Overview

overview

8

Static

static

3

4920f88ccc...18.dll

windows7-x64

8

4920f88ccc...18.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    4920f88ccc99661e2a925cfcb3f0b7cd_JaffaCakes118

  • Size

    36KB

  • Sample

    240715-k2954aydml

  • MD5

    4920f88ccc99661e2a925cfcb3f0b7cd

  • SHA1

    e09316b227396c9e26865a29fa48002de9f9818b

  • SHA256

    0097cb28d8dcea0abbbc12140ef42239561ffaf5e132ea7ad86e562d1a87de45

  • SHA512

    e6b710ee142f8175d1b1a2155f24db9fbab6ddf26fd099560973ff29f253c5896e38595250f257aa5a623dd3d219e2275c2b7551068058ef2c3144723ead4b35

  • SSDEEP

    384:wOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+A:gjgiGxy+is1M6BDRK97J3+ZFWo2iU+A

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      4920f88ccc99661e2a925cfcb3f0b7cd_JaffaCakes118

    • Size

      36KB

    • MD5

      4920f88ccc99661e2a925cfcb3f0b7cd

    • SHA1

      e09316b227396c9e26865a29fa48002de9f9818b

    • SHA256

      0097cb28d8dcea0abbbc12140ef42239561ffaf5e132ea7ad86e562d1a87de45

    • SHA512

      e6b710ee142f8175d1b1a2155f24db9fbab6ddf26fd099560973ff29f253c5896e38595250f257aa5a623dd3d219e2275c2b7551068058ef2c3144723ead4b35

    • SSDEEP

      384:wOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+A:gjgiGxy+is1M6BDRK97J3+ZFWo2iU+A

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks