General

  • Target

    734e6c145f724e1436df489bf53ab64c_JaffaCakes118

  • Size

    624KB

  • Sample

    240525-1a4r1abe42

  • MD5

    734e6c145f724e1436df489bf53ab64c

  • SHA1

    e19436c070a7bfcbaad3ce0f6cce2650143b9081

  • SHA256

    2284fb889d3aa18f0dd6fd00ce701fe4075d3e8307cec568e9ebb6bba1188fd2

  • SHA512

    f73bffe9a02e7d940a7fa24cae3e6f39b6c411f292c18c0569cb9ad91da2c9aaec213278b1eefa3c8e9935f64e66e5797a49b460ee84f90e1ac658344412e8c7

  • SSDEEP

    12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM85:mdZTX7S05tmqrShHPYxbTw3NM85

Score
9/10

Malware Config

Targets

    • Target

      734e6c145f724e1436df489bf53ab64c_JaffaCakes118

    • Size

      624KB

    • MD5

      734e6c145f724e1436df489bf53ab64c

    • SHA1

      e19436c070a7bfcbaad3ce0f6cce2650143b9081

    • SHA256

      2284fb889d3aa18f0dd6fd00ce701fe4075d3e8307cec568e9ebb6bba1188fd2

    • SHA512

      f73bffe9a02e7d940a7fa24cae3e6f39b6c411f292c18c0569cb9ad91da2c9aaec213278b1eefa3c8e9935f64e66e5797a49b460ee84f90e1ac658344412e8c7

    • SSDEEP

      12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM85:mdZTX7S05tmqrShHPYxbTw3NM85

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks