Overview

overview

8

Static

static

1

38d9bba418...18.exe

windows7-x64

8

38d9bba418...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    38d9bba418d12522be7854a686882e3d_JaffaCakes118

  • Size

    728KB

  • Sample

    240711-m6dc2awdkh

  • MD5

    38d9bba418d12522be7854a686882e3d

  • SHA1

    f011c402f1c11b98e0a958037edf1aadf7c6e40b

  • SHA256

    ee4f8e8909023018dada586055c4649f8f927326efa69545827858a1180bb49b

  • SHA512

    b654da4cdabbae4cb9d5ed7acf3242e0bc2ffaa8faba2275b5733284f0e6d66fcf9e98d0261a66e479c64e5b14e2822203c486aa1719efe564684374f751957d

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXw/meGDgGeItoEc9GspWZhASRXHYnrmP:lEc8H5fMLN2Kb7wrGlFtov9GsqRXHYrg

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      38d9bba418d12522be7854a686882e3d_JaffaCakes118

    • Size

      728KB

    • MD5

      38d9bba418d12522be7854a686882e3d

    • SHA1

      f011c402f1c11b98e0a958037edf1aadf7c6e40b

    • SHA256

      ee4f8e8909023018dada586055c4649f8f927326efa69545827858a1180bb49b

    • SHA512

      b654da4cdabbae4cb9d5ed7acf3242e0bc2ffaa8faba2275b5733284f0e6d66fcf9e98d0261a66e479c64e5b14e2822203c486aa1719efe564684374f751957d

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXw/meGDgGeItoEc9GspWZhASRXHYnrmP:lEc8H5fMLN2Kb7wrGlFtov9GsqRXHYrg

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks