ddb0dbabda9e626633eda367bc56f5ed1204e48b965e9cc05bb25991a7ce4edc | Triage

Submit
Reports

Overview

overview

7

Static

static

3

d0c7029043...18.exe

windows7-x64

7

d0c7029043...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

d0c702904375d71753e88d86930052c9_JaffaCakes118
Size

68KB
Sample

240907-bkxzrsxbrl
MD5

d0c702904375d71753e88d86930052c9
SHA1

322ac1ccb691bbb15c8b4722c496c91137a03e32
SHA256

ddb0dbabda9e626633eda367bc56f5ed1204e48b965e9cc05bb25991a7ce4edc
SHA512

ad536b6ae8f7bd94986c58ad8ff752e93651aaa791a1c1e839d987a6ecb133b5c65b38d2d7da09f17f7a1c24370e07d6c1feaadf1ec4785c9db86769711d5cb4
SSDEEP

1536:qtKSFs7/wvD+e1PVFO0+nsVWcOYVwW45B4:4HrjVFjgWDyW45B4

Score

7^/10

discovery evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d0c702904375d71753e88d86930052c9_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d0c702904375d71753e88d86930052c9_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  d0c702904375d71753e88d86930052c9_JaffaCakes118
- Size
  
  68KB
- MD5
  
  d0c702904375d71753e88d86930052c9
- SHA1
  
  322ac1ccb691bbb15c8b4722c496c91137a03e32
- SHA256
  
  ddb0dbabda9e626633eda367bc56f5ed1204e48b965e9cc05bb25991a7ce4edc
- SHA512
  
  ad536b6ae8f7bd94986c58ad8ff752e93651aaa791a1c1e839d987a6ecb133b5c65b38d2d7da09f17f7a1c24370e07d6c1feaadf1ec4785c9db86769711d5cb4
- SSDEEP
  
  1536:qtKSFs7/wvD+e1PVFO0+nsVWcOYVwW45B4:4HrjVFjgWDyW45B4
Score

7^/10

discovery evasion trojan
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan

© 2018-2025

Terms | Privacy