General

  • Target

    f26cda0698db53a09f71605b736f12e7_JaffaCakes118

  • Size

    148KB

  • Sample

    240416-cdjz1agd8w

  • MD5

    f26cda0698db53a09f71605b736f12e7

  • SHA1

    bc8e328033a6e65de77eb93911ffcc4018eccdc0

  • SHA256

    f4d64fb6336e013817a19839ce032417f00d2cca3800b7cb656b92678ef7c9f8

  • SHA512

    a91f90ad5b33c90dd40dc41373dd0134f8bba90946b979683f8222a9a59fa5718737b9be839557d8cbab84ef864573d67fae43a3076b5a81b3f8097a8a1c6d5a

  • SSDEEP

    3072:yziUjE5x5q4QmiqKxXn/Yg1MxpQAStrvGfmdQ:yziUjE32/YgKKntzGJ

Score
7/10

Malware Config

Targets

    • Target

      f26cda0698db53a09f71605b736f12e7_JaffaCakes118

    • Size

      148KB

    • MD5

      f26cda0698db53a09f71605b736f12e7

    • SHA1

      bc8e328033a6e65de77eb93911ffcc4018eccdc0

    • SHA256

      f4d64fb6336e013817a19839ce032417f00d2cca3800b7cb656b92678ef7c9f8

    • SHA512

      a91f90ad5b33c90dd40dc41373dd0134f8bba90946b979683f8222a9a59fa5718737b9be839557d8cbab84ef864573d67fae43a3076b5a81b3f8097a8a1c6d5a

    • SSDEEP

      3072:yziUjE5x5q4QmiqKxXn/Yg1MxpQAStrvGfmdQ:yziUjE32/YgKKntzGJ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks