Overview

overview

8

Static

static

3

69b1b520f2...18.dll

windows7-x64

8

69b1b520f2...18.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    69b1b520f287cbee624f4b0ca20f9f18_JaffaCakes118

  • Size

    64KB

  • Sample

    240724-bjyjxaserb

  • MD5

    69b1b520f287cbee624f4b0ca20f9f18

  • SHA1

    26b5ede7beb9c0b283b55e2d288362686c613914

  • SHA256

    7fbd4257264167e0cc4c525023a49ee42a79beea70b51defbeca25a1cca6d382

  • SHA512

    c7186d008fe4aacbb3328a1832b2725b336b12f9194429899efce68936c801e8bfca11c84acba4438b25890fab6362a95bf52381ed02ca037a19eecc9e4199ff

  • SSDEEP

    768:KBZo+Nzl4mjNx4Ds4l6iP18I+VdWm4+xlXdqHI6kku1+oZcleRlB7N6:KPEc1iCVdWm4+btwIUuHZfq

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      69b1b520f287cbee624f4b0ca20f9f18_JaffaCakes118

    • Size

      64KB

    • MD5

      69b1b520f287cbee624f4b0ca20f9f18

    • SHA1

      26b5ede7beb9c0b283b55e2d288362686c613914

    • SHA256

      7fbd4257264167e0cc4c525023a49ee42a79beea70b51defbeca25a1cca6d382

    • SHA512

      c7186d008fe4aacbb3328a1832b2725b336b12f9194429899efce68936c801e8bfca11c84acba4438b25890fab6362a95bf52381ed02ca037a19eecc9e4199ff

    • SSDEEP

      768:KBZo+Nzl4mjNx4Ds4l6iP18I+VdWm4+xlXdqHI6kku1+oZcleRlB7N6:KPEc1iCVdWm4+btwIUuHZfq

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks