Overview

overview

8

Static

static

3

690c0ff4b4...18.dll

windows7-x64

8

690c0ff4b4...18.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    690c0ff4b4e4348651854e1cc20fe3ac_JaffaCakes118

  • Size

    60KB

  • Sample

    240723-1j2n1atarf

  • MD5

    690c0ff4b4e4348651854e1cc20fe3ac

  • SHA1

    d1e46e991ed1ccf9fb7b9093ec03345cbf21a0ed

  • SHA256

    b304751134149d36f7960261fce0f62e4c417ba31735dc81cbf4dba28643164f

  • SHA512

    09fad6b5887179c5c4af3bffa3aae52d025e1434cffdc7f1475a32da02bb1772311bdaf316c75d320f268a615c935035163183cdfe38e6a7b348e5311381ff36

  • SSDEEP

    768:HBZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:HPdc1inuWdB9r8YXPJY2BmscY

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      690c0ff4b4e4348651854e1cc20fe3ac_JaffaCakes118

    • Size

      60KB

    • MD5

      690c0ff4b4e4348651854e1cc20fe3ac

    • SHA1

      d1e46e991ed1ccf9fb7b9093ec03345cbf21a0ed

    • SHA256

      b304751134149d36f7960261fce0f62e4c417ba31735dc81cbf4dba28643164f

    • SHA512

      09fad6b5887179c5c4af3bffa3aae52d025e1434cffdc7f1475a32da02bb1772311bdaf316c75d320f268a615c935035163183cdfe38e6a7b348e5311381ff36

    • SSDEEP

      768:HBZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:HPdc1inuWdB9r8YXPJY2BmscY

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks