General

  • Target

    04b4798837e612f5b4d752b53537046b_JaffaCakes118

  • Size

    299KB

  • Sample

    240620-ldtnwathkq

  • MD5

    04b4798837e612f5b4d752b53537046b

  • SHA1

    89b4b2d2dec58b93900fc5d752284629cc4235e3

  • SHA256

    58994bcb9f16f8351ffce07daf5a09b0b6eff6b3d47046dbe04bc8548ff885d0

  • SHA512

    f79e9f24decdcad4c6f190faf409e5ef475e3fe47af8574577e729040de63d016ad740fce42b8a980d3af0a4f351dd21780c6e4fc26380ecff1fe870a27fca9a

  • SSDEEP

    6144:33TJaBmQuN1tA5PzpxYEPrsc2eC1KccQZRFoHDgGDxf4R+j6tD4G9K:TJhQketxVrs8pcxbKHD9Do+jyMsK

Score
7/10

Malware Config

Targets

    • Target

      04b4798837e612f5b4d752b53537046b_JaffaCakes118

    • Size

      299KB

    • MD5

      04b4798837e612f5b4d752b53537046b

    • SHA1

      89b4b2d2dec58b93900fc5d752284629cc4235e3

    • SHA256

      58994bcb9f16f8351ffce07daf5a09b0b6eff6b3d47046dbe04bc8548ff885d0

    • SHA512

      f79e9f24decdcad4c6f190faf409e5ef475e3fe47af8574577e729040de63d016ad740fce42b8a980d3af0a4f351dd21780c6e4fc26380ecff1fe870a27fca9a

    • SSDEEP

      6144:33TJaBmQuN1tA5PzpxYEPrsc2eC1KccQZRFoHDgGDxf4R+j6tD4G9K:TJhQketxVrs8pcxbKHD9Do+jyMsK

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks