Overview

overview

8

Static

static

1

2ddcfd312a...18.exe

windows7-x64

8

2ddcfd312a...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2ddcfd312ae19fe1161fa2726103d952_JaffaCakes118

  • Size

    786KB

  • Sample

    240708-1bhk6azckq

  • MD5

    2ddcfd312ae19fe1161fa2726103d952

  • SHA1

    97baef571f2812725eb7f1901d2463767bbe9e8f

  • SHA256

    f078a336e117939ee99b0f040abb1fc72a6f27deabdd7766004645dc2f5f09a4

  • SHA512

    4f67c06829e7d0a3e9bc589b4192f47cd16cca8636ea780134ce06586b8bdaef3317585dec2572561f993506a8af837944fb59be7216b7b02a18316019d21d0a

  • SSDEEP

    24576:iRtsgpA45w9Af0/5JAZfdpDY0rqRXHYrmk:uvgP0rYHYr

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      2ddcfd312ae19fe1161fa2726103d952_JaffaCakes118

    • Size

      786KB

    • MD5

      2ddcfd312ae19fe1161fa2726103d952

    • SHA1

      97baef571f2812725eb7f1901d2463767bbe9e8f

    • SHA256

      f078a336e117939ee99b0f040abb1fc72a6f27deabdd7766004645dc2f5f09a4

    • SHA512

      4f67c06829e7d0a3e9bc589b4192f47cd16cca8636ea780134ce06586b8bdaef3317585dec2572561f993506a8af837944fb59be7216b7b02a18316019d21d0a

    • SSDEEP

      24576:iRtsgpA45w9Af0/5JAZfdpDY0rqRXHYrmk:uvgP0rYHYr

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks