General
-
Target
6a0319ba3f2b175c3252949b016d6af9_JaffaCakes118
-
Size
60KB
-
Sample
240724-dhnpesvbqn
-
MD5
6a0319ba3f2b175c3252949b016d6af9
-
SHA1
f2f078e310ae2962d2b4267e62aab4378dc22d6d
-
SHA256
cbc7e034ab5e006f8a0c454fb4b2cadd2281fdc56e978519aadffb44ebaf5136
-
SHA512
e9d82f15c071078ecb4e7efe6e11ed7b705f77aa4ec02851b71852a85ee0f050415ae6eaea445fd05d6227cf7433855e604baf515044a4971aaa3ed006856860
-
SSDEEP
768:q7SpCrhYxhIPBryUmU6tI4UBndTaDyNMRzEQU5e3bw1o+ZpJt:q7ZVGidjCCndTuyNMS3cw1o+Znt
Malware Config
Targets
-
-
Target
6a0319ba3f2b175c3252949b016d6af9_JaffaCakes118
-
Size
60KB
-
MD5
6a0319ba3f2b175c3252949b016d6af9
-
SHA1
f2f078e310ae2962d2b4267e62aab4378dc22d6d
-
SHA256
cbc7e034ab5e006f8a0c454fb4b2cadd2281fdc56e978519aadffb44ebaf5136
-
SHA512
e9d82f15c071078ecb4e7efe6e11ed7b705f77aa4ec02851b71852a85ee0f050415ae6eaea445fd05d6227cf7433855e604baf515044a4971aaa3ed006856860
-
SSDEEP
768:q7SpCrhYxhIPBryUmU6tI4UBndTaDyNMRzEQU5e3bw1o+ZpJt:q7ZVGidjCCndTuyNMS3cw1o+Znt
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2