Overview

overview

8

Static

static

3

84ad1a49a2...18.dll

windows7-x64

8

84ad1a49a2...18.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    84ad1a49a2d525dd6313ad2fdc58298e_JaffaCakes118

  • Size

    60KB

  • Sample

    240810-d83w2athmn

  • MD5

    84ad1a49a2d525dd6313ad2fdc58298e

  • SHA1

    91b33650d8ce7807af872721afd3a99b878bf909

  • SHA256

    9bfe1526b2ae617fdf0f8c944c0ea0a96957a273f2665225083be9910d6b19ff

  • SHA512

    ba7a7868bcfaad3f04e228cac754532610dc719c2e33d8880730fd3573fa094c413342b083e0bea68e7c396919622ff7de6d7322510bb8dc47c5e9480c2f47f5

  • SSDEEP

    768:/BZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:/Pdc1inuWdB9r8YXPJY2BmscY

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      84ad1a49a2d525dd6313ad2fdc58298e_JaffaCakes118

    • Size

      60KB

    • MD5

      84ad1a49a2d525dd6313ad2fdc58298e

    • SHA1

      91b33650d8ce7807af872721afd3a99b878bf909

    • SHA256

      9bfe1526b2ae617fdf0f8c944c0ea0a96957a273f2665225083be9910d6b19ff

    • SHA512

      ba7a7868bcfaad3f04e228cac754532610dc719c2e33d8880730fd3573fa094c413342b083e0bea68e7c396919622ff7de6d7322510bb8dc47c5e9480c2f47f5

    • SSDEEP

      768:/BZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:/Pdc1inuWdB9r8YXPJY2BmscY

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks