General

  • Target

    a82976a2138eba46d5bd023842fef3c6_JaffaCakes118

  • Size

    671KB

  • Sample

    240614-f7vv5swhke

  • MD5

    a82976a2138eba46d5bd023842fef3c6

  • SHA1

    64716af2f1c8067d088a7b35879e13e489f9d0af

  • SHA256

    11004f34fede54729b367c6149e8055db75a85569beb1f02677fe06e90f05ac0

  • SHA512

    b849c6c79a2e3adb3bcbbd9ecdf99b81169cbdce02406dac9ed663915f2548c29dddcdaa4b27f9ea5342ebfd09b1b5e298caa755a7fcb22ff684504e521a6143

  • SSDEEP

    12288:Bu6qjBVl1tlWoXZGfr/2ER+iQk4dMrv4ZlElGQzIdXi5YqFvPpP42XhJXQ8sKkmR:I6qjnJMXaxiQvdMeElxyyvtm0TsKk0UA

Score
9/10

Malware Config

Targets

    • Target

      a82976a2138eba46d5bd023842fef3c6_JaffaCakes118

    • Size

      671KB

    • MD5

      a82976a2138eba46d5bd023842fef3c6

    • SHA1

      64716af2f1c8067d088a7b35879e13e489f9d0af

    • SHA256

      11004f34fede54729b367c6149e8055db75a85569beb1f02677fe06e90f05ac0

    • SHA512

      b849c6c79a2e3adb3bcbbd9ecdf99b81169cbdce02406dac9ed663915f2548c29dddcdaa4b27f9ea5342ebfd09b1b5e298caa755a7fcb22ff684504e521a6143

    • SSDEEP

      12288:Bu6qjBVl1tlWoXZGfr/2ER+iQk4dMrv4ZlElGQzIdXi5YqFvPpP42XhJXQ8sKkmR:I6qjnJMXaxiQvdMeElxyyvtm0TsKk0UA

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks