlFtov9GsqRXHYrW

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      0dd8936c5eb017cf4517f5796fb65e71_JaffaCakes118

    • Size

      728KB

    • MD5

      0dd8936c5eb017cf4517f5796fb65e71

    • SHA1

      ce41e97b69114b92c62564caf28fd179e840b9ea

    • SHA256

      84cdf6c8ecfc697c2e46b8eb5d52ea59468e796bad1491991b4effc3a9822ba6

    • SHA512

      5c1ab85767aec34c62143bfc3cb1fb066beed8acc9ca5c8867a7d0b723ee7448298b94f60747377e681d52651a19a0d431a6210f5aabad4dba9293232690427a

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXI/meGDgGeItoEc9GspWZhASRXHYnrmJ:lEc8H5fMLN2Kb7IrGlFtov9GsqRXHYrW

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks