General

  • Target

    02afc5839b15a99ab011a50e3405c9d1_JaffaCakes118

  • Size

    2.2MB

  • Sample

    240622-r22maawekm

  • MD5

    02afc5839b15a99ab011a50e3405c9d1

  • SHA1

    7a64226ea9fc6c1657e474ce7c08a23e69279c98

  • SHA256

    3ff5c1e85495dcaf413226b6e2ab5128d3d4ca656a854793859c7ae0aa7b977f

  • SHA512

    96756d8f0cc0845a4addc565d9dbbfe3e06dd5a7dd771215c54ec4e05ddcb76280a211434c7868b2d3acb261c15abed4e5ce300c310b3fe71a701661c32f90b7

  • SSDEEP

    49152:Rl6M5l0M7sTW6uQbmV26zGEMr2CgzagHS7H34L62TjnBlZWtDWMp21Spx:RlIf/GNhMrbgzPyL3s62Tjfob0W

Malware Config

Targets

    • Target

      02afc5839b15a99ab011a50e3405c9d1_JaffaCakes118

    • Size

      2.2MB

    • MD5

      02afc5839b15a99ab011a50e3405c9d1

    • SHA1

      7a64226ea9fc6c1657e474ce7c08a23e69279c98

    • SHA256

      3ff5c1e85495dcaf413226b6e2ab5128d3d4ca656a854793859c7ae0aa7b977f

    • SHA512

      96756d8f0cc0845a4addc565d9dbbfe3e06dd5a7dd771215c54ec4e05ddcb76280a211434c7868b2d3acb261c15abed4e5ce300c310b3fe71a701661c32f90b7

    • SSDEEP

      49152:Rl6M5l0M7sTW6uQbmV26zGEMr2CgzagHS7H34L62TjnBlZWtDWMp21Spx:RlIf/GNhMrbgzPyL3s62Tjfob0W

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Drops desktop.ini file(s)

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks