General

  • Target

    f2124e5e33d26f88569eed26ab77e01c_JaffaCakes118

  • Size

    392KB

  • Sample

    240415-2d9m4aaa82

  • MD5

    f2124e5e33d26f88569eed26ab77e01c

  • SHA1

    f3cf78eef68069f6be02419278d4b55c5c6db459

  • SHA256

    9dff280f82328628ce03aa3a4a7142b5341f0c360a45307def8e521ddc414f44

  • SHA512

    66c8cb2a4e16a9f056c07c0fd74b7d1a3246c538146b88cdf6cdce4697b144e93bf5b917022ef4ebf44992d79411d6aa264bd6e8d75087b4b9d5a16533d6ab3d

  • SSDEEP

    6144:WErlRTGEOMaDANkiUyv59E1OJXrwS5I2UNBX4Cq5xh3NDLHxGSlrj:WEvSyr6OJ7wQU4CUxR5LRJ9j

Malware Config

Targets

    • Target

      f2124e5e33d26f88569eed26ab77e01c_JaffaCakes118

    • Size

      392KB

    • MD5

      f2124e5e33d26f88569eed26ab77e01c

    • SHA1

      f3cf78eef68069f6be02419278d4b55c5c6db459

    • SHA256

      9dff280f82328628ce03aa3a4a7142b5341f0c360a45307def8e521ddc414f44

    • SHA512

      66c8cb2a4e16a9f056c07c0fd74b7d1a3246c538146b88cdf6cdce4697b144e93bf5b917022ef4ebf44992d79411d6aa264bd6e8d75087b4b9d5a16533d6ab3d

    • SSDEEP

      6144:WErlRTGEOMaDANkiUyv59E1OJXrwS5I2UNBX4Cq5xh3NDLHxGSlrj:WEvSyr6OJ7wQU4CUxR5LRJ9j

    • Drops file in Drivers directory

    • Sets service image path in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks