General

  • Target

    3eec6e259ee1cace8c0442a18db88612_JaffaCakes118

  • Size

    2.6MB

  • Sample

    240513-ly9wlaac74

  • MD5

    3eec6e259ee1cace8c0442a18db88612

  • SHA1

    a0adde34e160156d80ada885b48b71336c81db0e

  • SHA256

    90e583b2027b98a452e8e3a33ef16214fbe84e6c597eb653d17baee0981b9fac

  • SHA512

    8cca6d7a0c05af70c631fe2941937af6c352eb438d91eab426bd2bc4c5538ac3a802063a42666b91a2b18fe6c748e33e6411c8d8184da7a5f1a9d108f8aa9eff

  • SSDEEP

    24576:UuhaqOieZJ8NI8NeZJ8NI8oOieZJ8NI8NeZJ8NI8oOieZJ8NI8NeZJ8NI8oOieZN:by8a858a858a858a858a8f

Malware Config

Targets

    • Target

      3eec6e259ee1cace8c0442a18db88612_JaffaCakes118

    • Size

      2.6MB

    • MD5

      3eec6e259ee1cace8c0442a18db88612

    • SHA1

      a0adde34e160156d80ada885b48b71336c81db0e

    • SHA256

      90e583b2027b98a452e8e3a33ef16214fbe84e6c597eb653d17baee0981b9fac

    • SHA512

      8cca6d7a0c05af70c631fe2941937af6c352eb438d91eab426bd2bc4c5538ac3a802063a42666b91a2b18fe6c748e33e6411c8d8184da7a5f1a9d108f8aa9eff

    • SSDEEP

      24576:UuhaqOieZJ8NI8NeZJ8NI8oOieZJ8NI8NeZJ8NI8oOieZJ8NI8NeZJ8NI8oOieZN:by8a858a858a858a858a8f

    • Disables service(s)

    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks