General

  • Target

    913fef2e14f11258ea9cd185685c91e2_JaffaCakes118

  • Size

    547KB

  • Sample

    240603-k74khahh4y

  • MD5

    913fef2e14f11258ea9cd185685c91e2

  • SHA1

    25849fc3a505aa437175510c7d217eec6f14b656

  • SHA256

    14b80572b01fdb8c01fa7ff83b89443086d8e423ede2010beb20f9268d24542c

  • SHA512

    3ad258df311e59d3adb36f8e22500afb246ceca4db7a44257058a0b2461d4225f5655b4b4bbcb5010a834f6cb5a02938a74fdaabd4faa8ab79a79eab877a1526

  • SSDEEP

    12288:T5Dt4Xuc/zb5oKwpmE6GZPaTbaezxtw6a1i+BTjAd5:Tht4XuSwpmE6GZWJt5GLBTjAD

Score
9/10

Malware Config

Targets

    • Target

      913fef2e14f11258ea9cd185685c91e2_JaffaCakes118

    • Size

      547KB

    • MD5

      913fef2e14f11258ea9cd185685c91e2

    • SHA1

      25849fc3a505aa437175510c7d217eec6f14b656

    • SHA256

      14b80572b01fdb8c01fa7ff83b89443086d8e423ede2010beb20f9268d24542c

    • SHA512

      3ad258df311e59d3adb36f8e22500afb246ceca4db7a44257058a0b2461d4225f5655b4b4bbcb5010a834f6cb5a02938a74fdaabd4faa8ab79a79eab877a1526

    • SSDEEP

      12288:T5Dt4Xuc/zb5oKwpmE6GZPaTbaezxtw6a1i+BTjAd5:Tht4XuSwpmE6GZWJt5GLBTjAD

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks