General

  • Target

    90878a32c28dee83565c0306f5649ec7_JaffaCakes118

  • Size

    709KB

  • Sample

    240603-e3y7bscf64

  • MD5

    90878a32c28dee83565c0306f5649ec7

  • SHA1

    044c5be36322e1609d1935f619bac8300cd678d0

  • SHA256

    13b9f4ef5542ede30971ad78d3efff1c19c521d98def92d0c0abd0ce6e4f95fe

  • SHA512

    94b2a2a7177a6296e5fab08a55bf6583e39388238c8a427d327c75dc2896f5344e6fe60403719aba9217edf68f668190bc661e958e6d3a973d7c58bd249e017d

  • SSDEEP

    12288:Udk1Dbf27xi6PsmDJyodALFhRfM+JOGnK/FBOjX0nnRn1BjrH8IfV6K:8k1DbHmko6L3y+gVObuRnnrHDV6K

Score
9/10

Malware Config

Targets

    • Target

      90878a32c28dee83565c0306f5649ec7_JaffaCakes118

    • Size

      709KB

    • MD5

      90878a32c28dee83565c0306f5649ec7

    • SHA1

      044c5be36322e1609d1935f619bac8300cd678d0

    • SHA256

      13b9f4ef5542ede30971ad78d3efff1c19c521d98def92d0c0abd0ce6e4f95fe

    • SHA512

      94b2a2a7177a6296e5fab08a55bf6583e39388238c8a427d327c75dc2896f5344e6fe60403719aba9217edf68f668190bc661e958e6d3a973d7c58bd249e017d

    • SSDEEP

      12288:Udk1Dbf27xi6PsmDJyodALFhRfM+JOGnK/FBOjX0nnRn1BjrH8IfV6K:8k1DbHmko6L3y+gVObuRnnrHDV6K

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks