General
-
Target
189feaa3c9590a71cf9eff00274787e4_JaffaCakes118
-
Size
68KB
-
Sample
240628-d23mpa1hkm
-
MD5
189feaa3c9590a71cf9eff00274787e4
-
SHA1
f902318c15115b28a6cb5a241985790829a6c108
-
SHA256
00bb16549aa91cd7afb78e053f7a55a4e7807297c13ebdb9f02e6abfa809f2cf
-
SHA512
17a283414a15d9372f7ed420072c795d90bf1bca9cfbbcfd53b6bb3c807fd11301a9d3089a0cba0bfc37960b45fb8a93befb99f54e003b25aaab2abfdfcc9939
-
SSDEEP
1536:mCEGV2Nza32KGFR7Hldqs71dH8q7cD8YBtp9muKgl5K+3:Kza7sqp9mullh
Malware Config
Targets
-
-
Target
189feaa3c9590a71cf9eff00274787e4_JaffaCakes118
-
Size
68KB
-
MD5
189feaa3c9590a71cf9eff00274787e4
-
SHA1
f902318c15115b28a6cb5a241985790829a6c108
-
SHA256
00bb16549aa91cd7afb78e053f7a55a4e7807297c13ebdb9f02e6abfa809f2cf
-
SHA512
17a283414a15d9372f7ed420072c795d90bf1bca9cfbbcfd53b6bb3c807fd11301a9d3089a0cba0bfc37960b45fb8a93befb99f54e003b25aaab2abfdfcc9939
-
SSDEEP
1536:mCEGV2Nza32KGFR7Hldqs71dH8q7cD8YBtp9muKgl5K+3:Kza7sqp9mullh
Score8/10-
Creates new service(s)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Execution
Command and Scripting Interpreter
1JavaScript
1System Services
1Service Execution
1Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1