General

  • Target

    01aa93050252cf557b281b75c1dcdf86_JaffaCakes118

  • Size

    46KB

  • Sample

    240622-mkec7stgpa

  • MD5

    01aa93050252cf557b281b75c1dcdf86

  • SHA1

    676653a07ed7fd2f5abc52e8763328b4ae392756

  • SHA256

    e5d435efd11d3ea3667e194b4e9ed8b40784de8fc09913f388e409e5575b2125

  • SHA512

    a8595d9641f7c35f5ff7f4819201d2dc27c3ad78f780bae9623ea02903cdb7d215f5ca73c2b12b5daee297fa5934c446e529ae68ba868e9ba00f021b8517921f

  • SSDEEP

    768:VKNnOnkPIKsDhPlgfeZ6roSAKCs7wgXeC2ICzLdO/Mazl/dJxCkR5J1rtuaVCPwU:VPnkP4DhPlgfh1Ag7v2ICzA/MeZdJxJ0

Malware Config

Targets

    • Target

      01aa93050252cf557b281b75c1dcdf86_JaffaCakes118

    • Size

      46KB

    • MD5

      01aa93050252cf557b281b75c1dcdf86

    • SHA1

      676653a07ed7fd2f5abc52e8763328b4ae392756

    • SHA256

      e5d435efd11d3ea3667e194b4e9ed8b40784de8fc09913f388e409e5575b2125

    • SHA512

      a8595d9641f7c35f5ff7f4819201d2dc27c3ad78f780bae9623ea02903cdb7d215f5ca73c2b12b5daee297fa5934c446e529ae68ba868e9ba00f021b8517921f

    • SSDEEP

      768:VKNnOnkPIKsDhPlgfeZ6roSAKCs7wgXeC2ICzLdO/Mazl/dJxCkR5J1rtuaVCPwU:VPnkP4DhPlgfh1Ag7v2ICzA/MeZdJxJ0

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Drops desktop.ini file(s)

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks