Overview

overview

8

Static

static

1

15af3ffcb0...18.exe

windows7-x64

8

15af3ffcb0...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15af3ffcb094ebad854fb6b4787a4598_JaffaCakes118

  • Size

    728KB

  • Sample

    240627-mp6y1szbmp

  • MD5

    15af3ffcb094ebad854fb6b4787a4598

  • SHA1

    976254837a87741697b8d06c710e5b3c3109787d

  • SHA256

    9385338d4c85f2a891a56e36f0e297d1e72bdc79a2ecf7a7030d19a8c410d37f

  • SHA512

    cbd4308705ce7c984e0702484d04979e66a30ff14c8eeef576717b0d8c41e18ee4afdb8365e5940f8d02a3bc5b1732f25753e838e6d8bdc48c8e6fc05864ac74

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXz/meGDgGeItoEc9GspWZhASRXHYnrm0:lEc8H5fMLN2Kb7zrGlFtov9GsqRXHYrr

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      15af3ffcb094ebad854fb6b4787a4598_JaffaCakes118

    • Size

      728KB

    • MD5

      15af3ffcb094ebad854fb6b4787a4598

    • SHA1

      976254837a87741697b8d06c710e5b3c3109787d

    • SHA256

      9385338d4c85f2a891a56e36f0e297d1e72bdc79a2ecf7a7030d19a8c410d37f

    • SHA512

      cbd4308705ce7c984e0702484d04979e66a30ff14c8eeef576717b0d8c41e18ee4afdb8365e5940f8d02a3bc5b1732f25753e838e6d8bdc48c8e6fc05864ac74

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXz/meGDgGeItoEc9GspWZhASRXHYnrm0:lEc8H5fMLN2Kb7zrGlFtov9GsqRXHYrr

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks