General

  • Target

    9053bb24e1f51e86bb0aa6aedfe6c618_JaffaCakes118

  • Size

    1.8MB

  • Sample

    240603-dgjdbaab89

  • MD5

    9053bb24e1f51e86bb0aa6aedfe6c618

  • SHA1

    485314578a7154021873e844a09a64dd0c272cbd

  • SHA256

    f8b02049bd1183bee856f321cbab5c78a7abb110d2e94e72ed4b6913d53513bb

  • SHA512

    b2b74949ca64136d0303bd52ae69a22e1052fb5603602fc010c193144df960ce34b5c2b98ca764e2f10369e3058342b07a5b2650847f7fd4888b86196ac1e82c

  • SSDEEP

    24576:UuhamBVerQZb+md4wmfByerQZb+md4wmfByerQZb+md4wmxETKwq:bderQZbd2YerQZbd2YerQZbd2tETNq

Malware Config

Targets

    • Target

      9053bb24e1f51e86bb0aa6aedfe6c618_JaffaCakes118

    • Size

      1.8MB

    • MD5

      9053bb24e1f51e86bb0aa6aedfe6c618

    • SHA1

      485314578a7154021873e844a09a64dd0c272cbd

    • SHA256

      f8b02049bd1183bee856f321cbab5c78a7abb110d2e94e72ed4b6913d53513bb

    • SHA512

      b2b74949ca64136d0303bd52ae69a22e1052fb5603602fc010c193144df960ce34b5c2b98ca764e2f10369e3058342b07a5b2650847f7fd4888b86196ac1e82c

    • SSDEEP

      24576:UuhamBVerQZb+md4wmfByerQZb+md4wmfByerQZb+md4wmxETKwq:bderQZbd2YerQZbd2YerQZbd2tETNq

    • Disables service(s)

    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks