General

  • Target

    21b98ad7de7ba838f503b98e307e0160_JaffaCakes118

  • Size

    728KB

  • Sample

    240703-kh2plsvdld

  • MD5

    21b98ad7de7ba838f503b98e307e0160

  • SHA1

    54d3496029e566df9c710613c9dff51c9724854e

  • SHA256

    ab85845f533ec8ef53a8268732fff7ebf330afb3d14b611ad1bcf1c2755b7f2d

  • SHA512

    e76519e4e31402487105626c7c27b378545df36b70a5fadaf211867e61b99b323823b75849f630d49f5a735bbda21c699f9c9d06e830f30de7d3e3284b483169

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXJ/meGDgGeItoEc9GspWZhASRXHYnrmQ:lEc8H5fMLN2Kb7JrGlFtov9GsqRXHYr7

Malware Config

Targets

    • Target

      21b98ad7de7ba838f503b98e307e0160_JaffaCakes118

    • Size

      728KB

    • MD5

      21b98ad7de7ba838f503b98e307e0160

    • SHA1

      54d3496029e566df9c710613c9dff51c9724854e

    • SHA256

      ab85845f533ec8ef53a8268732fff7ebf330afb3d14b611ad1bcf1c2755b7f2d

    • SHA512

      e76519e4e31402487105626c7c27b378545df36b70a5fadaf211867e61b99b323823b75849f630d49f5a735bbda21c699f9c9d06e830f30de7d3e3284b483169

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXJ/meGDgGeItoEc9GspWZhASRXHYnrmQ:lEc8H5fMLN2Kb7JrGlFtov9GsqRXHYr7

    • Modifies Windows Firewall

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks