General

  • Target

    893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118

  • Size

    671KB

  • Sample

    240601-dkfftsff5y

  • MD5

    893298d7e2b99941397eaebfdfb3bb6c

  • SHA1

    b33def610d6fcef68f9f1658741ad162b09369f1

  • SHA256

    156a54706ed2c4d0afb562f66cda68ed053510a46d32680e5c0fe126c6e7c77c

  • SHA512

    45040f12dd12d55c0bd89f168a1213e4c7867305b35a72ac8589f51dbb4d62e72d28c594bec471046454b4d48a0d1d24ff0949048410388388dfa1edbf1f64b2

  • SSDEEP

    12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6a:qJ7Uzj4yUo7Fdle8WIbCL6a

Score
9/10

Malware Config

Targets

    • Target

      893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118

    • Size

      671KB

    • MD5

      893298d7e2b99941397eaebfdfb3bb6c

    • SHA1

      b33def610d6fcef68f9f1658741ad162b09369f1

    • SHA256

      156a54706ed2c4d0afb562f66cda68ed053510a46d32680e5c0fe126c6e7c77c

    • SHA512

      45040f12dd12d55c0bd89f168a1213e4c7867305b35a72ac8589f51dbb4d62e72d28c594bec471046454b4d48a0d1d24ff0949048410388388dfa1edbf1f64b2

    • SSDEEP

      12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6a:qJ7Uzj4yUo7Fdle8WIbCL6a

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks